Written by Paul Roberts

Card image cap

CISA Report: Unpatched VPN, Credential Theft Fueled Agency Hack

by Paul Roberts | a day ago

A CISA analysis of a hack of an unnamed federal agency suggests it may have started with the exploitation of a known (and patched) flaw in the Pulse VPN server.

READ MORE

Card image cap

Zerologon is a Big Deal. Here’s Why.

by Paul Roberts | 8 days ago

The Microsoft vulnerability dubbed Zerologon is a 10-on-a-10-scale critical flaw in Windows Netlogon. We explain what you need to know about this serious, new vulnerability.

READ MORE

Card image cap

QOMPLX Launches CMMC Pre-Assessment Tool

by Paul Roberts | 20 days ago

QOMPLX's Pre-Assessment solution will help prepare defense contractors for the DOD's Cybersecurity Maturity Model Certification.

READ MORE

Card image cap

Privilege Escalation Features Pop Up In More Malware Variants

by Paul Roberts | a month ago

The new DarkSide ransomware variant and Lucifer’s Spawn, a DDoS and crypto-jacking tool, have one thing in common: privilege escalation features designed to fuel lateral movement.

READ MORE

Card image cap

Konica Minolta Latest Victim of Human Operated Ransomware

by Paul Roberts | a month ago

The new ransomware family RansomEXX is suspected in the hack of Konica Minolta, its second prominent victim in a month. Evidence suggests that human directed attacks are becoming more stealthy and effective.

READ MORE

Card image cap

Not Learning from NotPetya: The Truth Behind Recent Ransomware Attacks

by Paul Roberts | 2 months ago

Why do firms like Garmin find themselves in the grips of ransomware cybercriminal groups? A tell-all by a former Maersk employee offers some clues.

READ MORE

Card image cap

Webinar Today: Dun & Bradstreet joins QOMPLX to talk CMMC Certification

by Paul Roberts | 4 months ago

QOMPLX's Bill Solms and Paul Brooks of Dun & Bradstreet's Government Business Unit dig into the new DOD CMMC cyber security certification in a webinar June 3rd 2020 at 2:00 PM.

READ MORE

Card image cap

Zoom and Gloom: Your Security Risk is (much) Bigger than One App

by Paul Roberts | 6 months ago

Zoom is responding to a torrent of revelations about security and privacy issues in its platform. But enterprise concerns about application security holes and data privacy shouldn’t be limited to one platform.

READ MORE