Estimated reading time: 5 minutes
In a recent event, Kaseya – the US-based software provider for MSPs and IT Teams has reported a worldwide Supply Chain Attack on July 2, 2021 taking advantage of US Independence Day as a leverage since the strength of...
Estimated reading time: 3 minutes
The SideCopy APT Group has expanded its activity this year and now targets critical Indian sectors this time. Quick Heal Security Labs researchers have been tracking the notorious cyber-attack group – ‘Transparent Tribe’ since the first SideCopy campaign in...
Estimated reading time: 2 minutes
We are aware of an ongoing Supply Chain Attack affecting Kaseya VSA users. As per the recent update from Kaseya, the attackers were able to exploit zero-day vulnerabilities in the VSA product to bypass authentication and run arbitrary command...
Estimated reading time: 3 minutes
The last decade has witnessed an accelerated adoption of cloud, mobile, and cloud apps. Over the previous year, with the new normal kicking in, organizations had to transition their employees to work outside the enterprise perimeter. As remote work...
Estimated reading time: 2 minutes
The evolution of the Work From Anywhere model has led to a highly distributed workforce with a proliferation of devices that are both BYOD and corporate-owned. This proliferation has resulted in an expansion of an enterprise’s attack surface, due...
Estimated reading time: 2 minutes
SHA-1 and SHA-2 are the digest algorithms of the code signing certificate used by Seqrite to sign the code of its products. According to an announcement, Microsoft will no longer allow certificate providers to issue SHA-1 supported certificates. Seqrite has...
Estimated reading time: 1 minute
Microsoft has recently come up with a new update for Windows 10 PCs, called Windows 10 May 2021 Update (version 21H1). This post lists some of the highlights of this update and sees how Seqrite Endpoint Security is compatible...
Estimated reading time: 7 minutes
On March 2, Microsoft announced a threat group, HAFNIUM, is actively exploiting four zero-day vulnerabilities in their Exchange Servers. Microsoft has released out-of-band security updates (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065), enabling attackers to take access email accounts and run...
Estimated reading time: 2 minutes
Current times have witnessed a large percentage of cyber breaches resulting from human errors. For example, the famous WannaCry ransomware attack that affected the entire world in 2017 increased due to negligence of security teams in ensuring if the...
Estimated reading time: 2 minutes
The dangers of not timely patching enterprise systems were further highlighted with the news of the Black Kingdom ransomware in March end. This new strain of ransomware called “The Black Kingdom” started attacking Microsoft Exchange servers on March 18th...