Threatpost

Malware loads itself from remote servers and bypasses Microsoft's Defender AV scanner, according to reports.

Cisco Talos discovered eight vulnerabilities in the Open Automation Software, two of them critical, that pose risk for critical infrastructure networks.

Actors claiming to be the defunct ransomware group are targeting one of Akami’s customers with a Layer 7 attack, demanding an extortion payment in Bitcoin.

A slip-up by a malware author has allowed researchers to taxonomize three ransomware variations going by different names.

The Google Project Zero researcher found a bug in XML parsing on the Zoom client and server.

2022’s DBIR also highlighted the far-reaching impact of supply-chain breaches and how organizations and their employees are the reasons why incidents occur.

Fronton botnet has far more ability than launching DDOS attack, can track social media trends and launch suitable propaganda.

Mohit Tiwari, CEO of Symmetry Systems, explores Zero Trust, data objects and the NIST framework for cloud and on-prem environments.

Microsoft Word also leveraged in the email campaign, which uses a 22-year-old Office RCE bug.

Daniel Kaar, global director application security engineering at Dynatrace, highlights the newfound respect for AppSec-enabled observability in the wake of Log4Shell.