Taiwan-based QNAP Systems on Friday warned users of an increase in attacks targeting network-attached storage (NAS) appliances, urging them to secure their devices as soon as possible.
QNAP Urges Users to Secure NAS Devices as Attacks Surge
Zloader Banking Malware Exploits Microsoft Signature Verification
The aggressive Zloader banking malware campaign is exploiting Microsoft’s digital signature verification method to inject code into a signed system DLL, according to researchers at Check Point.
VMware Plugs Security Holes in Workstation, Fusion and ESXi
VMware this week shipped security updates for its Workstation, Fusion and ESXi product lines, warning that a heap-overflow vulnerability could expose users to code execution attacks.
Recorded Future Acquires SecurityTrails in $65M Deal
With eyes firmly set on the booming attack surface management space, threat intel powerhouse Recorded Future is shelling out $65 million to purchase SecurityTrails, a startup that helps organizations keep track of internet-facing assets.
ICS Vendors Respond to Log4j Vulnerabilities
Biometric Face Authentication Firm iProov Takes $70M Investment
iProov, a provider of online biometric face authentication, announced on Thursday that it has received a $70 million growth investment from Sumeru Equity Partners.
Fresh Warnings Issued Over Abuse of Google Services
U.S. government agencies and cybersecurity companies are warning users and organizations about cybercriminals abusing Google services to achieve their goals.
FBI warns about Google Voice abuse
Microsoft Announces Zero-Touch Onboarding for ‘Defender for Endpoint’ on iOS
Microsoft this week announced the public preview of zero-touch onboarding for Defender for Endpoint on iOS.
With the new capability, organizations can deploy Defender for Endpoint on iOS across devices in their environment without requiring any form of user interaction, as long as those devices are enrolled with Microsoft Endpoint Manager.
Senators Ask DHS, DOT About Transportation Infrastructure Cybersecurity
Several U.S. senators have sent a letter to the Department of Homeland Security (DHS) and the Department of Transportation (DOT), requesting information about the cybersecurity of the nation’s transportation infrastructure.
NY AG: Credential Stuffing Impacts 1.1 Million Users at 17 Companies
New York Attorney General Letitia James this week announced the results of an investigation into credential stuffing, which resulted in the discovery of 1.1 million compromised accounts associated with 17 companies.
