Cyber Defense Advisors

News

  • by
  • March 30, 2023

Cyberstorage: Leveraging the Multi-Cloud to Combat Data Exfiltration

Multi-cloud data storage, once merely a byproduct of the great cloud migration, has now become a strategy for data management. “Multi-cloud by design,” and its companion the supercloud, is an ecosystem in which several cloud systems work together to provide many organizational benefits, including increased scale and overall resiliency.And now, even security teams who have […]

Cyber News, Cyber Threat Trends
  • by
  • March 30, 2023

New Wi-Fi Protocol Security Flaw Affecting Linux, Android and iOS Devices

A group of academics from Northeastern University and KU Leuven has disclosed a fundamental design flaw in the IEEE 802.11 Wi-Fi protocol standard, impacting a wide range of devices running Linux, FreeBSD, Android, and iOS. Successful exploitation of the shortcoming could be abused to hijack TCP connections or intercept client and web traffic, researchers Domien […]

Cyber News, Cyber Threat Trends
  • by
  • March 30, 2023

3CX DesktopApp compromised by supply chain attack

3CX is working on a software update for its 3CX DesktopApp, after multiple security researchers alerted the company of an active supply chain attack in it. The update will be released in the next few hours; meanwhile the company urges customers to use its PWA (progressive web application) client instead.  “As many of you have […]

Cyber News, Cyber Threat Trends
  • by
  • March 30, 2023

APT group Winter Vivern exploits Zimbra webmail flaw to target government entities

An APT group known in the security industry as Winter Vivern has been exploiting a vulnerability in the Zimbra Collaboration software to gain access to mailboxes from government agencies in several European countries. While no clear links have been established between Winter Vivern and a particular country’s government, security researchers have noted that its activities […]

Cyber News, Cyber Threat Trends
  • by
  • March 30, 2023

Fixing Vulnerabilities can be messy;

and so it is Continue reading on The CISO Den »

Cyber News, Cyber Threat Trends
  • by
  • March 30, 2023

Stop Blaming the End User for Security Risk

Don’t count on securing end users for system security. Instead, focus on better securing the systems — make them closed by default and build with a security-first approach.

Cyber News, Cyber Threat Trends

Nexus Android malware targets 450 financial applications

Learn how to protect your organization and users from this Android banking trojan. The post Nexus Android malware targets 450 financial applications appeared first on TechRepublic.

Cyber News, Cyber Threat Trends
  • by
  • March 29, 2023

The CISO Mantra: Get Ready to Do More With Less

For the foreseeable future, with the spigots closing shut, CISOs will need to find ways to do more with less.

Cyber News, Cyber Threat Trends

Security Vulnerabilities in Snipping Tools

Both Google’s Pixel’s Markup Tool and the Windows Snipping Tool have vulnerabilities that allow people to partially recover content that was edited out of images.

Cyber News, Cyber Threat Trends