A decryptor for the Tortilla variant of the Babuk ransomware has been released by Cisco Talos, allowing victims targeted by the malware to regain access to their files. The cybersecurity firm said the threat intelligence it shared with Dutch law enforcement authorities made it possible to arrest the threat actor behind the operations. The encryption […]
Cyber News
The U.S. Federal Trade Commission (FTC) on Tuesday prohibited data broker Outlogic, which was previously known as X-Mode Social, from sharing or selling any sensitive location data with third-parties. The ban is part of a settlement over allegations that the company “sold precise location data that could be used to track people’s visits to sensitive […]
Cyber News
Microsoft has addressed a total of 48 security flaws spanning its software as part of its Patch Tuesday updates for January 2024. Of the 48 bugs, two are rated Critical and 46 are rated Important in severity. There is no evidence that any of the issues are publicly known or under active attack at the […]
Cyber News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added six security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. This includes CVE-2023-27524 (CVSS score: 8.9), a high-severity vulnerability impacting the Apache Superset open-source data visualization software that could enable remote code execution. It was fixed in version 2.1. Details […]
Cyber NewsWhy You Can’t Ignore FedRAMP Compliance: Understanding Its Significance in the Cloud Era In today’s digital age, where cloud computing plays a pivotal role in government operations, understanding and adhering to the Federal Risk and Authorization Management Program (FedRAMP) is more crucial than ever. This article delves into why FedRAMP compliance cannot be ignored by […]
FedRAMP ComplianceSimplify Your FedRAMP Certification: Streamlining the Path to Compliance Achieving Federal Risk and Authorization Management Program (FedRAMP) certification is a goal for many cloud service providers (CSPs) looking to do business with the U.S. federal government. However, the road to FedRAMP certification can seem daunting, layered with complex requirements and rigorous assessments. This article aims […]
FedRAMP ComplianceHow to Become FedRAMP Authorized: A Step-by-Step Guide for Cloud Service Providers Achieving FedRAMP (Federal Risk and Authorization Management Program) authorization is a significant milestone for any cloud service provider (CSP) aspiring to work with U.S. federal agencies. This authorization not only opens doors to lucrative government contracts but also signals a CSP’s commitment to […]
FedRAMP ComplianceFedRAMP Compliance FAQs: Navigating the Path to Secure Cloud Usage in U.S. Government In the realm of U.S. federal information technology, FedRAMP (Federal Risk and Authorization Management Program) stands as a pivotal framework. Its importance in ensuring secure cloud solutions for government agencies cannot be overstated. As such, it’s natural for cloud service providers (CSPs), […]
FedRAMP Compliance
A threat actor called Water Curupira has been observed actively distributing the PikaBot loader malware as part of spam campaigns in 2023. “PikaBot’s operators ran phishing campaigns, targeting victims via its two components — a loader and a core module — which enabled unauthorized remote access and allowed the execution of arbitrary commands through an […]
Cyber News