Microsoft ‘Bluekeep’ Flaw Threatens Medical Devices, IoT

By |2019-06-14T02:04:30+00:00June 5th, 2019|Blog, Virsec in the News|

Security Ledger, May 28, 2019, with comments by Satya Gupta; Microsoft’s worm-friendly Bluekeep flaw affects medical devices and other Internet of Things endpoints, security experts are warning. ‘Bluekeep’ is a zero-day vulnerability that can strike Windows Remote Desktops and threatens medical devices and other endpoints that are connected to the Internet. Internet of Things – [...]

ZombieLoad Affects Data Centers and Here’s What You Can Do About It

By |2019-06-14T02:04:30+00:00May 21st, 2019|Blog, Virsec in the News|

Data Center Knowledge, May 15, 2019, with comments by Satya Gupta; Experts say exploits would be sophisticated and take a long time to build, but operators should act now. Yesterday more news of another Intel chip vulnerability was revealed where attackers can grab sensitive data while processes are running. Nearly all Intel chips manufactured in [...]

Chinese Hacking Group, Buckeye, Used Stolen NSA Hacking Tools Ahead of Shadow Brokers’ Leaks

By |2019-06-14T02:04:30+00:00May 16th, 2019|Blog, Security News|

NSA EternalBlue, DoublePulsar Hacking Tools Stolen in 2016, Leaked into the Wild in 2016 and 2017 A Chinese state-sponsored group has been using the infamous hacking tools - EternalBlue, DoublePulsar - and variants, for years now. Apparently, even before they were stolen and released by The Shadow Brokers. These dangerous hacking tools have some history. [...]

7 Steps to Better Secure Your Data in the Cloud

By |2019-06-14T02:04:30+00:00May 8th, 2019|Blog|

Noam Rotem and Ran Locar, self-described security researchers and hacktivists, recently uncovered and exposed a 24 GB database that contained information pertaining to 80 million U.S. households – more than 62% of U.S. residences. The discovery brought to light weaknesses and data leaks in numerous files stored in the cloud, and systems, exposing a mass [...]

Prediction Series #13 Final: For Defending Against 2019 Application Security Threats, Virsec Has You Covered

By |2019-06-14T02:04:31+00:00April 30th, 2019|Blog, Security News|

In our Prediction blog series for 2019, we’ve outlined in 12 blogs 12 troubling areas where we expect cyber threats to expand this year. The Troubling Twelve 1. Security systems are blind to memory-based threats - a failure that will continue to pose data theft risks 2. Critical infrastructure organizations will face more pressure to [...]

Prediction Series #12: Moving WAFs to the Cloud Means Dialing Down App Security

By |2019-06-14T02:04:31+00:00April 24th, 2019|Blog, Security News|

As the Cloud Takes Over, Many Organizations Consider WAF Replacement; Different from a traditional firewall that monitors traffic between servers, a web application firewall (WAF) filters the content of specific web applications. It’s designed to filter, monitor and block HTTP traffic to and from a web application. As such, WAFs have been viewed as a [...]

Prediction Series #11: Servers and endpoints differ vastly from each other & cannot be protected by the same means

By |2019-06-14T02:04:31+00:00April 21st, 2019|Blog, Security News|

Priorities for servers, apps, and cloud workloads are shifting Nothing has changed the business and technology world more than the cloud. The cloud has changed the application delivery landscape, and the area that may be most effected of all is the area of security strategies. As businesses move their applications to the cloud, the security [...]

Gartner Market Guide Calls Memory Protection a “Mandatory Capability”

By |2019-06-14T02:04:31+00:00April 17th, 2019|Blog, Security News|

Cloud Workload Protection Platform Report Highlights Changing Security Needs Research firm Gartner recently released an update to its Market Guide for Cloud Workload Protection Platforms authored by influential security analyst Neil MacDonald. While the CWPP acronym might not roll off the tongue, it is rapidly emerging as an important category as businesses of all types [...]

LockerGoga Ransomware Slams Industrial Firms in Europe, Could Hit Anyone

By |2019-06-14T02:04:31+00:00April 8th, 2019|Blog, Security News|

LockerGoga combines ransom demand “negotations”, aggressive disruption and total lock out Over the last few months, a new ransomware, LockerGoga, has been hitting industrial and manufacturing firms and causing devastating impact. Later strains of it have been even more damaging than the initial rounds. In some cases, it’s evident the hackers are after money and [...]

Prediction Series #10: Reports of China chip hacking should be a warning to US supply chain

By |2019-06-14T02:04:31+00:00April 8th, 2019|Blog, Security News|

Last Fall reports came out claiming that rice-grain sized spying devices were secretly being planted onto US servers during the manufacturing process. The article created an uproar. Apple and Amazon, 2 of 30 companies said to be affected, adamantly denied the claims that malicious spy chips had been planted on their motherboards. Apple, Amazon, Supermicro [...]