Tag: Heimdal Security Blog

Read the original article: Understanding the Automated Patch Management Process There are premises outside of economic implications that draw attention to the importance of Automated Patch Management processes. Keeping systems well informed about the newly-released patches is no longer just…

Read more →

Read the original article: State-of-the-Art Cybersecurity Strategies: Essential Microsoft EDR Tools EDR (Endpoint Detection and Response) should be an essential part of any great cybersecurity strategy. Endpoint security is critical for any company since, only in 2019, “70% of successful…

Read more →

Read the original article: Accellion Attackers Stole Data and Breached Companies Running FTA Servers On Monday, cybersecurity researchers connected a series of attacks targeting Accellion File Transfer Appliance (FTA) servers over the past two months to a data breach and…

Read more →

Read the original article: What Is Vulnerability Risk Management? When discussing cyber risks, among the most common terms that are used are vulnerabilities, exploits, and threats. It is necessary to understand the difference between these terms and what they mean…

Read more →

Read the original article: What You Need to Know Before Implementing an EDR Solution In today’s constantly evolving cyber-threat landscape, your organization’s endpoints are more than simple workstations. They are digital connections to the online world, which is undeniably useful,…

Read more →

Read the original article: Clubhouse Chats Have Been Breached A short while ago, news reports revealed that social networking app Clubhouse was exposed to a major security breach and the application is currently reviewing its data. The company that owns…

Read more →

Read the original article: EPP EDR: What Is Each and How They Differ When it comes to cybersecurity incidents, your company’s endpoints are some of the most important IT assets you want to monitor and protect. The massive increase in…

Read more →

Read the original article: What Is a Zero-Day Vulnerability? Nowadays, every single organization relies on software and Internet services. This dependence brings along a certain degree of vulnerability. Today’s marketplace businesses are more likely to be disrupted by cybercriminals than…

Read more →

Read the original article: SECURITY ALERT: Newly Discovered Fan Courier Phishing Campaign Targets Romanian Companies Heimdal™ Security, among other cybersecurity providers, has recently detected a phishing campaign that specifically targets Fan Courier business customers located in Romania. Several companies have…

Read more →

Read the original article: RIPE NCC reveals failed brute-force assault on its SSO service Failed credential-stuffing attack on RIPE NCC’s infrastructure. These assaults aim to compromise a large number of user accounts with stolen credentials. The group, which manages the…

Read more →

Read the original article: Roadmapping Privilege Escalation in Windows Systems And the award for the most confusing cybersecurity phrase out there goes to “privilege escalation”, a term which, as balking as it might sound, is oftentimes confused with obtaining higher…

Read more →

Read the original article: What Is a Software Patch? According to TechTarget, a software patch is a “quick-repair job for a piece of programming designed to resolve functionality issues, improve security and add new features.” Although similar to a hotfix,…

Read more →

Read the original article: Windows Starts Removing Adobe Flash Player via KB4577586 update After their official statement in September 2020, where they confirmed they were ending support for Adobe Flash Player on its Chromium-based Edge, legacy Edge browsers, and Internet…

Read more →

Read the original article: Data Leakage Prevention: What It Is and How It Can Help Your Business Data breaches are as common as ever nowadays, with cyber attackers going after confidential data for their gain. To add insult to injury,…

Read more →

Read the original article: New Malvertising Campaign by the ScamClub Group Is Actively Exploiting Zero-Days Just when you thought things were finally going smoothly for a change, the malvertising group widely known as “ScamClub” has made an unfavorable comeback. This…

Read more →

Read the original article: IT Asset Management Best Practices: An Overview When it comes to IT asset management best practices, there are a few things you must take into consideration. We’ll discuss all of them below.  A. IT Asset Management…

Read more →

Read the original article: What is DLP Security? Definition, Benefits, and More The idea that knowledge is power is a timeless one. The concept first appeared in the Old Testament, predating our modern age by millennia. And yet, its core…

Read more →

Read the original article: Did You Know That IT Asset Discovery Is Essential for IT Asset Management? In one of my previous articles, I’ve talked about what IT assets are and mentioned that IT asset discovery is essential for maintaining…

Read more →

Read the original article: Malicious Insider Explained: The Call is Coming from Inside the House For the most part, today’s modern workplace has grown accustomed to cyberattacks directed by third parties that are external to the organization. But what can…

Read more →

Read the original article: What is a DLP Solution and How does it Add up Your Company’s Cybersecurity Whenever a company, whether a small, family business or a big corp, formulates a risk mitigation plan, DLP flares up. Data Loss…

