About Us | Contact Us
View Cart
Archive for 'Vulnerability News' Category

New Malware Can Cause Issues After Deletion

By Vigilize - Last updated: Monday, June 26, 2017

Targeting financial institutions, victims can serve as drones even after cleaning. An Article Review. Our friend Wes Pollard at Home Bank submitted this new malware alert to us and because it targets banking institutions specifically we thought we’d share it with you as well. Dubbed Pinkslipbot, the malware uses a variety of methods to harvest […]


The Advantages of Being Small

By Vigilize - Last updated: Thursday, May 25, 2017

Questionable social media campaign passed through layers of management unquestioned An article review. Sometimes it can seem like being one of the big guys makes security easy–finding a second set of eyes to look at a problem is never a problem, and of course the generous budgets don’t hurt, either. But having access to those […]


Ten Must-Reads For Information Security Awareness

By Vigilize - Last updated: Thursday, April 20, 2017

These titles should be on every professional’s list. An article review. If there’s one thing you can take away from the most recent installment of our annual T7 article, it’s that the threats we face when securing IT assets are a diverse and constantly evolving lot. That’s why staying current is one of the most […]


New Vulnerabilities Found and Patched in LastPass

By Vigilize - Last updated: Wednesday, August 3, 2016

An article review. Attackers could have used the exploits to compromise users’ password vaults and execute code on affected machines Last week security researchers independently reported two major flaws in LastPass, a popular password management application with users numbering in the millions. While one exploit had been patched for over a year before being disclosed, […]


Windows 10 Exploit Could Let Malware In

By Vigilize - Last updated: Wednesday, August 3, 2016

An article review. The User Account Control bug allowed for malicious code to run with the highest privileges While Windows 10 promises to be the most secure version of the operating system yet, it’s not entirely free from bugs as security researchers pointed out recently. The new exploit targets the Disk Cleanup and Silent Cleanup functions […]


New Top Level Domains Could Expose Companies To Risk

By Vigilize - Last updated: Wednesday, June 15, 2016

An article review. Opportunistic hackers could register new TLDs hoping to prey on misdirected internal traffic   The US Computer Emergency Readiness Team (US-CERT) recently issued a statement for organizations who use top level domain names to route internal traffic, warning that misconfigured proxy servers could route requests for those names to newly registered external […]


Malware Uses Windows Service To Reinstall Itself

By Vigilize - Last updated: Friday, June 10, 2016

An article review. Even after removal, a hijhacked service can reinfect machines targeted with a new technique News of a new malware technique comes from our friend Wes Pollard at Home Bank, who sent us an article about this interesting new threat. Researchers at SecureWorks discovered the malware while responding to a customer incident last […]


Verizon Releases 2015 Data Breach Investigation Report

By Vigilize - Last updated: Monday, April 20, 2015

An article review. Great insights to help you better manage risk Each year the security folks at Verizon partner up with companies around the world to collect, analyze and report on data breaches. This year, their report is 70 pages full of explanations, graphs, charts and statistics. We hope to highlight some of the main […]


Windows Susceptible to FREAK Attack After All

By Vigilize - Last updated: Sunday, March 22, 2015

An article review. Microsoft admits that Internet Explorer is vulnerable to HTTPS hack Earlier this month, Microsoft announced that any Windows computer running any version of Internet Explorer is vulnerable to a FREAK attack. Now the FREAK vulnerability has been around for years; however, it was believed to only affect certain browsers and devices, like […]


Keep Your BYOD Policy Updated

By Vigilize - Last updated: Wednesday, March 18, 2015

An article review. New Device automates iOS Pin Hacking Many companies have Bring Your Own Device policies in place, where employees are allowed to bring their own PCs or mobile devices into the workplace or have business utilities, like email, setup on their personal devices. They also usually have extensive policies allowing remote wiping, etc. […]