News
Dave Ruedger, CISO – How AidenVision improves cyber risk visibility
Sean Maloney, Aiden's technical co-founder, explains why he created Aiden's technology and hints at what we're launching next week to complete his vision for providing a fully-automated desired state configuration (DSC) solution to our customers.
“This Completes the Dream” – Sean Maloney’s vision for Aiden comes to life with our next big release
Sean Maloney, Aiden's technical co-founder, explains why he created Aiden's technology and hints at what we're launching next week to complete his vision for providing a fully-automated desired state configuration (DSC) solution to our customers.
Aiden is Now Part of Microsoft for Startups
Today, we have some exciting (and different) news to share. Aiden is now part of the Microsoft for Startups community. What is Microsoft for Startups? Microsoft for Startups is a global program dedicated to helping startups with Microsoft-based technologies scale. Each year, Microsoft selects 200 startups to be part of their program with a rigorous selection process. To be accepted, startups have ...
The Kaseya Ransomware Attack SME Breakdown, DOD Data Left Unprotected, Morgan Stanley Data Breach & Email Exploitation
1. Kaseya Ransomware Attackers Demand A $70 Million Ransom An affiliate of the notorious REvil ransomware gang compromised Kaseya’s virtual systems administrator (VSA) software. The Russian-linked attackers compromised the backend architecture of the IT infrastructure management tool. They used its notification capability to send a malicious update to VSA servers running on client environments. Thus, installing a ransomware code onto ...
LinkedIn Data Breach, Ransomware Payment Legislation, US Payment Processing Data Security, Google Compute Engine Vulnerability, NIST Critical Software
1. 700 million LinkedIn Users Impacted By a Data Breach The corporate social network, LinkedIn, experienced a significant data breach that affected 92% of its user base. This incident was announced by the malicious actors, who successfully accessed sensitive user data by misusing API functionalities to conduct unauthorized data scraping activities. According to security researchers, this data breach affected over ...
Chinese Threat Actors Target NY MTA, Surge in Brokerage Account Hacks, Fake Encrypted Chat Platform Anom Lures Criminals, Ransomware Attacks Prioritized as Terrorism
1. Chinese Threat Actors Target New York’s MTA Chinese-sponsored threat actors leveraged Pulse Secure vulnerabilities to compromise systems belonging to the New York Metropolitan Transportation Authority (MTA). It is unclear why state-sponsored actors targeted the MTA. Still, security experts investigating the case speculate that China may be trying to obtain sensitive information on U.S. transit networks to gain an advantage ...
TeaBot Wreaks Havoc, New Malware Strains run Wild, Small Business Ransomware, Microsoft Office 365 Insider Threats, CISA Issues Subpoena
1. A New and Lethal Banking Trojan, TeaBot, Wreaks Havoc For European Financial Institutions Cybersecurity experts warn users of a new Android Trojan currently being exploited in the wild against banks and other financial institutions in the Netherlands, Spain, Belgium, and Italy. This trojan is called ‘TeaBot’ (or Anatsa), and it is used to hijack users’ credentials via SMS messages. ...
Ransomed Companies = Ransomed Customers, Unpatched Cyber Infrastructure Targeted Worldwide and Rust Leaks
Cring ransomware targets customers of hacked companies, Fortinet vulnerabilities expose US cyber operations, Rust leaks data & EU commission hacked
US Gov. Using Outdated Android OS, Ransomware Demands Increase, Malware Detection Falls Short, Microsoft Teams and Sharepoint Bug, Pictures Steal CC Data | aiden IT Security News
1. 99.2% of U.S. Government Android Users Are Using Outdated OS Versions Out of the 200 million+ mobile devices being used by local, state, and federal government employees, a majority of said devices run on Android operating systems (OS). Shockingly, only 0.08% of those devices are operating on the newest version of said OS, which exposes those critical devices to ...
