Industry News Articles

Firmware Security Goes Mainstream as Microsoft Acquires ReFirm Labs

Firmware Security Goes Mainstream as Microsoft Acquires ReFirm Labs

Firmware attacks and industry attention to this growing problem has taken a front stage today as industry giant Microsoft, Inc announced their acquisition of ReFirm Labs to enhance IoT security. Microsoft acknowledges the growth in recent attacks and in their own research has found that over 80% of organizations reported being attacked at the firmware level in the last two years. Read how their acquisition changes the firmware security landscape today.

read more
Looking Back at The RSA Hack 10 Years Later

Looking Back at The RSA Hack 10 Years Later

The RSA breach rocked the cyber security world 10 years ago, but most people are just now coming to understand its significance. In addition to spawning 10 years of rampant state-sponsored attacks and supply chain hacks, only now can we see how this breach was both a lesson to security pros and the start of what is now the modern era of digital insecurity.

read more
Pipeline Cyber Attack Blocks Fuel Supply Across US East Coast

Pipeline Cyber Attack Blocks Fuel Supply Across US East Coast

The Russian group dubbed “DarkSide” deployed a ransomware attack to the major pipeline supporting the US fuel supply this week, cutting off the entire fuel supply to the US East coast. The attack, dubbed one of the most disruptive digital ransom operations ever, is prompting a wake-up call across the country about the vulnerability of critical infrastructure to cyber warfare.

read more
Malware Group Leaks Millions of Stolen Authentication Cookies

Malware Group Leaks Millions of Stolen Authentication Cookies

After Elasticsearch left a server exposed without a password, a malware group infected the server with a strain that stole hundreds of thousands of passwords and millions of authentication cookies, then leaked this same data online for more than a month. During this time thieves had access to login credentials, credit card information, cryptocurrency wallets and browser data.

read more

Scientists Admit Spectre Attacks Still Cause Vulnerabilities

Many thought we’d solved the problems brought to light by Spectre, the hardware flaw that made computers vulnerable to attack back in 2018, simply by patching devices. But it turns out, as computer scientists at the University of Virginia discovered this week, patching is not nearly enough because hackers can still get in and exploit using something called a “micro-op cache.” The industry is all in a twitter about it this week, after the team released their paper, “I See Dead µops: Leaking Secrets via Intel/AMD Micro-Op Caches” Read about it here.

read more