Digital transformation, Hacking and Internet

SHARING INTEL: Why full ‘digital transformation’ requires locking down ‘machine identities’

The Last Watchdog

OCTOBER 16, 2019

This is so in spite of the fact that machine identities are exploding in numbers and have come to saturate digital transformation. Now consider that cloud computing is still on the rise, and that the Internet of Things is on the verge of rapid expansion as more 5G networks come on line.

Digital transformation

Digital transformation Firmware Authentication IoT

How ‘digital transformation’ gave birth to a new breed of criminal: ‘machine-identity thieves’

The Last Watchdog

JULY 13, 2018

By now, your personal information and mine has been hacked multiple times and is readily on sale in the Dark Web. Related article: 7 hacks signaling a coming global cyber war. If you haven’t heard, we are undergoing “digital transformation.” Digital advances are coming at us fast and furious.

Digital transformation

Digital transformation Media Hacking Internet

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

The Last Watchdog

MARCH 17, 2021

Basic research is the foundational theorizing and testing scientists pursue in order to advance their understanding of a phenomenon in the natural world, and, increasingly, in the digital realm. You need look no further that the jarring SolarWinds hack for a prime example. I’ll keep watch and keep reporting.

Digital transformation

Digital transformation Encryption Technology Mobile

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Meanwhile, while business logic hacks, supply chain holes, and cyber extortion continue to loom large. Attackers arent hacking in theyre logging in. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. The drivers are intensifying.

Cyber threats

Cyber threats CISO IoT Phishing

MY TAKE: Coping with security risks, compliance issues spun up by ‘digital transformation’

The Last Watchdog

AUGUST 22, 2019

Companies are being compelled to embrace digital transformation, or DX , if for no other reason than the fear of being left behind as competitors leverage microservices, containers and cloud infrastructure to spin-up software innovation at high velocity. A core security challenge confronts just about every company today.

Digital transformation

Digital transformation Risk Firewall Accountability

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

The Last Watchdog

APRIL 7, 2020

It’s the glue holding digital transformation together. Related: A primer on ‘credential stuffing’ APIs are the conduits for moving data to-and-fro in our digitally transformed world. APIs are literally everywhere in the digital landscape, and more are being created every minute.

Mobile

Mobile Digital transformation Scams Accountability

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The Last Watchdog

MARCH 4, 2019

Related: We’re in the midst of ‘cyber Pearl Harbor’ Peel back the layers of just about any sophisticated, multi-staged network breach and you’ll invariably find memory hacking at the core. Here’s what I took away from our discussion: Transient hacks. This quickly gets intricately technical.

Hacking

Hacking Energy and Utilities System Administration Accountability

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

The Last Watchdog

MAY 23, 2023

As digital transformation accelerates, Application Programming Interfaces (APIs) have become integral to software development – especially when it comes to adding cool new functionalities to our go-to mobile apps. So be careful out there. I’ll keep watch and keep reporting. Acohido Pulitzer Prize-winning business journalist Byron V.

Mobile

Mobile Digital transformation Financial Services Software

SHARED INTEL: Automating PKI certificate management alleviates outages caused by boom

The Last Watchdog

OCTOBER 26, 2021

Related: A primer on advanced digital signatures. PKI and digital certificates were pivotal in the formation of the commercial Internet, maturing in parallel with ecommerce. Clearly, many companies need to get a better grip on PKI management simply to keep from derailing digital transformation.

Digital transformation

Digital transformation eCommerce Internet Internet

MY TAKE: Why companies had better start taking the security pitfalls of API proliferation seriously

The Last Watchdog

JANUARY 4, 2022

Over the past year, I’ve had several deep conversations parsing how APIs have emerged as a two-edged sword: APIs accelerate digital transformation, but they also vastly expand the attack surface of modern business networks. The kingpins of the top criminal hacking collectives are no dummies. Attack chain multiplier.

Digital transformation

Digital transformation Hacking Architecture Cyber Risk

MY TAKE: Why speedy innovation requires much improved cyber hygiene, cloud security

The Last Watchdog

MARCH 11, 2020

Speed is what digital transformation is all about. As the infrastructure has gotten more complex, and we add more things like the Internet of Things, it’s harder to patch all your stuff, but that’s still the best step you can take today,” he says. Hacking collectives are already probing, if not exploiting, containers and APIs.

Digital transformation

Digital transformation Cloud Migration Technology Internet

NEW TECH: Cequence Security’s new ‘API Sentinel’ helps identify, mitigate API exposures

The Last Watchdog

JUNE 17, 2020

Without them digital transformation would never have gotten off the ground. Related: Defending botnet-driven business logic hacks APIs made possible the astounding cloud, mobile and IoT services we have today. Cequence researchers recently discovered a stunning demonstration of the emergence of leading-edge API hacks.

