HackDig : Dig high-quality web security articles for hackers

Measures to implement against critical vulnerabilities: Zerologon the Windows Netlogon security hole

Zerologon is the latest critical vulnerability detected in the Windows Server OS affecting all versions from 2008 up to the latest available from Microsoft. This vulnerability has a severity rating of 10.0, and there are already PoCs that can easily exploit the flaw. Get all the information you need about recent critical and serious vulnerabilities for which
Publish At:2020-10-16 06:09 | Read:309 | Comments:0 | Tags:Business News b2b patch management vulnerabilities Zerologon

Monitoring and response to vulnerabilities to mitigate cybersecurity risks

Cybersecurity is a cause for serious concern among companies. New serious or critical vulnerabilities are coming to light almost every day and cybercriminals look to exploit them, not to mention the numerous lower risk security holes that are also detected. PandaLabs, the cybersecurity laboratory at Panda Security, detected 76,000 alerts for exploits in 2019
Publish At:2020-09-30 12:13 | Read:264 | Comments:0 | Tags:Adaptive Defense Business b2b patch management vulnerabiliti

The History of Common Vulnerabilities and Exposures (CVE)

During the late 1990s, security professionals were using information assurance tools in concert with vulnerability scanners to detect and remove vulnerabilities from the systems for which they are responsible.There’s just one problem – each security vendor has its own database with little to no crossover. Each vendor’s tool generates its own alert for detect
Publish At:2020-09-17 01:02 | Read:354 | Comments:0 | Tags:Featured Articles Vulnerability Management CVE Patch Managem

Shellshock In-Depth: Why This Old Vulnerability Won’t Go Away

Shellshock is a bug in the Bash command-line interface shell that has existed for 30 years and was discovered as a significant threat in 2014. Today, Shellshock still remains a threat to enterprise.   The threat is certainly less risky than in the year of discovery. However, in a year in which security priorities have recalibrated to keep up with the c
Publish At:2020-08-06 09:54 | Read:482 | Comments:0 | Tags:Software & App Vulnerabilities Patch Management Shellshock V

How Cloud Mitigation Techniques Can Help Prevent Ransomware and Phishing Attacks

The COVID-19 pandemic revealed flaws in the American healthcare system that were always there. The only difference now is that those flaws have been brought to light.In the wake of the pandemic, a new host of cyberattacks occurred within the healthcare sector. Malicious hackers aimed to take advantage of the crisis with a combination of misinformation campai
Publish At:2020-07-29 01:00 | Read:527 | Comments:0 | Tags:Cloud cloud migration malware Patch Management ransomware

Securing Your Environment While Working Remotely

Before the coronavirus pandemic hit, working from home used to be a novelty for many employees. According to a June 2020 IBM Security and Morning Consult “Work From Home Survey,” 80% of respondents say they worked from home either rarely or not at all prior to the pandemic. In-office work allowed employers and information technology (IT) teams to
Publish At:2020-07-14 09:05 | Read:482 | Comments:0 | Tags:Incident Response Network Security Services Home Network Sec

How to mitigate the most important vulnerabilities in 2020

Toward the end of March, a new vulnerability was discovered in Windows operating systems. This remote code execution vulnerability could allow a cyberattacker to compromise her victim’s computer with just one click on a malicious document. Shortly after it was discovered, groups of hackers were spotted exploiting this vulnerability to carry out attacks
Publish At:2020-06-15 05:31 | Read:828 | Comments:0 | Tags:Panda Security Security b2b patch management vulnerabilities

Patch management: A pressing need

In mid-March of this year, the attack surface suddenly increased in size. From that moment on, a large proportion of the world’s population have been working from home, outside the company network. Some of them have even been using their personal computers. All these factors increase IT systems’ exposure to multiple cyberthreats, since IT teams h
Publish At:2020-06-11 12:43 | Read:448 | Comments:0 | Tags:Business Panda Security b2b patch management vulnerabilities

10 best practices for MSPs to secure their clients and themselves from ransomware

Lock-downs and social distancing may be on, but when it comes to addressing the need for IT support—whether by current of potential clients—it’s business as usual for MSPs. And, boy, is it a struggle. On the one hand, they keep an eye on their remote workers to ensure they’re still doing their job securely and safely in the comfort of their own homes.
Publish At:2020-05-24 07:20 | Read:793 | Comments:0 | Tags:How-tos account management B2B backup backups best MSP pract

Refocusing Cybersecurity Best Practices on Security Hygiene

While organizations around the world are rightly focused on the COVID-19 pandemic, the work of cybersecurity must continue. In fact, attackers often increase their efforts to breach networks and systems during times of trouble, counting on the chaos as a useful distraction. In such times, the best cybersecurity practices should actually refocus on the most b
Publish At:2020-05-24 06:18 | Read:725 | Comments:0 | Tags:CISO Antivirus Chief Information Security Officer (CISO) Cyb

Ad Hoc or Managed Penetration Testing: Which One Is Best for You?

Penetration testing is no longer an extraordinary security engagement. Due to regulatory mandates, internal policies, business executive requests and the overall desire to avoid becoming the next breach victim, testing is now commonplace among many organizations. The kind of testing, however, can still be a question. Do you need ad hoc testing, that as-neede
Publish At:2020-05-03 08:13 | Read:706 | Comments:0 | Tags:Application Security Data Protection Risk Management Securit

7 Spring Cleaning Tasks to Improve Data Security

This year, March 19 ushered in spring in the Northern Hemisphere — the first time since 1896 that the season has started so early. So why not take advantage of the season’s early arrival to do some spring cleaning, not only of your physical space, but of your data and systems, too? Digital spring cleaning can make your life easier and dramatically impr
Publish At:2020-03-20 10:40 | Read:983 | Comments:0 | Tags:Data Protection Mobile Security Application Security Cloud C

ICS Environments and Patch Management: What to Do If You Can’t Patch

The evolution of the cyber threat landscape highlights the emerging need for organizations to strengthen their ability to identify, analyze, and evaluate cyber risks before they evolve into security incidents. Although the terms “patch management” and “vulnerability management” are used as if they are interchangeable, this is not the case. Most are confused
Publish At:2020-03-19 00:24 | Read:1011 | Comments:0 | Tags:ICS Security ICS Systems Patch Management

IBM X-Force Threat Intelligence Cybersecurity Brief: Novel Coronavirus (COVID-19)

Global events such as the novel coronavirus (COVID-19) make all of us attractive targets for cybersecurity criminals. Whether it’s phishing emails or new targeted scams, these tactics are meant to take advantage of citizens who are understandably concerned about their safety and health during this challenging time. COVID-19 email exploits can deliver damagin
Publish At:2020-03-17 18:13 | Read:871 | Comments:0 | Tags:Advanced Threats Threat Intelligence Threat Research IBM X-F

How Retail Security Can Welcome IoT Innovations Without Putting Customers at Risk

Retail businesses, from mom-and-pop shops to major department stores, are investing heavily in technology to enhance the in-store experience. With the imminent arrival of mainstream 5G, smarter systems are expected to dominate the retail space as the internet of things (IoT) expands. But as we know from connected device deployments in other sectors, such as
Publish At:2020-03-11 08:47 | Read:876 | Comments:0 | Tags:Retail IoT Access Management Connected Devices Customer Expe

Tools