CYBER SECURITY
Building security in digitally connected society
Services
About Mphasis
Mphasis Cyber Defense Services enables the CISO to deal with the growing cyber threats effectively using disruptive security technology to provide customers the confidence to use technology in a boundaryless digital environment. Through decade long experience in providing managed security services to our clients, Mphasis understands the modern CISO’s challenges and endeavors to create solutions that transform security from an impediment to business enabler.
Using its industry-specific X2C2TM framework and Front2BackTM Transformation approach, Mphasis adopts a value chain/customer-in view to transform enterprise cyber security services. We do this by harnessing the power of cognitive technologies and rich data residing in enterprises, extracting maximum value from the existing security investments, introducing necessary security intelligence & automation layer and teaming with our clients to jointly derive high risk assurance. In doing so, Mphasis leverages the state-of-the-art reference frameworks such as NIST, ISO, and capabilities of agile transformation for quick results that compound over time
Ransomed.vc extortion group targets organizations from various sectors, compromises the victims’ servers, steals their data, and extorts them to pay a ransom.
READ MORE…
The Grayling threat group targets organizations for intelligence-gathering purposes. As part of their post-exploitation activities, the threat actors terminate a predetermined list of processes, and dump credentials using Mimikatz.
READ MORE…
Microsoft Privilege Escalation Vulnerability Flaw - This vulnerability affects the CIA (Confidentiality, Integrity, and Availability) of the affected application and its environment.
READ MORE…
Google Chrome Security Update - Multiple high severity vulnerabilities patched
READ MORE…
Bandit Stealer - an information-stealing malware is targeting numerous browsers and cryptocurrency wallets while evading detection.
READ MORE…
Google Chrome Third zero-day Vulnerability of 2023 - CVE-2023-3079 is a vulnerability that stems from a type of confusion in the V8 JavaScript engine and has been uncovered by Google’s Threat Analysis Group (TAG), a “task-force” dedicated to protecting users from state-sponsored malware attacks and other advanced persistent threats.
READ MORE…
Fortinet has released patches to address a critical security flaw in its FortiGate firewalls that could be abused by a threat actor to achieve remote code execution.
READ MORE…
Rapture Ransomware - In March and April 2023, we observed a type of ransomware targeting its victims with tools that leave only a minimal footprint behind. Our findings revealed many of the preparations.
READ MORE…
Black Basta ransomware emerged in April 2022 and went on a spree breaching over 90 organizations by Sept 2022.
READ MORE…
Second Zero day vulnerability in Google chrome
Google has released an emergency Chrome security update to address the first zero-day vulnerability CVE-2023-2033 exploited in attacks since the start of the year. READ MORE…
BlackCat Ransomware
The ALPHV ransomware group (AKA BlackCat) was first observed by cybersecurity researchers in November 2021. The group targets victims from various countries, such as the United States, Australia, and India, the ransomware operators are Russian speakers. READ MORE…
Dark Power Ransomware
New ransomware gang named Dark Power is in the wild hacking various organizations globally for an affordable ransom demand. The Dark Power gang has over 10 victims listed on its dark net website already waiting to leak their data! READ MORE…
Zero-Day Vulnerability in Chrome
Google has released an emergency Chrome security update to address the first zero-day vulnerability CVE-2023-2033 exploited in attacks since the start of the year. READ MORE…
Adobe released security updates for ColdFusion versions 2021 and 2018 to resolve a critical flaw, tracked as CVE-2023-26360 (CVSS base score 8.6),
READ MORE…
A buffer underflow vulnerability in FortiOS & FortiProxy administrative interface may allow a remote unauthenticated attacker to execute arbitrary code on the device and can also perform a DoS on GUI.
READ MORE…
A ransomware operation named Royal is quickly ramping up, targeting corporations with ransom demands ranging from $250,000 to over $2 million.
READ MORE…
Apple has released emergency security updates to address a new zero-day vulnerability used in attacks to hack iPhones, iPads, and Macs.
READ MORE…
ESXi servers worldwide with a new ransomware strain dubbed “ESXiArgs.” The campaign appears to be leveraging CVE-2021-21974, a nearly two-year-old heap overflow vulnerability in the OpenSLP service ESXi runs.
READ MORE…
Git patches two critical remote code execution security flaws. READ MORE…
Antivirus and EDR solutions tricked into acting as data wipers. READ MORE…
Fortinet urges customers to patch their appliances against an actively exploited FortiOS SSL-VPN vulnerability that could allow unauthenticated remote code execution on devices.
READ MORE…
