It is essential to ensure that any Zero Trust technology used is resilient to external factors
The Need for Resilient Zero Trust
Checkmarx Finds Threat Actor ‘Fully Automating’ NPM Supply Chain Attacks
Threat hunters at Checkmarx on Monday raised an alarm after discovering a threat actor fully automating the creation and delivery of “hundreds of malicious packages” into the NPM ecosystem.
Estonian Ransomware Operator Sentenced to Prison in US
An Estonian man was sentenced to 66 months in prison in the United States for his role in ransomware attacks that caused more than $53 million in losses.
The cybercriminal, Maksim Berezan, who was arrested in Latvia and later extradited to the United States, pleaded guilty in April 2021 to conspiracy to commit wire fraud and device fraud.
Critical Remote Code Execution Vulnerability in Sophos Firewall
Sophos on Friday announced the rollout of urgent patches for a critical authentication bypass vulnerability in the web portal of its Sophos Firewall product.
Reported by an external researcher via the Sophos bug bounty program, the vulnerability is tracked as CVE-2022-1040 and impacts Sophos Firewall v18.5 MR3 (18.5.3) and older releases.
Chinese Hackers Seen Targeting Ukraine Post-Invasion
A known threat actor has launched what appears to be the first Chinese hacking attempts targeting Ukraine digital assets since the Russian invasion a month ago.
MixMode Banks $45 Million in Series B Funding
Cyberattacks detection technology provider MixMode has announced the closing of a $45 million Series B funding round led by PSG, with participation from Entrada Ventures.
The Elusive Goal of Network Security
North Korea Gov Hackers Caught Sharing Chrome Zero-Day
Malware hunters at Google have spotted signs that North Korean government hackers are sharing zero-day browser exploits for use in waves of targeted attacks hitting U.S. news media, crypto-banks and IT organizations.
Enterprise Browser Startup Island Snags Massive Funding Round
An early-stage startup building a security-themed enterprise browser has raised $115 million at a $1.3 billion valuation, becoming a cybersecurity unicorn less than two months after emerging from stealth with $100 million in funding.
Ransomware, Malware-as-a-Service Dominate Threat Landscape
Ransomware continues to expand with double-extortion now the standard; the malware-as-a-service model is now common; and criminals are increasingly ‘living off the land’, according to data from Red Canary.
