-
FBI, CISA Reveal Most Exploited Vulnerabilities
The FBI and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) joined counterparts in the UK and Australia today to announce the top 30 vulnerabilities exploited since the start of the pandemic. The list, a joint effort with the Australian Cyber Security Centre (ACSC) and the UK’s National Cyber Security Centre (NCSC), details vulnerabilities – […]
-
Startup Sees File System as Key to Security
While many cybersecurity vendors approach zero trust from the perspective of microsegmentation, shrinking the network as much as possible, one startup thinks security needs to be as close to the data as possible and is thus focused on data storage. Maryland-based RackTop Systems boasts a Department of Defense (DoD) pedigree, giving its founders a vantage […]
-
FireEye, Mandiant to Split in $1.2 Billion Deal
FireEye is selling its core cybersecurity products to a group led by private equity firm Symphony Technology Group (STG) in order to focus on its Mandiant threat response and services business. FireEye’s products span network, email, endpoint and cloud security, and the vendor has been pursuing an XDR platform approach to unite them all. The […]
-
PowerShell Is Source of More Than a Third of Critical Security Threats
PowerShell was the source of more than a third of critical threats detected on endpoints in the second half of 2020, according to a Cisco research study released at the RSA Conference today. The top category of threats detected across endpoints by Cisco Secure Endpoint was dual-use tools leveraged for exploitation and post-exploitation tasks. PowerShell […]
-
How Zero Trust Security Can Protect Against Ransomware
The Colonial Pipeline ransomware attack has been by many measures the worst to date in the history of cybersecurity, nearly crippling the Southeastern U.S. and causing the pipeline company untold millions in damages. Despite reportedly paying nearly $5 million in ransom to the DarkSide ransomware as a service group, the decryption tool provided by the […]
-
MITRE Protection Tests Shed New Light on Endpoint Security
MITRE added a new wrinkle to its latest endpoint detection and response (EDR) evaluations, a test of endpoint security products’ ability to stop an adversarial attack. Previous MITRE evaluations and the first part of the latest evaluation, Carbanak+FIN7, focused on the ability of vendors to detect attacks and alert security staff. That detection approach focuses […]
-
U.S. Issues Ransomware Guidance, Cybersecurity Executive Order
The U.S. Cybersecurity and Infrastructure Agency (CISA) and the FBI have issued guidance for protecting critical infrastructure from ransomware, shedding some light on the DarkSide attack that crippled the Colonial Pipeline and left much of the East Coast facing an energy shortage. The agencies didn’t name Colonial in the alert, referring only to a “pipeline […]
-
Latest MITRE EDR Evaluations Contain Some Surprises
MITRE Engenuity last month released the latest MITRE ATT&CK evaluations of endpoint security products, and the results contain some pretty big surprises. MITRE doesn’t analyze or comment on the evaluations and instead just makes the data available for vendors and cybersecurity buyers to use as they see fit. That said, the raw numbers alone contain […]
-
Best Kaspersky Alternatives
Kaspersky makes very good endpoint security software, one of just four companies to make both our top endpoint detection and response (EDR) and best antivirus software product lists. But the Moscow-based company has faced allegations that it has been compromised by the Russian Federal Security Service (FSB). Those allegations remain unproven, and Kaspersky has gone […]
-
Cybersecurity Outlook 2021: Trends and Predictions
Just when it seemed that 2020 couldn’t get any weirder, news broke that Russian state-sponsored hackers had spent much of the year exploiting vulnerabilities in SolarWinds‘ widely used Orion IT management software to hack into major federal agencies and corporations. Suddenly the year wasn’t about the massive shift toward remote work caused by the COVID-19 […]
