Jeff Goldman, Author at eSecurity Planet

About
Recent Articles

eSecurity Planet contributor Jeff Goldman has been a technology journalist for more than 20 years and an eSecurity Planet contributor since 2009. He’s also written extensively about wireless and broadband infrastructure and semiconductor engineering. He started his career at MTV, but soon decided that technology writing was a more promising path.

Ransomware Group Bypasses Windows 10 Warnings

Threats

October 25, 2022

A ransomware family targeting individual computer users is using a zero-day Windows bug to infect users, ANALYGENCE senior vulnerability analyst Will Dormann has found. HP Wolf Security researchers recently published…
Time-Consuming Remediation: Assessing the Impact of Text4Shell

Threats

October 24, 2022

Security researcher Alvaro Muñoz recently warned of a critical vulnerability in versions 1.5 through 1.9 of Apache Commons Text. The flaw, dubbed “Text4Shell” and identified as CVE-2022-42889, can enable remote…
Fully Undetectable PowerShell Backdoor Found by Security Researchers

Threats

October 18, 2022

SafeBreach Labs researchers recently uncovered a new fully undetectable (FUD) PowerShell backdoor that uses a novel approach to disguise itself as part of the Windows update process. “The covert self-developed…
More Than 90% of IT Decision Makers Struggle to Evaluate Security Products

Trends

October 18, 2022

The vast majority of cybersecurity decision makers – 91 percent, in fact – find it difficult to select security products due to unclear marketing, according to the results of a…
Microsoft Patch Tuesday Leaves ProxyNotShell Exposed

Threats

October 12, 2022

Microsoft’s October 2022 Patch Tuesday includes security updates that fix well over 80 vulnerabilities in more than 50 different parts of its product range – but the ProxyNotShell flaws in…
Russia-linked Hackers Launch DDoS Attacks on U.S. Airport Websites

Threats

October 10, 2022

A series of distributed denial of service (DDoS) attacks today briefly took down the websites of over a dozen U.S. airports, including those for Atlanta and Los Angeles International Airports.…
Uber Guilty Verdict Raises Security Stakes for CSOs

Compliance

October 7, 2022

In a case that ups the stakes for CSOs dealing with data breaches, former Uber chief security officer Joe Sullivan was found guilty by a federal jury earlier this week…
New MSSQL Backdoor ‘Maggie’ Infects Hundreds of Servers Worldwide

Threats

October 7, 2022

DCSO CyTec researchers Johann Aydinbas and Axel Wauer are warning of new backdoor malware they’re calling “Maggie,” which targets Microsoft SQL servers. Maggie, the researchers say, has already affected at…
Microsoft’s Fix Fails to Patch ProxyNotShell RCE Flaws

Threats

October 5, 2022

After Microsoft published guidance on mitigating the two remote code execution flaws uncovered last week by Vietnamese security firm GTSC, it seems the mitigations Microsoft suggested weren’t as effective as…
Symantec, GTSC Warn of Active Microsoft Exploits

Threats

October 1, 2022

Vietnamese security firm GTSC published a blog post this week warning of a new zero-day remote code execution (RCE) flaw in Microsoft Exchange Server, which it said has been actively…