Digital transformation

Digital transformation Internet Internet Hacking

SHARING INTEL: Here’s why it has become so vital to prioritize the security-proofing of APIs

The Last Watchdog

NOVEMBER 30, 2021

API hacking escapades. Over the past couple of years, good-guy researchers and malicious hackers alike have steadily scaled up their hacking activities to flush them out. Over the past couple of years, good-guy researchers and malicious hackers alike have steadily scaled up their hacking activities to flush them out.

Big data

Big data Digital transformation Accountability Hacking

RSAC insights: How IABs — initial access brokers — help sustain, accelerate the ransomware plague

The Last Watchdog

JUNE 20, 2022

Related: How cybercriminals leverage digital transformation. Understanding digital assets. This is the flip side of digital transformation. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW I’ll keep watch and keep reporting.

Ransomware

Ransomware Digital transformation Marketing Software

Q&A: Here’s why it has become vital for companies to deter ‘machine-identity thieves’

The Last Watchdog

JULY 11, 2018

We’re undergoing digital transformation , ladies and gentlemen. Related article: How DevOps contributed to the Uber hack. Much like the recent hacks of Uber and Tesla, the Timehop caper revolved around the attackers manipulating admin credentials and maneuvering extensively through Timehop’s cloud environment.

Digital transformation

Digital transformation Firewall Mobile Media

SHARED INTEL: Report details how cyber criminals leverage HTTPS TLS to hide malware

The Last Watchdog

APRIL 21, 2021

From January through March 2021, TLS concealed 45 percent of the malware Sophos analysts observed circulating on the Internet; that’s double the rate – 23 percent – seen in early 2020, Dan Schiappa, Sophos’ chief product officer, told me in a briefing. In short, TLS helps preserve the integrity of legitimate digital connections.

Malware

Malware Firewall Encryption Data breaches

SHARED INTEL: IT pros gravitate to ‘passwordless’ authentication to improve security, boost agility

The Last Watchdog

APRIL 7, 2021

Meanwhile, 64 percent saw value in improving user experiences and 21 percent said it could help achieve digital transformation. Password abuse emerged as a criminal specialty shortly after the decision got made in the 1990s to jump start the commercial Internet using a security framework built on shared secrets.

Authentication

Authentication Digital transformation Passwords Password Management

NEW TECH: Data Theorem helps inventory sprawling APIs — as the first step to securing them

The Last Watchdog

MARCH 25, 2019

Without APIs there would be no cloud computing, no social media, no Internet of Things. APIs are the glue that keeps digital transformation intact and steamrolling forward. APIs have been a cornerstone of our digital economy from the start. The problem wasn’t a hack, but a broken API. Postal Service.

Digital transformation

Digital transformation Software Data breaches Authentication

MY TAKE: Agile cryptography is coming, now that ‘attribute-based encryption’ is ready for prime time

The Last Watchdog

MAY 3, 2021

Encryption agility is going to be essential as we move forward with digital transformation. The public key gets used on both ends to encrypt the information that gets transmitted across the Internet; but only one party holds the corresponding private key to decrypt the data on the other end. I’ll keep watch, and keep reporting.

Encryption

Encryption Retail Digital transformation Authentication

RSAC insights: Why vulnerability management absolutely must shift to a risk-assessment approach

The Last Watchdog

MAY 31, 2022

Advanced VM tools and practices are rapidly emerging to help companies mitigate a sprawling array of security flaws spinning out of digital transformation. Digital transformation has spawned a cascade of nuanced, abstract vulnerabilities – and they’re everywhere. That’s changing — dramatically.

Risk

Risk Digital transformation Software Technology

Estonia blocked cyberattacks claimed by Pro-Russia Killnet group

Security Affairs

AUGUST 19, 2022

Undersecretary for Digital Transformation Luukas Ilves announced that Estonia was hit by the most extensive wave of DDoS attacks it has faced since 2007. SecurityAffairs – hacking, Estonia). Estonia announced to have blocked a wave of cyber attacks conducted by Russian hackers against local institutions. Pierluigi Paganini.

DDOS

DDOS Computers and Electronics Digital transformation Government

NEW TECH: CyCognito employs offensive bot network to put companies a step a head of attackers

The Last Watchdog

FEBRUARY 17, 2020

Threat actors simply seek out the endless fresh attack vectors arising as an unintended consequence of digital transformation. Defenders, meanwhile, have to guard everything all of the time, and most organizations have many more Internet pathways than they even know about, much less are taking steps to defend.”

