Patch/Configuration Management

Independent cybersecurity consultancy and research collective Security Research Labs has released a new free Black Basta ransomware decryption tool, according to BleepingComputer.

Security pros say threat actors leverage chaining to launch targeted attacks.

Less than a year after it re-emerged following earlier security issues, Microsoft has again taken action to limit malware distribution through its ms-appinstaller protocol for MSIX.

Threat actors have been targeting insecure Linux SSH servers with dictionary attack tools and port scanners in a bid to facilitate cryptocurrency mining and distributed denial-of-service attacks, The Hacker News reports.

Security pros say this news demonstrates how old bugs can do extensive damage if left unpatched.

SecurityWeek reports that numerous security vulnerabilities impacting Mozilla Firefox and Thunderbird have been addressed in new updates.

Security pros say while it’s unfortunate Google found another zero-day, the company released a patch within a day.

Comcast says usernames, hashed passwords and other info were stolen between Oct. 16 and Oct. 19.