Joao Correia, Author at Security Boulevard https://securityboulevard.com/author/joao-correia/ The Home of the Security Bloggers Network Fri, 29 Mar 2024 16:29:21 +0000 en-US hourly 1 https://wordpress.org/?v=6.4.3 https://securityboulevard.com/wp-content/uploads/2021/10/android-chrome-256x256-1-32x32.png Joao Correia, Author at Security Boulevard https://securityboulevard.com/author/joao-correia/ 32 32 133346385 A(nother) Ransomware Saga with a Twist https://securityboulevard.com/2024/03/another-ransomware-saga-with-a-twist/ https://securityboulevard.com/2024/03/another-ransomware-saga-with-a-twist/#respond Fri, 29 Mar 2024 16:29:21 +0000 https://tuxcare.com/?p=16956 The healthcare sector has once again found itself at the center of a storm. On February 21, Change Healthcare, a titan in healthcare support services, suffered a devastating cyberattack by the notorious BlackCat/ALPHV group. This incident has sent shockwaves through the U.S. healthcare system, affecting hospitals, clinics, and pharmacies nationwide. The Unfolding of the Cyberattack […]

The post A(nother) Ransomware Saga with a Twist appeared first on TuxCare.

The post A(nother) Ransomware Saga with a Twist appeared first on Security Boulevard.

]]> https://securityboulevard.com/2024/03/another-ransomware-saga-with-a-twist/feed/ 0 2013479 Security Debt, or When Bugs Go Bad https://securityboulevard.com/2024/03/security-debt-or-when-bugs-go-bad/ https://securityboulevard.com/2024/03/security-debt-or-when-bugs-go-bad/#respond Mon, 11 Mar 2024 08:00:54 +0000 https://tuxcare.com/?p=16495 Occasionally, the IT world is gripped by a resurgence of concern – sometimes a fleeting trend, other times a significant issue. Lately, the term “Security Debt” has been making the rounds across IT news platforms. This article aims to unpack the essence of Security Debt and its implications.   From Technical to Security Debt   […]

The post Security Debt, or When Bugs Go Bad appeared first on TuxCare.

The post Security Debt, or When Bugs Go Bad appeared first on Security Boulevard.

]]> https://securityboulevard.com/2024/03/security-debt-or-when-bugs-go-bad/feed/ 0 2011637 Poor Credential Hygiene https://securityboulevard.com/2024/03/poor-credential-hygiene/ https://securityboulevard.com/2024/03/poor-credential-hygiene/#respond Wed, 06 Mar 2024 08:00:21 +0000 https://tuxcare.com/?p=16353 This article is part of a series where we look at a recent NSA/CISA Joint Cybersecurity Advisory on the top cybersecurity issues identified during red/blue team exercises operated by these organizations. In this article, you will find a more in-depth look at the specific issue, with real-world scenarios where it is applicable, as well as […]

The post Poor Credential Hygiene appeared first on TuxCare.

The post Poor Credential Hygiene appeared first on Security Boulevard.

]]> https://securityboulevard.com/2024/03/poor-credential-hygiene/feed/ 0 2011107 Insufficient ACLs on Network Shares and Services https://securityboulevard.com/2024/03/insufficient-acls-on-network-shares-and-services/ https://securityboulevard.com/2024/03/insufficient-acls-on-network-shares-and-services/#respond Tue, 05 Mar 2024 09:00:36 +0000 https://tuxcare.com/?p=16348 This article is part of a series where we look at a recent NSA/CISA Joint Cybersecurity Advisory on the top cybersecurity issues identified during red/blue team exercises operated by these organizations. In this article, you will find a more in-depth look at the specific issue, with real-world scenarios where it is applicable, as well as […]

The post Insufficient ACLs on Network Shares and Services appeared first on TuxCare.

The post Insufficient ACLs on Network Shares and Services appeared first on Security Boulevard.

