Tag Archives: action

Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205

Attackers are actively exploiting an “old” vulnerability (CVE-2021-22205) to take over on-premise GitLab servers, Rapid7 researcher Jacob Baines warns. The additional bad news is that at least half of the 60,000 internet-facing GitLab installations the company detects are not patched against this issue. What are the attackers doing with these servers? Damian Menscher, a security reliability engineer responsible for DDoS defense at Google, says that some of them are used to generate DDoS attacks: A … More ? The post Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205 appeared first on Help Net Security .

View the original here:
Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205

2021 nastiest malware: Here to stay and ever evolving

This year was yet another year with COVID-19 and malware running rampant in the headlines. Be it in person or online, the world is still struggling in the fight against viruses. This year took another ghastly turn when attacking critical infrastructure and supply chains became a new trend. Perhaps because popular botnets were down, or maybe it’s just plain old-fashioned nation-state sponsored attacks. We saw some previous big players exit the scene this year, some … More ? The post 2021 nastiest malware: Here to stay and ever evolving appeared first on Help Net Security .

Read More:
2021 nastiest malware: Here to stay and ever evolving

NS1 DDoS Overage Protection delivers price protection for business resilience

NS1 announced DDoS Overage Protection. This new premium offering prevents unexpected cost increases in the event of usage spikes due to distributed denial-of-service (DDoS) attacks against NS1’s Managed DNS. DDoS attacks are on the rise. Recent research shows that compared to 2020, the monthly volume of network DDoS attacks in 2021 jumped by 200% and attack intensity skyrocketed 300%. These powerful cyberattacks take websites and applications offline, crippling businesses, impacting revenue, and causing substantial surges … More ? The post NS1 DDoS Overage Protection delivers price protection for business resilience appeared first on Help Net Security .

See the original post:
NS1 DDoS Overage Protection delivers price protection for business resilience

Corero Network Security expands DDoS protection portfolio with ETD capability

Corero Network Security announces additional flexibility when deploying its SmartWall solution, with a new Edge Threat Defense (ETD) capability. Corero’s mission is to make the internet a safer and more reliable place to do business by protecting against the downtime and disruption caused by DDoS attacks. Corero enables organizations around the globe to maintain business continuity in the event of a DDoS attack, by deploying the award-winning and intelligently automated SmartWall DDoS protection solution that … More ? The post Corero Network Security expands DDoS protection portfolio with ETD capability appeared first on Help Net Security .

View original post here:
Corero Network Security expands DDoS protection portfolio with ETD capability

Kinetic Business DDoS Mitigation Service helps customers protect networks from attacks

Kinetic Business introduced DDoS Mitigation Service, a fully managed service that monitors, detects, validates and mitigates attacks—even on third-party networks —before an outage or related damage occurs. The service augments Kinetic’s portfolio of security services and complements the company’s leading business data and voice services. DDoS attacks are disruptive and can easily make an organization’s internet circuit unavailable, impact their business and potentially put them in non-compliance with industry regulation. Kinetic’s DDoS Mitigation Service uses … More ? The post Kinetic Business DDoS Mitigation Service helps customers protect networks from attacks appeared first on Help Net Security .

View article:
Kinetic Business DDoS Mitigation Service helps customers protect networks from attacks

How can companies prioritize contact center security?

Security is front of mind for a lot of organizations these days, especially due to the 400% increase in cyberattacks since the pandemic started. Notable and alarming attacks include those on the federal government by nation-state threat actors using widely used third-party tools as vehicles for intrusion. Your contact center is no exception: it’s facing standard cyber security threats, such as DDoS attacks, but also seeing an increase in attacks targeting customers’ personal data. If … More ? The post How can companies prioritize contact center security? appeared first on Help Net Security .

View article:
How can companies prioritize contact center security?

Nexusguard unveils anti-DDoS protection program for CSPs

Nexusguard has announced a new program that empowers CSPs to easily launch anti-DDoS protection for their customers. Nexusguard will provide 10,000 Gbps of DDoS-mitigating hardware to CSPs around the world (100 Gbps each across 100 CSPs). The TAP100 Program accelerates the time-to-market for CSPs to deploy anti-DDoS services and protect end customers worldwide. Paired with Nexusguard’s extensive expertise of helping CSPs transform into MSSPs (managed security service providers), the TAP100 removes the hardware barriers associated … More ? The post Nexusguard unveils anti-DDoS protection program for CSPs appeared first on Help Net Security .

More:
Nexusguard unveils anti-DDoS protection program for CSPs

Defending against Windows RDP attacks

In 2020, attacks against Windows Remote Desktop Protocol (RDP) grew by 768%, according to ESET. But this shouldn’t come as a surprise, given the massive increase in people working remotely during the pandemic. With enterprises resorting to making RDP services publicly available, hackers have taken notice. Some DDoS attacks are leveraging RDP servers to amplify their effect, and malware like Trickbot is employing scanners to identify vulnerable open RDP ports. When it comes to remote … More ? The post Defending against Windows RDP attacks appeared first on Help Net Security .

See more here:
Defending against Windows RDP attacks

Monero-mining botnet targets orgs through recent MS Exchange vulnerabilities

The recent Microsoft Exchange Server vulnerabilities might have initially been exploited by a government-backed APT group, but cybercriminals soon followed suit, using them to deliver ransomware and grow their botnet. One perpetrator of the latter activities is Prometei, a cross-platform (Windows, Linux), modular Monero-mining botnet that seems to have flown under the radar for years. The attackers’ modus operandi Cybereason incident responders have witnessed instances of the botnet enslaving endpoints of companies across the globe, … More ? The post Monero-mining botnet targets orgs through recent MS Exchange vulnerabilities appeared first on Help Net Security .

Excerpt from:
Monero-mining botnet targets orgs through recent MS Exchange vulnerabilities

Noction Intelligent Routing Platform 3.11 features the remote-triggered blackholing capability

Noction announced the release of the Noction Intelligent Routing Platform 3.11. This version focuses on the new remote-triggered blackholing feature, which allows the redirection of traffic to a non-existent resource (a so-called black hole), or the blocking of the unwanted traffic in a provider’s network, thus preventing such traffic from entering the IRP user’s network. It can be specifically used to understand better and mitigate the effects of the Distributed Denial of Service (DDoS) attacks. … More ? The post Noction Intelligent Routing Platform 3.11 features the remote-triggered blackholing capability appeared first on Help Net Security .

Read the article:
Noction Intelligent Routing Platform 3.11 features the remote-triggered blackholing capability