News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

100 malicious drivers signed by Microsoft detected
100 Malicious Drivers Signed by Microsoft Detected - Image by Markus Spiske from Pixabay

Sophos experts have discovered 100 malicious drivers signed by Microsoft Windows Hardware Compatibility Publisher (WHCP). Most are so-called "EDR killers" specifically designed to attack and terminate various EDR/AV software on victims' systems. Sophos X-Ops has detected 133 malicious drivers signed with legitimate digital certificates; 100 of them were signed by the Microsoft Windows Hardware Compatibility Publisher (WHCP). Drivers signed by WHCP are fundamentally trusted by every Windows system, allowing attackers to install them without raising an alarm and then carry out malicious activities virtually unhindered….

Read more

Wanted: Malware reverse engineering experts
Kaspersky_news

Malware Reverse Engineering was the most in-demand skill among security professionals in 2022. About half (45 percent) of the experts who took part in Kaspersky training courses wanted to improve and expand their knowledge in this area. The demand for cybersecurity professionals is growing exponentially, outstripping the available skilled labor force as organizations pay more attention to their overall cybersecurity needs. In order to acquire the necessary knowledge and skills, cyber experts rely on various training courses, including the courses in the Kaspersky Expert Training Portfolio. 45 percent interested in reverse engineering skills Statistics from these Kaspersky training courses show that…

Read more

SEPPmail.cloud: Highly secure email application as a cloud solution
SEPPmail.cloud: Highly secure email application as a cloud solution

Professional mail application as a cloud solution with filter functions against spam, phishing and malware. SEPPmail.cloud: New product promises more convenience in email security. SEPPmail has been involved in email security for over 20 years. Above all, the Secure E-Mail Gateway, together with its encryption functions and digital signatures, has proven its worth. In this way, the security manufacturer guarantees secure, DSGVO-compliant e-mail dispatch at all times - without any effort for the sender and recipient. The entire service is now also available as a cloud solution, which also contains filter functions against spam, phishing and malware. With the new product SEPPmail.cloud, the company…

Read more

Key for Corona Green Pass stolen
Kaspersky_news

Some of the keys used to generate Green Pass certificates in Europe may have been stolen by cyber criminals. Giampaolo Dedola, security expert in the Global Research and Analysis Team (GReAT) at Kaspersky, comments. “We have discovered news online that offer the creation of valid COVID-19 vaccination certificates - so-called Green Passes. These vaccination cards are currently often required for access to flights, restaurants or museums in Europe. As proof that the codes worked, the actor created a screenshot with a valid QR code in the name of Adolf Hitler. Test QR codes with stolen keys work The further analysis ...

Read more

Security concerns with the digital EU COVID certificate
Eset_News

The EU COVID certificate should be available since July 1, 2021. As before, the ESET experts still have security concerns. There are some weak points that can be exploited for abuse. In the opinion of ESET, however, abuse cannot be ruled out, as the procedures are identical to the existing ones. “It must be clearly stated, however, that the creation of screenshots on smartphones cannot be perfectly prevented from a technological point of view. This becomes even more problematic if the COVID vaccination document is simply printed out without security features. But that will be current at the exhibition ...

Read more

DriveLock receives CC EAL3 + certification recognized by the BSI
B2B Cyber ​​Security ShortNews

DriveLock achieves Common Criteria EAL3 + certification recognized by the BSI. The specialist for IT and data security thus fulfills an important security standard for public bodies and critical infrastructures. DriveLock SE, one of the leading international specialists for IT and data security, has received the Common Criteria EAL3 + certification for its device and application control solution: With this internationally recognized certification, the high level of trustworthiness and the security standard of the DriveLock Agent 2019.2 are based on a given set attested to configurations. The evaluation was carried out by atsec information security AB in Danderyd, Sweden - in accordance with the requirements ...

Read more

IEC certification for Kaspersky Industrial product
Industrial software protection

IEC certification for Kaspersky Industrial CyberSecurity for Networks. Kaspersky technology meets all requirements for a secure software development lifecycle for industrial business solutions. Kaspersky Industrial CyberSecurity for Networks has received IEC certification in accordance with the international standard IEC 62443-4-1 for a secure software development life cycle of industrial business solutions based on an independent assessment by TÜV AUSTRIA. This is awarded to those software products that meet a number of requirements for the protection of industrial process control systems in modern production plants. The needs and expectations of the industrial sector in the field of cybersecurity are high, as the smooth and efficient operation of production lines and manufacturing processes is massive ...

Read more

Test: security solutions for companies
AV TEST News

The AV-TEST laboratory has published the results of its new test of security solutions for companies. Many products have also been awarded the TopProduct label. In July and August 2020, AV-TEST examined 17 security products for companies (endpoint protection) in the configuration specified by the manufacturer. The latest publicly available versions of the products were always used for the test. They could update themselves online at any time and use their “in-the-cloud” services. AV-TEST only considered realistic test scenarios and checked the products against current threats. The products had to demonstrate their capabilities using all functions and ...

Read more