DarkReading |TI

A new document separates cloud vulnerabilities into four classes and offers mitigations to help businesses protect cloud resources. Read More HERE

CISA has released an advisory for six high-severity CVEs for GE Carescape patient monitors, Apex Pro, and Clinical Information Center systems. Read More HERE

Attackers ‘weaponized’ Active Directory to spread the ransomware. Read More HERE

New research finds security operations centers suffer high turnover and yield mediocre results for the investment they require. Read More HERE

An attack chain of vulnerabilities in ConnectWise’s software for MSPs has similarities to some of the details of the August attack on Texas local and state agencies. Read More HERE

Researchers have discovered how ransomware can take advantage of the Windows Encrypting File System, prompting security vendors to release patches. Read More HERE

A fictitious industrial company with phony employees personas, website, and PLCs sitting on a simulated factory network fooled malicious hackers – and raised alarms for at least one white-hat researcher who stumbled upon it. Read More HERE

A new report from Check Point recaps the cybercrime trends, statistics, and vulnerabilities that defined the security landscape in 2019. Read More HERE

Fraudulent emails tell recipients their W-2 forms are ready and prompt them to click malicious links. Read More HERE

Following a year that saw the fewest number of vulnerabilities reported since 2015, Oracle’s latest quarterly patch fixes nearly 200 new vulnerabilities. Read More HERE