Nitro, a PDF creation and editing solution has had 77 million of its records breached and published onto a hacker forum.

Nitro, a PDF creation and editing solution has had 77 million of its records breached and published onto a hacker forum.

Gab, the social media alternative attracting far-right users has been hacked.

Gab, the social media alternative attracting far-right users has been hacked.

Covenant Healthcare suffered a data breach incident after the email accounts of two employees were compromised in May 2020.

Covenant Healthcare suffered a data breach incident after the email accounts of two employees were compromised in May 2020.

An incident investigation conducted by Kaspersky ICS CERT experts at one of the attacked enterprises revealed that attacks of the Cring ransomware exploit a vulnerability in FortiGate VPN servers.

Executive Summary Cuba ransomware is an older ransomware, that has recently undergone some development. The actors have incorporated the leaking of victim data to increase its impact... The post...

Cuba Ransomware Overview Over the past year, we have seen ransomware attackers change the way they have responded to organizations... The post McAfee Defender’s Blog: Cuba Ransomware Campaign...

For many people, ransomware is a hack attack on computer devices, not mobile phones. This is far from the truth. Thus everyone needs to know how to remove ransomware from... The post How To Remove...

Welcome to reality Ever since I started working in IT Security more than 10 years ago, I wondered, what helps... The post McAfee Defenders Blog: Reality Check for your Defenses appeared first on...

CISA has issued an advisory on a Rockwell Automation MicroLogix 1400 buffer overflow vulnerability

NAT bypassing techniques recently published by researchers are particularly dangerous for OT networks of industrial enterprises

Overview of APT attacks on industrial enterprises information on which was published in 2020.

The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.

Wiz becomes fastest growing security startup ever with new $1.7B valuation

The McAfee Labs Advanced Threat Research team is committed to uncovering security issues in both software and hardware to help... The post Netop Vision Pro – Distance Learning Software is 20/20 in...

The threat landscape for computers in the ICS engineering and integration sector varies depending on a computer’s environment, including its geographical location, ability to access external...

Operation Dianxun Overview In a recent report the McAfee Advanced Threat Research (ATR) Strategic Intelligence team disclosed an espionage campaign,... The post McAfee Defender’s Blog: Operation...

In this report the McAfee Advanced Threat Research (ATR) Strategic Intelligence team details an espionage campaign, targeting telecommunication companies, dubbed... The post Operation Diànxùn:...

What Program, Released In 2013, Is an Example of Ransomware? The answer is a crypto locker. Ransomware is malevolent programming that scrambles documents on a contaminated PC, in this manner......

Overview For the March 2021 Patch Tuesday, Microsoft released a set of seven DNS vulnerabilities. Five of the vulnerabilities are... The post Seven Windows Wonders – Critical Vulnerabilities in...

0. Introduction John Lambert, a distinguished researcher specializing in threat intelligence at Microsoft, once said these words that changed perspectives:... The post McAfee ATR Thinks in Graphs...

Know How Does Ransomware Spread by reading complete article. Ransomware is malware that involves encrypting a company’s or individual’s valid data or blocking users from accessing their computer...

Solutions that use the OPC family of protocols are affected by multiple vulnerabilities that could lead to equipment failure, remote code execution or leaks of critical data

Introduction What seemed like a regular Cross-site Scripting (XSS) vulnerability on an HTTP 500 “Internal Server Error”-page, I managed to turn into a one-click account takeover on an assessment....

I just got off a call with a client, and realised we need to think about how we report binary protections a bit more. More specifically the ios info binary command in objection. They can be a pain...

Studio 5000 Logix Designer, RSLogix 5000 and Logix controllers use a hardcoded key to verify participants of communication.

In mid-2020, we realized that Lazarus was launching attacks on the defense industry using the ThreatNeedle cluster, an advanced malware cluster of Manuscrypt (a.k.a. NukeSped). While investigating...

Executive Summary Babuk ransomware is a new ransomware threat discovered in 2021 that has impacted at least five big enterprises,... The post Babuk Ransomware appeared first on McAfee Blog.