Recent reporting by Cisco on information stealing malware — designed to hide from most anti-virus solutions — is leveraging Microsoft Office vulnerability CVE-2017–11882. Does this vulnerability sound familiar? It should. Sonicwall listed it as the most exploited vulnerability in Sep. 2018 Cofense found it was the top vulnerability for delivering…

Ever since we started CYR3CON, we are continually surprised at the hype cycle surrounding the application of machine learning. Many marketers opportunistically see it as another angle to entice buyers — and in talking to CSO’s — their frustration with the hype, equivocation, and machine learning marketing charlatans is palpable. …

Detection dates and continued scanning don’t solve the root cause of the problem: how do you determine which CVEs are likely to be targeted and must be patched? Recent media reports a drastic surge in attacks against Microsoft’s IIS web server totaling 1.7 million attacks in the second quarter of…

The cybersecurity talent shortage will continue to grow — with an estimated 3.5 million openings by 2021. If that were a city, it would be the third-largest in the U.S. after New York and Los Angeles. In conversations with various cybersecurity providers of all sizes, it is easy to understand…

Late last week, the Associated Press reported that nearly 30,000 Department of Defense workers may have had Personally Identifying Information (PII) exposed due to a data breach from a third-party vendor. The information was reportedly associated with travel records. The breach was discovered on Oct. 4th, but there seems to…

There is much discussion about machine learning applied to cybersecurity. Many believe that machine learning will ultimately revolutionize the industry. As IT infrastructure becomes more complicated and intelligence, network traffic, and log data become more difficult to deal with — even with the best analytical tools — machine learning may…

The other day, we discussed how the cybersecurity labor crunch will lead to increased business for various cybersecurity service providers (MSSP’s) and how MSP’s, VAR’s, and other providers can also capitalize on this growing market. But they must build a security practice. This could take time, and a competing IT…

Several recent studies are telling us that illicit cryptomining is becoming a very large threat. This may leave many threat watchers wondering “what happened to ransomware”? After all, 2017 was a huge year for ransomware. But criminal hacking is a numbers game. There are a limited number of systems susceptible…

The recently revealed Windows 10 Task Scheduler Zero-Day illustrates just how quickly the idea of an exploit can become available. Some have referred to the zero-day as bering of “limited impact” as it is a local privilege escalation — which means the hackers have to already be on the machine…