Proofpoint’s security researchers have documented a new remote access trojan (RAT) being used in a series of recent attacks targeting various industries in multiple European countries.
BalkanID Raises $6M for Intelligent IGA Technology
BalkanID, a startup with ambitious plans to disrupt the Identity Governance and Administration (IGA) space, has banked $5.75 million in seed funding to help organizations find and remediate risky privileges across SaaS and public cloud infrastructure.
Email Security Vendors Score Billion-Dollar Valuations
Material Security, a startup jostling for space in the crowded email security market, has banked $100 million in new venture capital funding as investors continue to attach billion-dollar valuations to early stage cybersecurity vendors.
Patch Tuesday: Microsoft Warns of New Zero-Day Being Exploited
Microsoft on Tuesday released critical software updates to fix at least 73 documented security flaws in the Windows ecosystem and warned that unknown attackers are already launching zero-day man-in-the-middle attacks.
New Malware Samples Indicate Return of REvil Ransomware
New malware samples and a new Tor-based leak website suggest that the REvil ransomware operation has been resumed.
Secureworks, which tracks the group behind REvil as Gold Southfield, has conducted an analysis of malware samples apparently created in March and April, and determined that the developer likely has access to the original REvil source code.
Adobe Warns of ‘Critical’ Security Flaws in Enterprise Products
Software maker Adobe on Tuesday shipped patches to cover at least 18 serious security defects in multiple enterprise-facing products and warned that unpatched systems are at risk of remote code execution attacks.
DarkCrystal RAT Offers Many Capabilities for Very Low Price
BlackBerry’s security researchers have performed a deep analysis of the DarkCrystal RAT and the dark web activity of its developer.
GitHub Announces Mandatory 2FA for Code Contributors
Code hosting platform GitHub on Wednesday said it would make it mandatory for software developers to use at least one form of two-factor authentication (2FA) by the end of 2023.
US Gov Issues Security Memo on Quantum Computing Risks
National security memo warns that a quantum computing could jeopardize civilian and military communications, and defeat security protocols for most Internet-based financial transactions
Kaspersky Warns of Fileless Malware Hidden in Windows Event Logs
Threat hunters at Kaspersky are publicly documenting a malicious campaign that abuses Windows event logs to store fileless last stage Trojans and keep them hidden in the file system.