Vulnerabilities - MySecurity Marketplace

Fake e-shops on the prowl for banking credentials using android malware

ESET researchers analyzed three malicious applications targeting customers of eight Malaysian banks The popularity of online shopping has been growing during the past few years, a trend accelerated by the pandemic. To make this already convenient way of never having to leave the couch to buy new things even more convenient, people are increasingly using […]

Fake e-shops on the prowl for banking credentials using android malware Read More »

The State of Developer-Driven Security Survey

By execassist

The Secure Code Warrior ‘State of Developer-Driven Security’ survey was conducted by Evans Data Corp in December of 2021. Questions about software coding, security awareness, training, support, motivations, and other issues were asked of 1,200 active software developers working in the Asia-Pacific region, Europe and North America. The survey was given in English and translated

The State of Developer-Driven Security Survey Read More »

Access:7

By execassist

Executive Summary Vedere Labs and CyberMDX have identified 7 vulnerabilities affecting the PTC Axeda agent, which we are collectively calling Access:7. Exploiting these vulnerabilities, attackers with network access to a target device could remotely execute code, access its file system or alter system configurations. The Axeda solution enables device manufacturers to remotely access and manage

Access:7 Read More »

Claroty biannual ICS risk & vulnerability report: 2H 2021

By execassist

We are fast approaching a time when highly connected cyber-physical systems are the norm, and the lines between information technology (IT), operational technology (OT), and Internet of Things (IoT) security management are blurred. All of it will be connected to, and managed from, the cloud, and unfathomable amounts of data will be processed in order

Claroty biannual ICS risk & vulnerability report: 2H 2021 Read More »

ICS/OT Cybersecurity Year in Review 2021

By execassist

Dragos is excited to present the fifth year of the annual Dragos Year In Review report on Industrial Control System (ICS)/ Operational Technology (OT) cyber threats, vulnerabilities, assessments, and incident response observations. The ICS/ OT* community has long suffered from more anecdotes on security than insights driven from data and real-world cases given the sensitivity

ICS/OT Cybersecurity Year in Review 2021 Read More »

X-Force Threat Intelligence Index 2022

By execassist

Report highlights Top attack type: Ransomware was again the top attack type in 2021, although the percentage of attacks X-Force remediated that were ransomware decreased nearly 9% year-over-year. REvil—a ransomware type X-Force also refers to as Sodinokibi—was the most common ransomware strain X-Force observed for a second year, making up 37% of all ransomware attacks,

X-Force Threat Intelligence Index 2022 Read More »

2022 State of the Phish

By execassist

Last year, we titled our introduction “A Year Like No Other.” We could easily have repeated that heading to describe 2021. The year has left many organizations contemplating what “normal” will mean for their workforces going forward. Along with hybrid and remote work options, organizations are mulling the best ways to keep employees connected and

2022 State of the Phish Read More »

Ransomware: Through the Lens of Threat and Vulnerability Management

By execassist

Since we published our 2021 Spotlight Report and index updates (1, 2, and 3) that highlighted key metrics, we have been tracking ransomware threats. We have been able to warn organizations and product vendors about ransomware threats and the specific vulnerabilities these threats are targeting through these reports. This report brings you trends that we

Ransomware: Through the Lens of Threat and Vulnerability Management Read More »

Advanced Threat Research Report: January 2022

By execassist

Welcome to our new threat report and our new company. As we look ahead in this new year, we must acknowledge a threatscape that left us all exhausted from a particularly challenging end to 2021. In our new company’s first threat report, we acknowledge the Log4j issue that dominated not only headlines, but the focus

Advanced Threat Research Report: January 2022 Read More »

Cyber Security Report 2022

By execassist

The past twelve months represents one of the most turbulent and disruptive periods on record, at least as far as security is concerned. As governments and businesses around the world continued to navigate the uncharted waters of a global pandemic, the so-called “new normal” still felt a long way off. Digital transformation efforts were dramatically

Cyber Security Report 2022 Read More »