Read more →

Read the original article: What Is An IT Asset? An Essential Element In Your Company’s Cybersecurity Have you ever wondered what the concept of IT asset refers to and what is its importance to your business? Continue reading to find…

Read more →

Read the original article: Everything You Need to Know About IT Asset Management In a corporate context, an asset is part and parcel of a company’s financial worth. Assets hold economic value and future benefits, as they have the ability…

Read more →

Read the original article: Patch Tuesday (February 2021): Microsoft Patches 56 Windows Vulnerabilities, including a Window Zero-Day Vulnerability Microsoft has recently released the patched vulnerabilities roll which includes 56 system and operating system vulnerabilities and security updates for Windows 10.…

Read more →

Read the original article: Internal Threats: A Major Risk to Any Business As Daniel Wanderson wrote for Security Boulevard, a CEO must consider every aspect of his/her business – and cybersecurity is one of the most important ones since anyone…

Read more →

Read the original article: How to Stay Anonymous Online As Blade Runner-esque as it may sound, we now find ourselves in the year 2021. Once the stuff of science-fiction, we’ve now waded into the strange neon-lit scape of the 2020s…

Read more →

Read the original article: Asset Tracking Software: What Is It and How Does It Work? Keeping a record of your company’s inventory is essential for the digital and financial well-being of your business. Knowing where your resources are located is…

Read more →

Read the original article: We Have Debunked 5 Myths About Email Security What’s the first thing you remember about creating your email account? If “choosing a good password” was your answer, then you’re in the right spot. After careful thought…

Read more →

Read the original article: What Is Insider Threat, Its Varied Forms and How It Can Be Mitigated You might think that you’re taking all security measures to protect your company, but have you ever considered that the danger might come…

Read more →

Read the original article: Essential Application Whitelisting Concepts: Definition, Types, Implementation The simplest way to stop malicious code from infiltrating your network is by automatically blocking it before it even enters the system. A straightforward and efficient way to achieve…

Read more →

Read the original article: Is Bitcoin Safe? Things to Consider Before Investing Back in 2008, a group that went by the name of Satoshi Nakomoto came up with an idea that would forever change the very notion of banking. That…

Read more →

Read the original article: Application Control 101: Purpose, Features, and Benefits Application control is part and parcel of the larger cybersecurity landscape of access control, as outlined by the National Institute of Standards and Technology (NIST). But what does the…

Read more →

Read the original article: What is Eradication in Cybersecurity? An Essential Part Of Incident Response Plans If you want to understand what is eradication in cybersecurity, you must know that it is related to the notion of cybersecurity incidents and their possible…

Read more →

Read the original article: Data Integrity: What it Means and Why Any Organization Should Maintain It Data integrity is the backbone of all sound business decisions. Why? Let’s give it some thought. Indisputably, we operate in a data-driven world, where…

Read more →

Read the original article: Everything You Need to Know About Defense in Depth Layers Defense in depth layers come in many shapes and sizes. This might become confusing for someone who is new to the concept, so please allow me…

Read more →

Read the original article: Defense in Depth Strategy: the Key For Outstanding Cybersecurity What do an ancient military tactic and cybersecurity have in common? The notion of defense in depth strategy. We’ll cast some light on the topic in this…

Read more →

Read the original article: Is BlueStacks Safe? Addressing Cybersecurity Concerns of Android Emulation Software BlueStacks is unquestionable, one of the most appreciated Android emulators out there, a fact is proven by its 400+ million user community. Although BlueStacks was designed…

Read more →

Read the original article: Emotet Malware Over the Years: The History of an Active Cyber-Threat [Updated] Malware strains come and go while Internet users become more and more accustomed to online threats being dealt with swiftly by the competent authorities.…

Read more →

Read the original article: The Basics of Defense in Depth Cybersecurity Defense in depth cybersecurity is a concept in which a series of security protocols and controls are layered throughout an IT network to preserve its integrity and privacy. The…

Read more →

Read the original article: Have You Ever Installed a Malicious Chrome Extension? A few months ago I was writing about my preference for using web applications due to the fact that they allow me to move between browsers tabs swiftly.…

Read more →

Read the original article: How Can You Avoid Downloading Malicious Code? Security Tips to Consider Malicious code is everywhere on the Internet. Sometimes, it’s so well-concealed by social engineering and other nefarious practices that it makes it hard for the…

Read more →

Read the original article: NSA Warns Against Using DoH as a Single DNS Security Approach A few days ago, the United States’ National Security Agency (NSA) released a report which spelled bad news for organizations who are relying on DNS-over-HTTPS…

