Patches

‘Distributed guessing’ attack lets hackers verify Visa card details

Armed with a card number, researchers tricked websites into helping them guess the expiry date and CVV.

Satish K Sharma

Satish K Sharma led a team of experts to carry out a detailed gap analysis against ISO-27001:2013 guidelines to attain high security levels. 
 

Shailendra Upadhyay

Shailendra Upadhyay has been in-charge of the implementation of SaaS (security-as-a-service) to identify any incident reported on the internet at any given point of time. He also helped deploy a centralized patch management solution that assists in managing all OS patches automatically. 

Meetali Sharma

Meetali Sharma conducted an internal risk assessment with respect to the security standards, identified gaps, and made numerous changes within the environment. This included physical segregation, VLAN segmentation, dual factor authentication, policy alignment, and employee trainings. 

Rajesh Shetty

At Aditya Birla Sun Life Insurance, Rajesh Shetty set up a deep security virtual patching for servers and an ENS, active response and threat intelligence, for advanced protection of its servers and end points.

Partner Content
The Human Factor: Keeping Your Cybersecurity Defence Strong and Secure

Most big surveys reckon that human errors are at the heart of security incidents.

Partner Content
How to protect your server against ransomware attacks?

Many companies get scared and pay up the demanded ransom almost immediately which only leads to criminals getting more emboldened. 

Intel discloses new vulnerability that could affect Core family CPUs

With Meltdown and Spectre variants still on the map, another security vulnerability has emerged that affects Intel processors’ speculative execution technology.

Robust security with 99.99 percent uptime – LogMeIn CISO tells us how it’s done

From taming the DevOps beast to building a highly resilient architecture, Gerald Beuchelt, CISO at LogMeIn shares his strategy to thrive in the rapidly changing threat landscape.

Partner Content
Malware in attachment? Stop them before they hit your organization's security

Malware authors are continuously experimenting and employing new tactics to disguise their malware into email attachment. The key objective is to make the email look “normal” and “non-suspicious”, which will prompt the recipient to open the attachment without any suspicion.

Partner Content
Eternal Blue - A Prominent Threat Actor of 2017 - 2018

This paper outlines the usage of FuzzBunch exploit framework, details of MS17-010 patch, and insights into the EternalBlue Exploit and DoublePulsar payload. In addition to these, this paper also puts together the detection statistics of EternalBlue exploit after its inception in May, in various campaigns till date. 

Users attacked with malicious Office documents grew fourfold: Kaspersky

Attacks based on exploits are considered to be very powerful, as they do not require any additional interactions with the user and can deliver their dangerous code discreetly.