Skip to main content

Informa TechTarget |

Explore our brands

An Informa TechTarget Publication

Threats: Page 29

Flickr; Robert Scoble

DearCry ransomware latching onto Exchange hack, Microsoft says

Patching is the only answer — for now.
By Samantha Schwartz • March 12, 2021
Aurelie Jouan

What's in your software? Federal initiative targets frequently overlooked electric utility vulnerabilities

Software supply chain issues are the subject of a new collaboration between the electric power sector and federal government.
By Robert Walton • March 11, 2021
Explore the Trendline➔

Getty Images

Trendline

Managing identity sprawl

Cyber threat actors know the simplest way to hack into an enterprise and remain under the radar is with stolen, legitimate user credentials -- and cloud services and AI are making managing and securing digital identities more challenging than ever.
By Cybersecurity Dive staff
Kendall Davis/Cybersecurity Dive

Enterprises scramble to secure Microsoft Exchange as cybercriminals rush in

Researchers fear, more than two months after the threat was discovered, criminal hackers have had plenty of time to loot data or plant undetected seeds of compromise.
By David Jones • March 10, 2021
Getty Images

55% of healthcare breaches feature ransomware: report

The healthcare industry is a favored target by cybercriminals: Hospitals cannot tolerate downtime or put off emergency patient care.
By Samantha Schwartz • March 10, 2021
Getty Images

How do companies assess risk? It's a system-by-system question

Every piece of technology is vulnerable to threat actors, but each organization and cybersecurity team decides which software and technology adds risk to its business operations.
By Sue Poremba • March 9, 2021
Elijah O'Donnell for Unsplash

Microsoft Exchange server compromise escalates as mitigation efforts fall short

Officials warn that patching may not fix compromised systems, while tens of thousands of customers are potentially at risk.
By David Jones • March 8, 2021
Getty

3 new malware strains show persistence, sophistication of SolarWinds actor

The malware strains, identified by Microsoft, were used in targeted, late-stage attacks to compromise a select number of companies last year.
By David Jones • March 5, 2021
Getty Images

Malicious email campaigns target business platforms following remote work surge

Phishing attacks are more becoming targeted, less frequent and use PII to harvest credentials.
By David Jones • March 4, 2021
Kaspersky Lab

What makes ransomware a constant enterprise pain point

Threat groups mimic and manipulate the tactics, techniques and procedures of other groups, making ransomware attacks more difficult to prevent.
By Samantha Schwartz • March 3, 2021
Getty Images

Exploited Microsoft Exchange campaign hits hundreds of organizations, researchers find

The nation-state campaign, which Microsoft has linked to China, have targeted on-premises Exchange server vulnerabilities to steal U.S. enterprise data.
By David Jones • March 3, 2021
The image by Андрей Бобровский is licensed under CC BY 3.0

SolarWinds missed early security warnings

Lawmakers scrutinized SolarWinds' security practices, including its use of "solarwinds123" as a password, a lapse blamed on a former intern.
By David Jones • March 1, 2021
Courtesy of Target

How Target bridges communication gaps between threat intel analysis, detection teams

The WAVE matrix, a tool the retailer built in-house, is transferable to smaller teams with employees covering multiple security domains.
By Samantha Schwartz • Feb. 25, 2021
Getty Images

Cloud is a haven for malware, Netskope finds

Phishing and malware pushed companies to focus on protecting endpoints and assessing cloud storage security, especially in a remote work environment.
By Samantha Schwartz • Feb. 24, 2021
Getty Images

Apple faces malware threats as it makes an enterprise push

Apple made recent inroads with corporate customers and is detailing extensive security upgrades as a way of attracting the enterprise. Through it all, new techniques test the company's defenses.
By David Jones • Feb. 23, 2021
An, Min. Retrieved from Pexels.

Universities, companies battle the same cyberthreats, toppled by sophisticated actors

BlueVoyant research shows top U.S. schools have major weaknesses defending against the most common threats: ransomware and data breaches.
By Samantha Schwartz • Feb. 23, 2021
Kendall Davis/Cybersecurity Dive

Microsoft says it was not a SolarWinds attack vector, after completing internal probe

The company confirmed limited amounts of source code for Azure, Exchange and Intune were downloaded.
By David Jones • Feb. 19, 2021
Adeline Kon for Cybersecurity Dive/Cybersecurity Dive

How can data manipulation impact the bottom line?

Factoring disinformation into a threat model can allow a company to combat lies and protect its reputation.
By Samantha Schwartz • Feb. 17, 2021
Getty Images

Ransomware, poor security drove spike in healthcare breaches in 2020

A rise in ransomware and phishing attacks led to a 55% increase in healthcare breaches last year, according to Bitglass.
By David Jones • Feb. 17, 2021
Philipp Katzenberger for Unsplash

One-third of analysts ignore security alerts, survey finds

With an ever-increasing number of alerts, identifying what to ignore is an impossible mission without scalable technology.
By Samantha Schwartz • Feb. 16, 2021
Getty

Organizations running SolarWinds Orion online drops 25% since December: report

A report by RiskRecon shows only 8% of entities operating on the internet actually upgraded to later versions based on SolarWinds security recommendations.
By David Jones • Feb. 12, 2021
Rangel, David. [photograph]. Retrieved from https://unsplash.com/photos/4m7gmLNr3M0.

Software supply chain hacks highlight an ugly truth: The build process is broken

Software makers are coming to terms with security gaps they knew existed as the fallout from the SolarWinds hack continues.
By Samantha Schwartz • Feb. 11, 2021
Markus Spiske via unsplash

Open source blind trust the culprit in ethical breach of 35 companies

Microsoft, one of the breached companies, encourages organizations to use controlled scopes, namespaces or prefixes to protect package names.
By Samantha Schwartz • Feb. 10, 2021
Getty Images

Long-term SolarWinds consequences

SolarWinds fallout turns security eye to Microsoft Office 365

Office 365 has been linked to incidents ranging from points of compromise to the unauthorized email access of government officials.
By David Jones • Feb. 9, 2021
Getty Images

Half of phishing attacks cause ransomware infections: report

Not only did bad actors ask for additional ransoms but more companies are also paying them.
By Samantha Schwartz • Feb. 8, 2021
Pixabay

SolarWinds fallout could last for years, as power industry secures vulnerable equipment: Dragos CEO

The energy sector is experiencing a "digital transformation with a threat convergence," the CEO of security company Dragos told the U.S. Department of Energy.
By Robert Walton • Feb. 5, 2021

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.

Thanks for signing up! Please keep an eye out for a confirmation email from [email protected] To ensure we make it into your inbox regularly, add us to your allow list, mark us as a safe sender, or add us to your address book. Check out more from

Cybersecurity Dive news delivered to your inbox

Get the free daily newsletter read by industry experts

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.

This website is owned and operated by Informa TechTarget, a global network that informs, influences and connects the world's technology buyers and sellers.

Get Cybersecurity Dive in your inbox

The free newsletter covering the top industry headlines

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.