Read more →

Read the original article: How to Send Encrypted Email. Top 5 Choices in Secure Email Agents. Previously on the email encryption sage; so far, we’ve talked out how PGP encryption works, how to Encrypt emails in Outlook using OME and…

Read more →

Read the original article: How to Encrypt Email in Kleopatra Still, looking for more ways to add extra padding to your emails? Today, I’ll be talking about one of the most peculiar and useful mail encryption tools I’ve happen to…

Read more →

Read the original article: What Can Malicious Code Do? A Brief Overview of Common Cyberattacks Many of the most widely encountered types of cyberattacks are fueled by malicious code. But what can malicious code do? What makes it so dangerous?…

Read more →

Read the original article: How to Encrypt an Email in Outlook In a previous article, I’ve shown you how to send secret notes to your peers using PGP encryption. If you haven’t had a chance to read it, go and…

Read more →

Read the original article: Did You Know That There Are Various Types of Online Financial Frauds Lurking in the Cyberspace? Social engineering in cybersecurity is a dangerous technique – it requires human interaction and manipulation for hackers to successfully access…

Read more →

Read the original article: 7 Examples of Malicious Code to Keep in Mind Believe it or not, malicious code has been around for half a century already. What started as an education lab experiment made its way into the wild,…

Read more →

Read the original article: How to Report Email Fraud: Learn What to Do If It Happens to You Have you, a colleague or a friend ever received a suspicious email? It is of paramount importance to know how to report…

Read more →

Read the original article: Is Signal Secure? An Analysis of its History, Encryption Protocol, and Privacy Policy Everyone from Elon Musk to Edward Snowden has been talking about Signal these days. Friends, family, and followers received recommendations to create accounts…

Read more →

Read the original article: Machine Learning in Cybersecurity: The New Essential for Enhanced Performance Machine learning is usually mentioned in contexts that actually refer to artificial intelligence or used as a synonym. Let us have a closer look at what…

Read more →

Read the original article: What is a Malicious App and How to Spot One? We’re all familiar with terms such as “threat-hunting”, “boots on the ground Intelligence” or “DNS traffic filtering.” Going back to one’s roots is always a good…

Read more →

Read the original article: The Cyber Kill Chain Model: A Comprehensive Guide The cyber kill chain model offers a detailed perspective and the appropriate methods to recognize incidents surrounding an attack against an organization. This model allows security teams to…

Read more →

Read the original article: Artificial Intelligence in Cybersecurity: The Culture of the Future Have you ever wondered what intelligence means? This characteristic of humans encompasses – but it’s not limited to – learning, reasoning, problem-solving, perception and the use of…

Read more →

Read the original article: What is PGP Encryption and How does it Work? Peter Thiel of Palantir Technologies and PayPal once said that every time an email is written, it gets broadcasted into the public domain, which is not as…

Read more →

Read the original article: Egregor Ransomware: Origins, Operating Mode, Recent Incidents A new year brings about countless new opportunities, but also, unfortunately, the chance for previous menaces to grow and evolve. Such is the case with Egregor ransomware. Since anticipation…

Read more →

Read the original article: Patch Tuesday (January 2021): Microsoft patches 83 vulnerabilities, including a Zero-Day Marking the first Patch Tuesday of 2021, Microsoft has released updates to its operating systems and other software, patching over 80 security holes (including one…

Read more →

Read the original article: MegaCortex Ransomware: The Cyber-Threat Looming Over Corporate Networks Cybercriminals only want one thing these days, and that thing is substantial payouts. This is why most hackers focus on big game hunting, directing the vast majority of…

Read more →

Read the original article: The State of Cybersecurity in 2021: Predictions for the New Era of Digital Life As 2020 comes to a close, it’s time to sketch out our predictions for 2021 and the shifts and transformations it will…

Read more →

Read the original article: Heimdal™ Announcements: A Change in Our Product Names As a new year at Heimdal™ begins, we have some important branding changes to inform you about. The Heimdal™ name has grown tremendously on a Global scale, expanding…

Read more →

Read the original article: PIM vs PAM vs IAM: What’s The Difference? Does access control terminology puzzle you? Many people often mistake PIM, PAM, and IAM – privileged identity management, privileged access management, and identity and access management. Oftentimes, they…

Read more →

Read the original article: Is Credit Karma Safe? Need to Know Before Creating Your Account “Neither a lender nor a borrower,” says an old-world catchphrase. Still, there are times, trying ones at that, when one must disregard these mannerisms and…

Read more →

Read the original article: The DCH Ransomware Attack: A Teachable Moment in Cyber-History With more and more hackers profiting from the Coronavirus crisis to target healthcare providers, now is the time to look to the past and learn from it.…

