Help Net Security

Business-grade routers compromised in low-key attack campaign

March 6, 2023 add comment
An unknown threat actor has discreetly compromised business-grade DrayTek routers in Europe, Latin and North America, equipping them with a remote access trojan (dubbed HiatusRAT) and a packet capturing... Read more »

Law enforcement teams score major win against DoppelPaymer ransomware gang

March 6, 2023 add comment
In a joint effort, the German Regional Police, Ukrainian National Police, Europol, Dutch Police, and FBI joined forces on February 28, 2023, to take down the masterminds behind a... Read more »

PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716)

March 6, 2023 add comment
A PoC exploit for CVE-2023-21716, a critical RCE vulnerability in Microsoft Word that can be exploited when the user previews a specially crafted RTF document, is now publicly available.... Read more »

6 cybersecurity and privacy Firefox add-ons you need to know about

March 6, 2023 add comment
In today’s digital age, cybersecurity and privacy have become major concerns for internet users. With the increase in cyber attacks and data breaches, it is vital to protect your... Read more »

How to achieve and shore up cyber resilience in a recession

March 6, 2023 add comment
Today’s business leaders are grappling with two opposing challenges. On the one hand, present day global economic and recessionary pressures mean spending policies need to be reviewed and cash... Read more »

XIoT risk and the vulnerability landscape

March 6, 2023 add comment
Recently, Claroty released its State of XIoT Security Report, which shares analyses of publicly disclosed vulnerabilities affecting operational technology (OT), internet of things (IoT) devices, and most recently, the... Read more »

Popular fintech apps expose valuable, exploitable secrets

March 6, 2023 add comment
92% of the most popular banking and financial services apps contain easy-to-extract secrets and vulnerabilities that can let attackers steal consumer data and finances, according to Approov. The Approov... Read more »

OneTrust Certification Automation helps businesses transcend traditional compliance barriers

March 6, 2023 add comment
OneTrust introduces OneTrust Certification Automation to the OneTrust ecosystem to help organizations navigate the complex and evolving regulatory landscape. OneTrust Certification Automation brings together automation, pre-built policies, and controls... Read more »

Week in review: LastPass breach, GCP data exfiltration, UEFI bootkit

March 5, 2023 add comment
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Google Cloud Platform allows data exfiltration without a (forensic) trace Attackers can exfiltrate company... Read more »

Snowflake and AWS expand partnership to drive customer-focused innovation

March 5, 2023 add comment
Snowflake and Amazon Web Services (AWS) have unveiled a multi-year expansion of their partnership, with Snowflake growing its AWS spend and both companies jointly contributing millions of dollars to... Read more »
Subscribe to our Newsletter