]]> https://securityboulevard.com/2024/03/insufficient-acls-on-network-shares-and-services/feed/ 0 2010973 Locking Up Lockbit: The Fall of a Ransomware Cartel https://securityboulevard.com/2024/02/locking-up-lockbit-the-fall-of-a-ransomware-cartel/ Wed, 28 Feb 2024 08:00:38 +0000 https://tuxcare.com/?p=16280 As of the time I’m writing this, earlier this week a cybersecurity bombshell story just broke that, for once, is actually a positive turn of events. I’m talking about Operation Cronos, an international law enforcement operation that seized the Lockbit ransomware infrastructure, led to arrests of persons affiliated with the criminal organization, and resulted in […]

The post Locking Up Lockbit: The Fall of a Ransomware Cartel appeared first on TuxCare.

The post Locking Up Lockbit: The Fall of a Ransomware Cartel appeared first on Security Boulevard.

]]> 2010382 Weak or Misconfigured Multi-Factor Authentication (MFA) Methods https://securityboulevard.com/2024/02/weak-or-misconfigured-multi-factor-authentication-mfa-methods/ Tue, 27 Feb 2024 08:00:24 +0000 https://tuxcare.com/?p=16253 This article is part of a series where we look at a recent NSA/CISA Joint Cybersecurity Advisory on the top cybersecurity issues identified during red/blue team exercises operated by these organizations. In this article, you will find a more in-depth look at the specific issue, with real-world scenarios where it is applicable, as well as […]

The post Weak or Misconfigured Multi-Factor Authentication (MFA) Methods appeared first on TuxCare.

The post Weak or Misconfigured Multi-Factor Authentication (MFA) Methods appeared first on Security Boulevard.

]]> 2010181 I Want To Update But Have No Package https://securityboulevard.com/2024/02/i-want-to-update-but-have-no-package/ Mon, 26 Feb 2024 08:00:00 +0000 https://tuxcare.com/?p=16077   -You want to fix your supply chain vulnerability, but have no update available for your environment -Maintaining open-source packages is mostly done on a voluntary basis -Using old packages is just as dangerous as not having the new versions available altogether   Supply chain attacks come in all shapes and forms, ranging from compromised […]

The post I Want To Update But Have No Package appeared first on TuxCare.

The post I Want To Update But Have No Package appeared first on Security Boulevard.

]]> 2010158 Unrestricted Code Execution https://securityboulevard.com/2024/02/unrestricted-code-execution/ Mon, 19 Feb 2024 08:00:47 +0000 https://tuxcare.com/?p=16162 This article is part of a series where we look at a recent NSA/CISA Joint Cybersecurity Advisory on the top cybersecurity issues identified during red/blue team exercises operated by these organizations. In this article, you will find a more in-depth look at the specific issue, with real-world scenarios where it is applicable, as well as […]

The post Unrestricted Code Execution appeared first on TuxCare.

The post Unrestricted Code Execution appeared first on Security Boulevard.

]]> 2009273 0-days, n-days, too many days https://securityboulevard.com/2024/02/0-days-n-days-too-many-days/ Wed, 14 Feb 2024 08:00:13 +0000 https://tuxcare.com/?p=16100 A software vendor, a threat actor, and a bug bounty hunter walk into a bar. The bug bounty hunter goes “have you guys heard about this new bug I just spotted?” “Never heard of it,” says the software vendor. The threat actor just gives the widest grin. Meanwhile, the users in another table are all […]

The post 0-days, n-days, too many days appeared first on TuxCare.

The post 0-days, n-days, too many days appeared first on Security Boulevard.

]]> 2008858 Bypass of System Access Controls https://securityboulevard.com/2024/01/bypass-of-system-access-controls/ Tue, 30 Jan 2024 08:00:29 +0000 https://tuxcare.com/?p=15871 This article is part of a series where we look at a recent NSA/CISA Joint Cybersecurity Advisory on the top cybersecurity issues identified during red/blue team exercises operated by these organizations. In this article, you will find a more in-depth look at the specific issue, with real-world scenarios where it is applicable, as well as […]

The post Bypass of System Access Controls appeared first on TuxCare.

The post Bypass of System Access Controls appeared first on Security Boulevard.

]]> 2006995