Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

18 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 18 most recent headlines Filtered view
Bank Info Security 6 months, 2 weeks ago

75,000 MongoDBs Exposed as Attackers Exploit 'MongoBleed'

Patches Issued for MongoBleed as Ransomware Groups Target Flaw to Steal DataTens of thousands of internet-exposed MongoDB databases are at risk as attackers actively target a critical vulnerability in the software to steal sensitive data, with ransomware groups having joined the fray, researchers warn. MongoDB has issued patches and mitigation advice.

Bank Info Security 7 months, 2 weeks ago

Ransomware Reshaping Cyber as National Security Priority

Public-Private Cooperation Key for Ransomware Mitigation, Says Anne NeubergerOngoing, high-profile ransomware attacks against Britain and the United States have transformed cybersecurity into a national security priority, Anne Neubehttps://cms.ismgcorp.com/userpolicy/titlelevelrger, the former White House deputy national security adviser for cyber, said at a Wednesday event in London.

Security Experts Advise Immediate Patching; Zero-Day Attacks Began Last MonthAffiliates of Russian-speaking ransomware operation Medusa began targeting a zero-day vulnerability in widely used Fortra GoAnywhere Managed File Transfer software one week before the vendor issued a security alert, patch and mitigation instructions for the flaw, say security experts.

Bank Info Security 1 year, 5 months ago

Amazon Details Measures to Counter S3 Encryption Hacks

Hackers Using Valid Customer Credentials to Re-Encrypt S3 ObjectsAmazon is urging its customers to deploy additional security measures to secure S3 buckets following reports of ransomware attacks targeting the platform. The company said mitigations prevented "a high percentage of attempts from succeeding."

Bank Info Security 1 year, 10 months ago

UK Orgs Tout Government Help in Ransomware Incidents

Former Royal Mail and Manchester University CISOs Talk Ransomware ResponseTimely notification of ransomware incidents to British law enforcement agencies played a crucial role in understanding the threats and in developing mitigation strategies, the former security heads of Royal Mail and the University of Manchester said.

Bank Info Security 2 years, 3 months ago

From Despair to Disruption: Zafran Takes on Cyber Mitigation

Amid COVID-19 Ransomware Woes, Sanaz Yashar's Frustration Sparked Zafran's BirthFaced with relentless cyberattacks and the shortcomings of existing defenses, Sanaz Yashar embarked on a journey to create a security risk and mitigation platform, transforming frustration into startup Zafran, which emerged from stealth Thursday with more than $30 million in funding.

ALSO: CISA warns Ivanti vuln mitigations might not work, SAML hijack doesn't need ADFS, and crit vulns Infosec in brief The infamous LockBit ransomware gang has been busy in the ten days since an international law enforcement operation took down many of its systems. But despite its posturing, the gang might have suffered more than it's letting on.…

Threat actors affiliated with a ransomware strain known as Play are leveraging a never-before-seen exploit chain that bypasses blocking rules for ProxyNotShell flaws in Microsoft Exchange Server to achieve remote code execution (RCE) through Outlook Web Access (OWA)