Back to Blog
MOVEit Transfer Vulnerability: Attack Flow & Mitigations
A zero-day vulnerability has been discovered in MOVEit software, a managed file transfer solution by Prog... READ MORE
Top Cybersecurity Threats to Watch Out for in 2023
As technology advances, the cyber-threat landscape continues to evolve, posing significant challenges to... READ MORE
Threat Alert: “SVB Collapse!”
Attackers will use the panic created by the Silicon Valley Bank (SVB) collapse to target your finance dep... READ MORE
Why Strong Passwords are Not Enough: Protecting Your Credentials from Theft
By Shabtay Barel – Sr. CyOps Analyst Introduction Today, we heavily rely on technology in almost al... READ MORE
Zero-Trust Detections: How Cynet Protects Customers from the New OneNote Campaign
In the last couple weeks, we have observed a new threat actor attack method to abuse the Microsoft OneNot... READ MORE
DFIR via XDR: How to expedite your investigations with a DFIRent approach
Rapid technological evolution requires security that is resilient, up to date, and adaptable. In this art... READ MORE
Security Flaw in JsonWebToken Project
[Update] This CVE advisory was withdrawn on Jan. 27, 2023, after the blog below was published on Jan. 17.... READ MORE
CyOps Lighthouse: Vidar Stealer
The Darknet is home to many underground hacking forums. In these forums, cybercriminals talk freely: Shar... READ MORE
Dissecting Carbon Spider: FIN7's latest attacks
By Tomer Aviram, Sr. CyOps Analyst Fin7 is a financially motivated threat group that has been active s... READ MORE
November 2022 Ransomware Activity Report
Written by: Maor Huli, Research Analyst The ransomware from November to introduce are: CrySpheRe... READ MORE
Cyber Insurance: Policies, Coverage, Requirements, and More
What is Cyber Insurance? Cyber insurance mitigates an organization’s financial risk in case of a data... READ MORE
Zero Trust vs. Defense in Depth: Unpacking Modern IT Security
CISOs and security administrators often face the dilemma of which cybersecurity approaches to incorporate... READ MORE
CyOps Lighthouse: Raccoon stealer
The Darknet is home to many underground hacking forums. In these forums, cybercriminals talk freely: Shar... READ MORE
CyOps Threat Alert: OpenSSL Vulnerability
By Asher Davitadi, Sr. CyOps Analyst On November 1st 2022, the OpenSSL project team released a new too... READ MORE
5 reasons to consolidate your tech stack
Let’s face it – small to medium enterprises (SMEs) with limited security resources can’t get access... READ MORE
October 2022 Ransomware Activity Report
Written by: Maor Huli Ransomware from October to introduce are: RedKrypt RONALDIHNO CMLOCKER... READ MORE
Orion Threat Alert: Qakbot TTPs Arsenal and the Black Basta Ransomware
Max Malyutin – Orion Threat Research Team Leader This report covers the execution of the notorious Q... READ MORE
7 reasons to choose an MDR provider
Detecting and responding to cyber threats is challenging for any org, but even more so for small security... READ MORE
Don’t get reeled in: New Microsoft 365 phishing campaign
By Tomer Aviram, Sr. CyOps Analyst We’ve seen the number of phishing attacks surge in the past coupl... READ MORE
What you need to know about zero trust
You’ve heard about the zero trust approach – but why is it important? Until recently, cyber securi... READ MORE
CyOps Threat Alert: Microsoft Exchange Zero Days
By Tomer Aviram, Sr. CyOps Analyst On September 30, 2022, two new zero-day vulnerabilities were found... READ MORE
Incident response in 6 steps
By Asaf Perlman, Incident Response Leader Modern security tools continue to improve in their ability t... READ MORE
CyOps Threat Alert: LockBit3(LockBit Black)
By Ronen Ahdut, Cyber Threat Intelligence Leader LockBit was introduced in 2019 and operates in a Rans... READ MORE
CyOps Lighthouse: Luca Stealer
By Ronen Ahdut – Sr. CyOps Analyst The Darknet is home to many underground hacking forums. In these... READ MORE
How to stay safe against attacks like the recent Cisco hack
By Ronen Ahdut – Sr. CyOps Analyst There is one striking similarity between the recent Cisco, Micros... READ MORE
6 steps to building a lean security framework
“Patchwork enforcement mechanisms continue to hamper efforts to control cybercrime.” – World Econo... READ MORE
Seismic Shifts: Surprising Insights from 2022 CISO Survey of Small Security Teams
Lack of staff, threat visibility, and technology consolidation drive priorities It’s no secret, the... READ MORE
Social Engineering: What you need to know to stay resilient
There’s a good chance you’ve been exposed to at least one social engineering attack. Unless you don�... READ MORE
Browser Exploits – Legitimate Web Surfing Turned Death Trap
On January 7th, the Mozilla Foundation disclosed a flaw in Firefox 72 that made it possible for attac... READ MORE
Botnet Attacks: Transforming Your IT Resources into an Army of Zombies
One computer program that automatically performs a repetitive malicious task is called a bot. Multiply th... READ MORE
Exploit Kits: Their Evolution, Trends and Impact
What Are Exploit Kits? Exploit kits are a type of all-inclusive, automated, and rapidly deployable threa... READ MORE
The 7 Best Free and Open-Source Incident Response Tools
What Is Incident Response? Being prepared is key to responding to security incidents in an accurate and... READ MORE
6 Incident Response Steps for Effective Security Event Mitigation
Like any other emergency situation, security incidents require swift, coordinated action. But operating i... READ MORE
Cynet Insights on Gartner’s Top 10 Security Projects for 2019
When it comes to security, prioritization is often the most used word. With an ever-increasing number of... READ MORE
5 Tips To Help Small to Mid-Sized Businesses Improve Cybersecurity
Cybersecurity threats need to be taken more seriously by businesses of all sizes. Security breaches and a... READ MORE
Refund and Replace with Cynet Security Platform
Rip Refund and Replace with Cynet Security Platform The Hunt for Advanced Threat Protection It’s a... READ MORE
5 Steps to Achieving PCI Compliance
Meeting PCI Compliance Requirements It can be a difficult yet extremely important task for all businesse... READ MORE
How to Secure Your Mid-Sized Organization from the Next Cyber Attack
If you are responsible for the cybersecurity of a medium-sized company, you may assume your organization... READ MORE
Securing Your Organization's Network on a Shoestring
In this blog post, we will discuss how to protect your resource-constrained organization’s endpoints, n... READ MORE
Self-Audit Guide: Cybersecurity Effectiveness for the Resource-Constrained Organization
A Primer for Moving Beyond AV and Firewalls: The Problem - As software systems become more distributed a... READ MORE
Making Threat Intelligence Work for You
As cyber attacks and threats have grown more complex, our knowledge of them has increased as well. As sec... READ MORE
Proactive Security through Threat Hunting - Part 2
In part one of our series on taking a proactive approach to cyber security, we discussed the idea of acti... READ MORE