Read more →

Read the original article: SamSam Ransomware 101: How It Works and How to Avoid It Malware traditionally spreads through nefarious social engineering practices, phishing campaigns, and malicious attachments. In this way, it manages to profit off of users that are…

Read more →

Read the original article: Is Venmo Safe? All of Your Questions Answered Everyone has probably heard about PayPal. It’s a small world after all, and even smaller when it comes to choosing the best money-transfer application. They say that PayPal…

Read more →

Read the original article: This Year in Ransomware Payouts (2020 Edition) Ransomware has come to be a customary instrument in the arsenal of cybercriminals who routinely attack individuals and organizations. Under such circumstances, their victims experience financial damage either by…

Read more →

Read the original article: Phobos Ransomware: Everything You Need to Know and More Ransomware is an increasingly popular threat that cybercriminals weaponize for their own gain. Although some strains are incomparable, innovative even, others are six of one, half a…

Read more →

Read the original article: What Is a Crypto Virus and How Does It Work? A few months ago, my colleague Bianca Soare wrote a very comprehensive article on what virus and worm mean. Understanding what the terms virus, worm and…

Read more →

Read the original article: Heimdal is the Winner of the Anti-Advanced Persistent Threat (APT) Solution of the Year Award HeimdalTM Security (HeimdalTM), the creator of the leading threat prevention security solution Thor Foresight Enterprise, is delighted to announce it has…

Read more →

Read the original article: An Overview of the Texas Ransomware Attack and What You Can Learn from It Ransomware attacks against local government agencies, educational institutions, and organizations in general are on the rise. To prevent them, administrations must learn…

Read more →

Read the original article: Petya Ransomware: History, M.O., Targets and More When it comes to ransomware, this sophisticated piece of malware that blocks the victim’s access to his/her files until a ransom is paid, Petya ransomware is surely one that…

Read more →

Read the original article: What is Ransomware – 15 Easy Steps To Protect Your System [Updated 2020] May 12th 2017 saw the biggest ever cyber attack in Internet history (yes, bigger than the Dyn DDoS).  A ransomware named WannaCry stormed…

Read more →

Read the original article: Patch Tuesday (December 2020): Microsoft Patches 58 Vulnerabilities Microsoft has released patches for 58 bugs and one advisory as part of its December 2020 Patch Tuesday security updates. Out of the vulnerabilities addressed in this month’s…

Read more →

Read the original article: What is Ransomware – 15 Easy Steps To Protect Your System [Updated 2020] May 12th 2017 saw the biggest ever cyber attack in Internet history (yes, bigger than the Dyn DDoS).  A ransomware named WannaCry stormed…

Read more →

Read the original article: Heimdal Security Announces Opening of Its Second Office in the UK HeimdalTM Security (HEIMDALTM), a leading global provider of an all-encompassing cybersecurity suite comprising threat prevention, vulnerability management, endpoint detection, PAM, application control, and e-mail security,…

Read more →

Read the original article: (UPDATED 2020) The most Popular Free Encryption Software Tools to Protect Your Data In this internet-connected world, it’s become more important than ever to keep our information safe. Whether it’s personal or work-related, our data is…

Read more →

Read the original article: (UPDATED) The 12+ Internet Crime Stories That Make Cybersecurity Measures Essential Internet crime stories are dime a dozen but these examples will show you why online security is essential. From ethical hacking to blackmail and car…

Read more →

Read the original article: (UPDATED 2020) JavaScript Malware – a Growing Trend Explained for Everyday Users Halfway through 2016, cyber criminals are starting to focus on a new weapon in their arsenal. This is a new piece of software they…

Read more →

Read the original article: Is AliExpress Safe? The Answer Might Surprise You Is AliExpress Safe? A Brief History of Online Shopping  According to ODM World, online shopping refers to a “unique form of electronic commerce (known as eCommerce) which connects…

Read more →

Read the original article: What is an SMB Relay Attack? “Going full ninja” is becoming a major nuisance for SMBs. Companies on the rise tend to put cybersecurity on hold – huge mistake! From ransomware to your run-of-the-mill phishing email,…

Read more →

Read the original article: Cyber Monday Shopping Guide 2020: Essential Cybersecurity Tips Sales season is upon us, which means hackers are having a field day with stealing confidential financial information and using it for nefarious purposes. Whether you’re a retailer,…

Read more →

Read the original article: Cloud IAM and Cloud PAM Challenges Explained Cloud computing has become a viable solution for companies large and small across all industries. Its accessibility, scalability, reliability, and flexibility are just a few of its benefits, which…