Cyber Threat Act, Infamous Financial Hackers Return, EBA Targeted in Exchange Hack | aiden IT Security News
Proposed US Cyber Threat Act would allow Americans to sue foreign states for damages stemming from cyberattacks, infamous financial hackers FIN8 return with new tools , European Banking Authority targeted in Microsoft Exchange hack, Tesla and several other companies have security cameras hacked and suspected state-sponsored threats from China target Linux systems with new malware.
Microsoft Exchange Hack: Biden Launches Emergency Task Force
Biden administration launches emergency task force as latest wide-ranging Microsoft Exchange hack taxes cybersecurity resources still recovering from last year's SolarWinds attack.
Federal Patch Order for Microsoft Exchange, Investment Firms Newly Scammed, Ryuk Ransomware Spreads Laterally – Cybersecurity News
US Dept. of Homeland Security issues patch order to any federal agencies using Microsoft Exchange, fake "capital call" emails target investors and investment firms, Ryuk ransomware adapts to move laterally through Windows LAN devices, Mobile adware campaigns targeting online banking and crypto-currency wallets sees expansive growth and threat actors game Google's SEO to prioritize payload distribution from fake sites.
Microsoft Identifies New Cyberattack Exploits, Issues Patches for On-Premises Exchange Servers
Microsoft announced tonight that it has identified new nation-state cyberattacks using previously unknown exploits that target the company’s on-premises Exchange Server software. As a result, to minimize or avoid the impacts of this situation, Microsoft highly recommends that you take immediate action to apply the patches for any on-premises Exchange deployments you have or are managing for a customer or ...
Unpatched Jail Software Forgets to Release Prisoners, Sequoia Venture Capital Hacked, Ransomware Strikes Aerospace Vendor – IT Security News and Trends
Major venture capital firm Sequoia fell victim to a targeted phishing campaign. Non-violent prisoners were kept after their scheduled release dates in Arizona due to a bug in custom software that failed to update prisoner records accurately. CLOP ransomware gang struck Bombardier, shadow attacks dupe PDF anti-tampering security and NGINX misconfigurations lead to website attacks.
DDoS Attacks Hijack Windows RDP, SonicWall, 7-Zip, Google Forms, Airline Data Stolen– Cybersecurity News and Trends
As the cybersecurity industry is still dealing with the fallout of the SolarWinds hack, more discoveries were made this week about its scope and vectors of attack. Significant exploits of popular software (Google Forms) and network-level hardware (SonicWall) also came to light.
Linux Under Cyberattack, New Phishing Attacks, MFA Pass The Cookie Hack – Cybersecurity News and Trends
File-less malware used in linux cyberattack, phishing attacks use remotely hosted images to bypass email filters, MFA PassTheCookie Hack among other cybersecurity news
JetBrains Breach, US Formally Blames Russia for SolarWinds Hack; Babuk Ransomware – Cybersecurity News and Trends
A Widely Used Software Company, An Entry Point For Huge U.S. Government Compromise State intelligence agencies disclosed that a popular software company (JetBrains), based in the Czech Republic and founded by three Russian engineers, is likely the entry point that Russian-sponsored threat actors used to insert back doors into numerous large technology companies and major U.S. government systems. SolarWinds, one ...
Our Response to the SolarWinds Hack – A Global Cyber Pledge
Why should I take the #globalcyberpledge? How we're solving cybersecurity by individuals coming together and getting educated? What is the need for continuous improvement? Our privacy and freedom are under attack by foreign, state-sponsored bad actors and we’re standing by letting it happen. Why? Because the answers are right in front of us yet we remain complacent. Back in ...
Was the SolarWinds Hack Preventable?
The scope of the SolarWinds hack continues to expand as SolarWinds has updated their security advisory to show that more versions of the company’s Orion server software were impacted by the vulnerability than was previously thought. Furthermore, the Department of Homeland Security issued an emergency directive about the endpoint security breach telling federal agencies to shut down their servers until further notice. SolarWinds provides network administration, monitoring, ...
Get Updates Right In Your Inbox
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.