It has been only a matter of weeks since Elon Musk first announced changes to Twitter’s verification policy, and it’s been a whirlwind of activity (read: chaos) ever since. On November 9, I shared some initial thoughts around potential cybersecurity challenges, and as policy changes have been made public, two things are clear: 1. social media cyber risks aren’t new, but rapidly changing platform 

There is a good chance that within just a few minutes with a Google search you were able to locate personal identifying information (PII) of your executives and likely yourself, whether it was physical addresses, children’s names, parent’s names, email addresses, or phone numbers. This information is often housed online, by legal data brokers, who buy and sell your information.

Threat actors are counting on urgency and enthusiasm created around BFCM to hide in plain sight and defraud their victims. And, unlike other types of scams and attacks, both retailers and consumers are attractive targets during this time of year.

If you’re like most organizations, the term “ransomware” conjures up nightmares of hackers infiltrating your network, encrypting your data, and holding you hostage in exchange for a ransom. While an accurate depiction of a traditional ransomware attack.

The name “Yanluowang” comes from Chinese mythology (Yanluo Wang is a Chinese deity), suggesting the ransomware gang is potentially of Chinese origin. However, all the communications in the leaked chats were in Russian language and it appears that the name was chosen deliberately to masquerade as a Chinese threat actor.

At LogRhythm, we are always looking to make it easier for you to detect and respond to cybersecurity threats quickly and effectively. With this in mind, we’ve launched our short video series, 

Over the past year, Nozomi Networks Labs has conducted research on the security of Baseboard Management Controllers (BMCs), with a special focus on OT and IoT devices. In part one of this blog series, we reveal thirteen vulnerabilities that affect BMCs of Lanner devices based on the American Megatrends (AMI) MegaRAC SP-X. 

Cybersecurity has evolved into one of the most important departments in any organization. Forty years ago, long before connectivity was ubiquitous, IT security involved ensuring the computer room was locked so criminals couldn’t steal the floppy disks or punch cards.

Back in February, Mandiant reported on the discovery of a new piece of malware they called “BATLOADER”. The malware is delivered via malicious web sites that are disguised as download sites for legitimate consumer software. To increase the reach of the web sites, the attackers utilized search advertising to drive users who were looking to download certain types of software. A recent blog post by researchers at VMWare Carbon Black indicates that the tool continues to be widely distributed.

With serverless computing, application developers can deploy code as functions instead of managing servers, and servers will be assigned based on demand. It uses the Function-as-a-Service (FaaS) model of cloud computing, making it simple for developers to package and deploy their code without worrying about the complicated server infrastructure.