Read more →

Read the original article: SECURITY ALERT: Zoom Video Phishing Emails Targeting Corporate HVTs (UPDATED) Heimdal™ Security has detected what appears to be the onset of a phishing campaign targeting C-level executives and, most likely, decision-makers. The recently uncovered phishing attempt…

Read more →

Read the original article: Complete Our Survey and Redeem an Extended 60-Day Trial of Thor Foresight Enterprise [EXTENDED] Are you a Heimdal Security blog reader and/or customer? Then you already know how passionate we are about cybersecurity research and education. This…

Read more →

Read the original article: Ryuk Ransomware – Untangling a Convoluted Malware Narrative In late 2018, a new type of threat actor would fret its hour upon the stage. Instead of skedaddling from the stage, this one would linger. And linger…

Read more →

Read the original article: Is Airbnb Safe? People have been travelling for thousands of years, whether out of necessity (for commercial, educational, governmental or religious purposes) or curiosity, so lodging and food became basic necessities a long time ago.  Nowadays,…

Read more →

Read the original article: Network Perimeter Vulnerabilities: The Cyber-Threat Hiding in Plain Sight Did you know that most companies are affected by high-risk network perimeter vulnerabilities? In this article, I will go over the basics of vulnerabilities in the context…

Read more →

Read the original article: What Is E-PDR (Endpoint Prevention, Detection and Response)? Cybersecurity evolves with the times and always needs to stay one step ahead of malicious groups that seek to harm organizations and individuals for various benefits. The age…

Read more →

Read the original article: IAM-Driven Biometrics: The Security Issues with Biometric Identity and Access Management The increase of cybersecurity incidents brings along a higher demand for enhanced security protections. Thus, in the attempt of preventing unauthorized third parties from accessing…

Read more →

Read the original article: Complete Our Survey and Redeem an Extended 60-Day Trial of Thor Foresight Enterprise [EXTENDED] Are you a Heimdal Security blog reader and/or customer? Then you already know how passionate we are about cybersecurity research and education. This…

Read more →

Read the original article: IAM-Driven Biometrics: The Security Issues with Biometric Identity and Access Management (IAM) The increase of cybersecurity incidents brings along a higher demand for enhanced security protections. Thus, in the attempt of preventing unauthorized third parties from…

Read more →

Read the original article: Netiquette Rules: Definition and 10 Basic Rules To Dramatically Improve your Safety [Updated 2020] What is netiquette, and how do we define it. Before we talk about netiquette rules we need to determine its definition. Netiquette…

Read more →

Read the original article: Account Takeover Fraud Is Up 300%. What You Need to Know Account takeover fraud (ATO) is definitely not the new kid on the block. Establishments whose business model is centered around financial transactions, such as online…

Read more →

Read the original article: [Updated 2020] Hacked Email Account: What to Do If It Happens to You or Your Business We invite you to do a little exercise:  open your email and take a look at everything that you keep…

Read more →

Read the original article: Is Uber Safe? All Your Questions Answered Uber is not only synonymous with comfort but has also revamped the definition of ridesharing. Serving over 60 countries and close to 1,000 metropolitan areas, Uber established itself as…

Read more →

Read the original article: Patch Tuesday (November 2020): Microsoft Releases Fix for Zero-Day Vulnerability Found in Windows The monthly security updates known as Patch Tuesday have been recently published by Microsoft. This time, 112 software flaws across a wide variety…

Read more →

Read the original article: Operation Tovar: What It Was and How A Key Botnet Was Eliminated Over the past years, organized malware disruptions have grown in speed and prominence as more and more businesses and law enforcement entities fought together.…

Read more →

Read the original article: SECURITY ALERT: Zoom Video Phishing Emails Targeting Corporate HVTs Heimdal™ Security has detected what appears to be the onset of a phishing campaign targeting C-level executives and, most likely, decision-makers. The recently uncovered phishing attempt employs…

Read more →

Read the original article: SECURITY ALERT: New Norwegian Campaign of Scam Phone Calls (Impersonating Microsoft) A new Norwegian campaign of scam phone calls has been spotted, along with a rise in malicious phone calls from hackers claiming to be Microsoft…

Read more →

Read the original article: Here Are the Free Ransomware Decryption Tools You Need to Use [2020 Updated] If your computer gets infected with ransomware, follow the steps below to recover your data: Step 1: Do not pay the ransom because there is…

Read more →

Read the original article: What Is Whaling 101 Dear reader, if you’re interested in finding out more about some of the most common cyber attacks related to email security (phishing, spear phishing, business email compromise, what is whaling), please take…

Read more →