Is Ransomware Like Lightning? Does it hit same site 2x?
The Myth of Lightning not striking the same place again and again should be broken by now as in tomorrow.io post: What about ransomware, does it hit in the same…
Horde Webmail Has Zero-Day RCE Bug – Will Not Be Patched
What if you have software with a vulnerability that will not be patched? What does this mean? RCE means Remote Code Execution which means the attacker does not have to…
Why Did China Declare War on West/USA?
Remember the Exchange server hack from a year ago (post from 3/16/21)? “Exchange Server Attacks Just Beginning?” “Attacks exploiting the flaws were first spotted in January. They initially were limited…
Fileless Malware Attacks VERY Hard to Detect
As a Malwarebytes blogpost states, here are 5 reasons why fileless malware is used by attackers: The most common use cases for fileless malware are: Initial access. The first step…
Another Vulnerability in a Cloud Framework
Rapid7 has found a spring framework vulnerability called Spring4Shell As usual a new vulnerability requires risk management to be reassessed. https://nvd.nist.gov/vuln/detail/CVE-2022-22965 Leads to https://tanzu.vmware.com/security/cve-2022-22965 Which says the following information which…