-
Listen Now
EPISODE 403
Broadcast Date:
July 12, 202421 minutes
Podcast Jul 12, 2024Root Causes 403: NIST PQC Contest Round 4 and Onramp with Dustin Moody
We are joined again by Dustin Moody, who leads the NIST search for PQC algorithms. We cover going-forward efforts, including Round 4 and the Onramp.
-
Learn More
Eldorado Ransomware Strikes Windows and Linux Networks
News Article from Sectigo
News Article Jul 10, 2024Security researchers have uncovered significant insights into the latest iteration of Ransomware-as-a-Service (RaaS) known as Eldorado.
The sophisticated malware, designed to target both Windows and Linux operating systems, utilizes the programming language Golang to facilitate its cross-platform attacks.
-
Learn More
Eldorado Ransomware Cruises Onto the Scene to Target VMware ESXi
News Article from Sectigo
News Article Jul 09, 2024The ransomware-as-a-service platform just rolled off the assembly line, also targets Windows, and uses Golang for cross-platform capabilities.
-
Learn More
Eldorado Ransomware Targeting Windows and Linux with New Malware
News Article from Sectigo
News Article Jul 09, 2024Group-IB researchers report a sharp rise in Eldorado – Golang-based ransomware with cross-platform encryption- operations, targeting various industries. Learn how Eldorado ransomware affiliates operate and how to protect your business from attacks.
-
Learn More
Essential Cyber Resilience Frameworks — Review & Guide
News Article from Sectigo
News Article Jul 09, 2024Building and maintaining a cyber resilience framework is essential for defending against cyberattacks, involving continuous updates and new policies. Cyber resilience ensures that organizations can anticipate, withstand, recover from, and adapt to cyber threats. Jason Soroko from Sectigo underscores the need for thorough risk assessments, robust security architectures, and continuous monitoring. Overall, achieving cyber resilience involves proactive measures, regular system monitoring, employee training, and implementing advanced technologies for swift threat detection and response.
-
Learn More
New Ransomware Group Eldorado Targets Mainly US Organizations
News Article from Sectigo
News Article Jul 09, 2024Eldorado, a new ransomware-as-a-service group, has targeted 16 organizations, mostly in the US, since its emergence in spring 2024. Focusing on sectors like real estate and healthcare, Eldorado uses Golang for cross-platform attacks and encrypts files with ChaCha20 and RSA-OAEP. Its ability to shut down and encrypt virtual machines severely disrupts business operations. Experts advise using multi-factor authentication, endpoint detection, regular backups, timely patching, and continuous employee training to defend against such threats.
-
Listen Now
EPISODE 402
Broadcast Date:
July 9, 202415 minutes
Podcast Jul 09, 2024Root Causes 402: New Social Engineering Powershell Attack
A new social engineering exploit instructs victims to enter command line prompts to hack themselves on behalf of the hacker.
-
Listen Now
EPISODE 401
Broadcast Date:
July 5, 202410 minutes
Podcast Jul 05, 2024Root Causes 401: New SSH Remote Code Execution Vulnerability Revealed
A newly revealed OpenSSH vulnerability can open enterprises to remote code execution. We explain what is happening and what to do about it.
-
Download Now
Case Study: Rijkswaterstaat
Case Study from Sectigo
Case Study Jul 04, 2024Sectigo CLM delivers security and universal visibility from a single pane of glass for Rijkswaterstaat.
-
Learn More
G2 awards Sectigo leader status in Certificate Lifecycle Management for fifth consecutive quarter
Press Release from Sectigo
Press Release Jul 03, 2024SCOTTSDALE, Ariz., — July 04, 2024 — Sectigo®, the industry’s most innovative provider of comprehensive certificate lifecycle management (CLM), today announced that it has been recognized as a leader in the secure socket layer/transport layer security (SSL/TLS) certificates and certificate lifecycle management (CLM) software categories in the G2 Summer 2024 Grid report.
-
Learn More
Chrome Update Will Block Entrust Certificates by November 2024
News Article from Sectigo
News Article Jul 03, 2024Starting November 1, 2024, Chrome will distrust new TLS server authentication certificates from Entrust and AffirmTrust due to ongoing compliance failures. Website owners must switch to a new Certification Authority (CA) before this deadline to avoid disruptions. Chrome users visiting affected sites after this date will see security warnings. Tim Callan stressed the importance of maintaining high standards in cybersecurity.
-
Listen Now
EPISODE 400
Broadcast Date:
July 2, 202411 minutes
Podcast Jul 02, 2024Root Causes 400: French Court Orders DNS Poisoning
To combat piracy of sporting event transmissions, a French court has ordered major tech companies including Google and Cloudflare to poison DNS settings.