GitHub Announces Mandatory 2FA for Code Contributors
Code hosting platform GitHub on Wednesday said it would make it mandatory for software developers to use at least one form of two-factor authentication (2FA) by the end of 2023.
US Gov Issues Security Memo on Quantum Computing Risks
National security memo warns that a quantum computing could jeopardize civilian and military communications, and defeat security protocols for most Internet-based financial transactions
Kaspersky Warns of Fileless Malware Hidden in Windows Event Logs
Threat hunters at Kaspersky are publicly documenting a malicious campaign that abuses Windows event logs to store fileless last stage Trojans and keep them hidden in the file system.
Hubble Technology Banks $9 Million for Asset Visibility Platform
An early-stage Virginia startup has banked $9 million in venture capital funding to build an “agentless technology asset visibility” aimed at disrupting the asset management space.
Cisco Issues Fresh Warning Over Counterfeit Switches
Cisco has issued a “field notice” to advise customers of its Catalyst 2960X/2960XR switches to upgrade the IOS software on their devices in order to ensure that they are not counterfeit.
Cyberespionage Group Targeting M&A, Corporate Transactions Personnel
Security researchers at Mandiant are documenting the discovery of a new hacking group focused on cyberespionage targeting employees responsible for corporate development, large corporate transactions, and mergers and acquisitions.
Fleet Raises $20M for Endpoint Visibility Technology
Fleet, an endpoint visibility technology vendor with open-source roots, has attracted $20 million in new funding at a valuation in the range of $100 million.
Microsoft Warns of ‘Nimbuspwn’ Security Flaws Haunting Linux
Vulnerability researchers at Microsoft are documenting the discovery of a pair of Linux privilege escalation flaws that could be chained together to plant dangerous malware or backdoors.
How Linux Became the New Bullseye for Bad Guys
Cybercriminals haven’t historically paid much attention to Linux systems. In fact, Linux was formerly one of the least attacked platforms in IT, but that’s quickly changed. Today we’re seeing malware designed to attack Linux systems, frequently in the form of executable and linkable format (ELF). Linux is becoming a more popular target for attackers as it operates the back-end systems of many networks and container-based solutions for IoT devices and mission-critical applications.
