New Tool Helps G Suite Admins Uncover Security Threats

Google on Tuesday announced the general availability of a tool that helps G Suite customers identify security issues within their domains, and take action. Referred to as Investigation tool, the...
Continue reading
0 Comments

Cloudflare Helps Boost DNSSEC Adoption as Key Rollover Nears

DNSSEC validation rates
Cloudflare announced on Monday the introduction of a new feature that will allow some users to enable the Domain Name System Security Extensions (DNSSEC) protocol with the click of a...
Continue reading
0 Comments

Privacy Protection Means Encryption at the Application Layer

Data Protection and Privacy Through Encryption
Comprehensive Data Security Measures Should Include a Formal Process for Application Security and Vulnerability Assessment  Encryption is a popular topic with recent regulatory emphasis on “pseudonymisation and encryption of personal...
Continue reading
0 Comments

Fidelis Cybersecurity Raises $25 Million

Fidelis Cybersecurity , a Bethesda, MD-based company that provides automated threat detection and response solutions, on Tuesday announced that it secured a $25 million growth capital investment. The funding, which...
Continue reading
0 Comments

Destructive Xbash Linux Malware Targets Enterprise Intranets

A newly discovered piece of Linux malware that features both ransomware and crypto-currency mining capabilities appears designed to target enterprise intranets, Palo Alto Networks security researchers say. Dubbed Xbash and...
Continue reading
0 Comments

Critical Vulnerability Impacts Hundreds of Thousands of IoT Cameras

A critical vulnerability in NUUO software could allow attackers to remotely view video feeds and tamper with the recordings of hundreds of thousands of surveillance cameras, Tenable reveals. The bug,...
Continue reading
0 Comments

iOS 12 Brings Patches for 16 Security Vulnerabilities

Apple this week officially released iOS 12, which patches various vulnerabilities in the mobile operating system (OS) and brings improved performance and other enhancements. The tech giant also pushed updates...
Continue reading
0 Comments

Swiss, Russian FMs to Meet Next Week on Spy Row

Switzerland's foreign minister said Monday that he will meet his Russian counterpart next week after details emerged of alleged attempts by two Russian spies to hack sensitive Swiss targets. Swiss...
Continue reading
0 Comments

Georgia's Use of Electronic Voting Machines Allowed for Midterms

Judge Amy Totenberg ruled Monday that the state of Georgia's existing plans for the midterm elections to be conducted via some 27,000 Diebold AccuVote DRE touchscreen voting machines must stand....
Continue reading
0 Comments

Building an Integrated IT/OT Security Program: Notes From the Field

ICS/SCADA Security Conference
Let’s start this column with some good news. I speak with dozens of enterprises every month about security (or lack thereof) in their operational technology (OT) environment, and I’m seeing...
Continue reading
0 Comments

Symantec Launches Free Election Security Service

Symantec on Tuesday announced the launch of a new service that aims to make elections more secure by helping candidates and political organizations improve their security posture and detect fake...
Continue reading
0 Comments

Why Cybercrime Remains Impossible to Eradicate

Why Cybercrime Remains Impossible to Eradicate
image
image
image
image
Cybercrime , Cybercrime as-a-service , Fraud Management & Cybercrime Kelihos Bot Herder Offered Bargain Spam Campaign Pricing( euroinfosec ) • September 17, 2018    Russian national Peter Levashov advertised his...
Continue reading
0 Comments

Wielding EternalBlue, Hackers Hit Major US Business

Wielding EternalBlue, Hackers Hit Major US Business
image
image
image
image
Endpoint Security , Governance , Network & Perimeter Luckily, Firm Was Only Infected With Cryptocurrency-Mining Malware, Researcher Reports( jeremy_kirk ) • September 17, 2018    Unpatched Windows systems still vulnerable...
Continue reading
0 Comments

Police in Europe Tie Card Fraud to People-Smuggling Gang

Police in Europe Tie Card Fraud to People-Smuggling Gang
image
image
Cybercrime , Cybercrime as-a-service , Fraud Two Syrians Accused of Buying Stolen Corporate Card Data to Mask Activities( euroinfosec ) • September 17, 2018     Coordinated police raids in...
Continue reading
0 Comments

Facebook Offers Rewards for Access Token Exposure Flaws

Facebook announced on Monday that it has expanded its bug bounty program to introduce rewards for reports describing vulnerabilities that involve the exposure of user access tokens. Access tokens allow...
Continue reading
0 Comments

Altaba Settles Yahoo Breach Lawsuits for $47 Million

Altaba Settles Consumer Class Action Lawsuits Related to Yahoo Breach for $47 Million
Altaba, the investment company that resulted from Verizon’s $4.5 billion acquisition of Yahoo’s Internet business last year, has agreed to settle consumer class action lawsuits triggered by the massive data...
Continue reading
0 Comments

Code Execution in Alpine Linux Impacts Containers

A security researcher discovered several vulnerabilities in Alpine Linux, a distribution commonly used with Docker, including one that could allow for arbitrary code execution.  Based on musl and BusyBox, the...
Continue reading
0 Comments

Expectations for CISOs Have Changed

There was a time once when CISOs could dazzle or dominate every conversation with the board or senior management – they were the high priests of a technology that no...
Continue reading
0 Comments

EternalBlue-Vulnerable Systems Serially Infected

Windows machines that haven’t been patched against the National Security Agency-linked EternalBlue exploit are stuck in an endless loop of infection, Avira warns. The EternalBlue exploit , which the Shadow...
Continue reading
0 Comments

Ransomware Disrupts Flight Boards at U.K. Airport

Bristol Airport hit by ransomware
Bristol Airport in the United Kingdom was hit recently by a ransomware incident that caused disruption to flight information display systems, forcing staff to resort to whiteboards and markers. Bristol...
Continue reading
0 Comments