What's New

Copilot and the Edge Browser – Summarizing Content

One really cool feature of Copilot in Edge is the ability to summarize or use content from the current web page that’s open. But you don’t get this automatically; you have to enable it. Here's How to Use the Page Summary Feature in Edge Click on the Copilot icon [...]

By Sue Juter|2024-03-11T10:23:33-05:00March 11th, 2024|Categories: BMT Announcement, News, Partner|Tags: announcement, cyber-safe, CyberSecurity, CyberSecurity Awareness Training, news, Security|

Microsoft Confirms Russian Hackers Stole Source Code, Some Customer Secrets

Microsoft on Friday revealed that the Kremlin-backed threat actor known as Midnight Blizzard (aka APT29 or Cozy Bear) managed to gain access to some of its source code repositories and internal systems following a hack that came to light in January 2024. "In recent weeks, we have seen evidence [...]

By Sue Juter|2024-03-11T08:30:23-05:00March 8th, 2024|Categories: BMT Announcement|

Meta Details WhatsApp and Messenger Interoperability to Comply with EU’s DMA Regulations

Meta has offered details on how it intends to implement interoperability in WhatsApp and Messenger with third-party messaging services as the Digital Markets Act (DMA) went into effect in the European Union. "This allows users of third-party providers who choose to enable interoperability (interop) to send and receive messages [...]

By Sue Juter|2024-03-08T16:33:23-05:00March 8th, 2024|Categories: BMT Announcement|

Secrets Sensei: Conquering Secrets Management Challenges

In the realm of cybersecurity, the stakes are sky-high, and at its core lies secrets management — the foundational pillar upon which your security infrastructure rests. We're all familiar with the routine: safeguarding those API keys, connection strings, and certificates is non-negotiable. However, let's dispense with the pleasantries; this [...]

By Sue Juter|2024-03-08T16:19:36-05:00March 8th, 2024|Categories: BMT Announcement|

Hacked WordPress Sites Abusing Visitors’ Browsers for Distributed Brute-Force Attacks

Threat actors are conducting brute-force attacks against WordPress sites by leveraging malicious JavaScript injections, new findings from Sucuri reveal. The attacks, which take the form of distributed brute-force attacks, "target WordPress websites from the browsers of completely innocent and unsuspecting site visitors," security researcher Denis Sinegubko said. The activity [...]

By Sue Juter|2024-03-08T10:27:42-05:00March 7th, 2024|Categories: BMT Announcement|

Chinese State Hackers Target Tibetans with Supply Chain, Watering Hole Attacks

The China-linked threat actor known as Evasive Panda orchestrated both watering hole and supply chain attacks targeting Tibetan users at least since September 2023. The end of the attacks is to deliver malicious downloaders for Windows and macOS that deploy a known backdoor called MgBot and a previously undocumented [...]

By Sue Juter|2024-03-11T08:28:13-05:00March 7th, 2024|Categories: BMT Announcement|

Catch-IT: Multiple Vulnerabilities Found in Apple Products

Multiple vulnerabilities have been discovered in Apple products, the most severe of which could allow for privilege escalation. Successful exploitation of the most severe of these vulnerabilities could allow for privilege escalation in the context of the logged on user. Depending on the privileges associated with the user, an [...]

By Sue Juter|2024-03-06T11:23:32-05:00March 6th, 2024|Categories: Catch IT, News|Tags: BMT, Catch-IT, Legal, Professional Services, Security, tech interest, technology|

Hackers Exploit Misconfigured YARN, Docker, Confluence, Redis Servers for Crypto Mining

Threat actors are targeting misconfigured and vulnerable servers running Apache Hadoop YARN, Docker, Atlassian Confluence, and Redis services as part of an emerging malware campaign designed to deliver a cryptocurrency miner and spawn a reverse shell for persistent remote access. "The attackers leverage these tools to issue exploit code, [...]

By Sue Juter|2024-03-07T09:54:16-05:00March 6th, 2024|Categories: BMT Announcement|

Exit Scam: BlackCat Ransomware Group Vanishes After $22 Million Payout

The threat actors behind the BlackCat ransomware have shut down their darknet website and likely pulled an exit scam after uploading a bogus law enforcement seizure banner. "ALPHV/BlackCat did not get seized. They are exit scamming their affiliates," security researcher Fabian Wosar said. "It is blatantly obvious when you [...]

By Sue Juter|2024-03-07T09:48:40-05:00March 6th, 2024|Categories: BMT Announcement|

Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware

North Korean threat actors have exploited the recently disclosed security flaws in ConnectWise ScreenConnect to deploy a new malware called TODDLERSHARK. According to a report shared by Kroll with The Hacker News, TODDLERSHARK overlaps with known Kimsuky malware such as BabyShark and ReconShark. "The threat actor gained access to [...]

By Sue Juter|2024-03-05T12:44:58-05:00March 5th, 2024|Categories: BMT Announcement|

What is Exposure Management and How Does it Differ from ASM?

Startups and scales-ups are often cloud-first organizations and rarely have sprawling legacy on-prem environments. Likewise, knowing the agility and flexibility that cloud environments provide, the mid-market is predominantly running in a hybrid state, partly in the cloud but with some on-prem assets. While there has been a bit of [...]

By Sue Juter|2024-03-05T12:26:52-05:00March 5th, 2024|Categories: BMT Announcement|

U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsApp

A U.S. judge has ordered NSO Group to hand over its source code for Pegasus and other products to Meta as part of the social media giant's ongoing litigation against the Israeli spyware vendor. The decision, which marks a major legal victory for Meta, which filed the lawsuit in [...]

By Sue Juter|2024-03-04T11:32:06-05:00March 2nd, 2024|Categories: BMT Announcement|

What’s New

Contact Us

Services

About BMT