Kaspersky Files New Lawsuit Over U.S. Government Software Ban

Kaspersky Lab has filed a new lawsuit over the U.S. government’s decision to ban its products in federal agencies, this time challenging the National Defense Authorization Act (NDAA). The NDAA...
Continue reading
0 Comments

Windows Analytics Helps Assess Risk of Meltdown, Spectre Attacks

Microsoft is stepping up its efforts to help IT professionals better assess whether their Windows devices are protected against the industry-wide Meltdown and Spectre attack techniques. Publicly detailed in the...
Continue reading
0 Comments

Nine Remotely Exploitable Vulnerabilities Found in Dell EMC Storage Platform

Nine remotely exploitable vulnerabilities have been found in Dell EMC's Isilon OneFS platform, a scale-out NAS storage platform that combines modular hardware with unified software to harness unstructured data. "Multiple...
Continue reading
0 Comments

SAP Resolves High Risk Flaws with February 2018 Patches

SAP this week released its monthly set of security updates for its products, addressing a total of 11 new vulnerabilities, including two considered high severity. Adding the number of patches...
Continue reading
0 Comments

Attribution Games: Don't Rush to Blame

Attribution Games: Don't Rush to Blame
Breach Response , Data Breach , Forensics Attribution Games: Don't Rush to Blame Experts Decry Attempts to Rapidly Attribute Winter Olympics Hacking( euroinfosec ) • February 13, 2018    Warning:...
Continue reading
0 Comments

Equifax Gets a New CISO

Equifax Gets a New CISO
image
CISO , Data Breach , Governance Equifax Gets a New CISO Jamil Farshchi Moves From Home Depot to Beleaguered Credit Bureau( euroinfosec ) • February 13, 2018     "Hire...
Continue reading
0 Comments

Sheltered Harbor: A New Approach to Account Backups

Sheltered Harbor: A New Approach to Account Backups FS-ISAC Unit Offers a Way to Help Ensure Access to Account Data After a Massive Cyberattack) • February 13, 2018     15...
Continue reading
0 Comments

Live Webinar: How to Combat Targeted Business Email Compromise Attacks

Markus Jakobsson Chief Scientist Markus Jakobsson, Chief Scientist for Agari, has spent more than 20 years as a security researcher, scientist and entrepreneur, studying phishing, crimeware and mobile security at...
Continue reading
0 Comments

Government Websites Deliver Cryptocurrency Mining Code

Government Websites Deliver Cryptocurrency Mining Code
Anti-Malware , Data Breach , Technology Security of Code Pushed by Content Delivery Networks Remains Ongoing Concern( jeremy_kirk ) • February 12, 2018    Multiple U.S., U.K. and Australian government...
Continue reading
0 Comments

Equifax Confirms 'Probable' Breached Data Was Indeed Stolen

Equifax Confirms 'Probable' Breached Data Was Indeed Stolen
Breach Notification , Breach Response , Data Breach Breach Victim Tally Remains Unchanged, But Investigators Find More PII Stolen( euroinfosec ) • February 12, 2018    Former Equifax CEO Richard...
Continue reading
0 Comments

Hackers Win Olympic Gold Medal for Disruption

Hackers Win Olympic Gold Medal for Disruption
image
image
Anti-Malware , Technology Researchers Say Destructive Wiper Dubbed 'Olympic Destroyer' Hits Pyeonchang( euroinfosec ) • February 12, 2018    Photo: IOC Hackers have crashed the Winter Olympics, apparently by using...
Continue reading
0 Comments

Aetna Breach Case Gets Messier

Aetna Breach Case Gets Messier
Data Breach , Litigation , Privacy New Lawsuits Filed in the Wake of 2017 Mailing Mishap( HealthInfoSec ) • February 12, 2018     A case involving a 2017 privacy...
Continue reading
0 Comments

Zero-Day Attack Prompts Emergency Patch for Bitmessage Client

An emergency update released on Tuesday for the PyBitmessage application patches a critical remote code execution vulnerability that has been exploited in attacks. Bitmessage is a decentralized and trustless communications...
Continue reading
0 Comments

Microsoft Patches 50 Flaws in Windows, Office, Browsers

Microsoft’s Patch Tuesday updates for February 2018 address 50 vulnerabilities in Windows, Office and the company’s web browsers, but this time the list does not appear to include any zero-day...
Continue reading
0 Comments

Adobe Patches 39 Vulnerabilities in Acrobat and Reader

Updates released on Tuesday by Adobe for its Acrobat, Acrobat Reader and Experience Manager products patch more than 40 vulnerabilities, but none of them appear to have been exploited for...
Continue reading
0 Comments

New AndroRAT Variant Emerges

A newly discovered variant of the AndroRAT off-the-shelf mobile malware can inject root exploits to perform malicious tasks, Trend Micro reports. The updated malware version targets CVE-2015-1805, a publicly disclosed...
Continue reading
0 Comments

Zero-Day in Telegram's Windows Client Exploited for Months

A zero-day vulnerability impacting Telegram Messenger’s Windows client had been exploited in malicious attacks for months before being discovered and addressed.  Exploitation of the bug involves the use of a...
Continue reading
0 Comments

Seagate, RackTop Launch Secure Data Storage Product for Governments

Seagate and RackTop join forces to launch a data protection platform for governments
Seagate Technologies and RackTop Systems on Tuesday announced a partnership and their first product, a secure data storage solution designed to help government organizations address cybersecurity and compliance challenges. The...
Continue reading
0 Comments

Microsoft Brings Windows Defender ATP to Windows 7, 8.1

Microsoft on Monday announced plans to make Windows Defender Advanced Threat Protection (ATP) available for Windows 7 SP1 and Windows 8.1 devices. First announced in early 2016, Windows Defender ATP...
Continue reading
0 Comments

Exploring a New Reference Architecture for Industrial Control Systems Security

Industrial Cybersecurity Framework
We Need a New Framework for Thinking About ICS and Critical Infrastructure Network Security  By Galina Antova and Eric Cosman As it relates to threats targeting industrial control systems (ICS)...
Continue reading
0 Comments