Digital transformation

Digital transformation Internet Internet Firewall

MY TAKE: A path for SMBs to achieve security maturity: start small controlling privileged accounts

The Last Watchdog

JUNE 23, 2021

The challenge of embracing digital transformation while also quelling the accompanying cyber risks has never been greater for small- and mid-sized businesses. Here are the key takeaways: Lower-tier hacks. The ongoing waves of Microsoft Exchange ProxyLogon hacks are a good example of these lower-tier attacks.

Accountability

Accountability Passwords Hacking Cyber Risk

NEW TECH: ‘Micro-segmentation’ security vendor Guardicore seeks to disrupt firewall market

The Last Watchdog

MARCH 30, 2020

Related: Micro-segmentation taken to the personal device level The flip side, of course, is that an already wide-open attack surface – one that has been getting plundered for the past two decades by criminal hacking groups — is getting scaled up, as well. Clearly agility and speed are cornerstones of digital transformation.

Firewall

Firewall Marketing Digital transformation Cloud Migration

Black Hat insights: WAFs are getting much more dynamic making them well-suited to protect SMBs

The Last Watchdog

AUGUST 4, 2021

Related: Kaseya hack raises more supply chain worries. Criminal hacking rings are carrying out big sweeps , 24X7, hunting for well-known application vulnerabilities that they can manipulate to breach company networks. Fast forward to the current era of digital transformation. Malicious hackers have stepped up their game.

Mobile

Mobile Marketing Risk Digital transformation

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

The Last Watchdog

SEPTEMBER 10, 2019

Hear about the smart toaster that got attacked three times within an hour after its IP address first appeared on the Internet? The business equivalent of the toaster probe might well be two categories of automated attacks: Distributed Denial of Service ( DDoS ) attacks and SQL injection ( SQLi ) hacks. I’ll keep watching and reporting.

DDOS

DDOS Internet Internet Digital transformation

MY TAKE: How ‘credential stuffing’ and ‘account takeovers’ are leveraging Big Data, automation

The Last Watchdog

OCTOBER 16, 2019

A pair of malicious activities have become a stunning example of digital transformation – unfortunately on the darknet. Thanks to botnets, if you’ve ever patronized any of the hacked enterprises, your personal data, including your favorite usernames and passwords , have probably been stolen several times over.

Big data

Big data Accountability Passwords Digital transformation

SHARED INTEL: Here’s why CEOs who’ve quit Tweeting are very smart to do so

The Last Watchdog

MARCH 6, 2020

Tried-and-true hacking techniques continue to be highly effective at flushing out soft spots in legacy network defenses, even highly layered security systems. 19 on a hacking forum. Contributing to product security by ‘securing what you sell’ is the cornerstone of successful CISOs as digital transformation accelerates.”

CISO

CISO VPN Digital transformation Internet

Federal cybersecurity: breaking down the barriers to adoption

Thales Cloud Protection & Licensing

MAY 1, 2019

Over the last two election cycles, we’ve seen an increased focus on election security, hacking and fraud. While many state and government officials are under no illusion that they are safe from a digital attack, concern should run deeper than election integrity. Security measures continue to be more reactive than proactive.

Digital transformation

Digital transformation Cybersecurity Data breaches Encryption

The Role of Translation in Cyber Security and Data Privacy

Security Boulevard

MAY 5, 2021

Due to our dependence on the internet for digital transformation, most people suffer from the risks of cyberattacks. According to IBM , the cost of cyber hacks in 2020 is about $3.86 Oftentimes, a cyber attack or cyber hack happens when people don’t know what’s happening in their gadgets. Article by Shiela Pulido.

Data privacy

Data privacy Cyber Attacks Digital transformation Artificial Intelligence

NEW TECH: A better way to secure agile software — integrate app scanning, pen testing into WAF

The Last Watchdog

AUGUST 17, 2020

The amazing array of digital services we so blithely access on our smartphones wouldn’t exist without agile software development. Related: ‘Business logic’ hacks on the rise Consider that we began this century relying on the legacy “waterfall” software development process. Don’t try to do all of this by yourself.

Software

Software Firewall Penetration Testing Digital transformation

MY TAKE: Why new tools, tactics are needed to mitigate risks introduced by widespread encryption

The Last Watchdog

FEBRUARY 18, 2020

Related: Why Google’s HTTPS push is a good thing At the time, just 50 % of Internet traffic used encryption. Without TLS, digital transformation would come apart at the seams. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW

Encryption

Encryption Firewall Risk IoT

NEW TECH: How ‘cryptographic splitting’ bakes-in security at a ‘protect-the-data-itself’ level

The Last Watchdog

SEPTEMBER 23, 2019

Yet in the age of Big Data and digital transformation many organizations still don’t do this very well. Legacy perimeter defenses are rapidly losing efficacy as the landscape shifts to cloud computing and the Internet of Things. Here are key takeaways: Security benefits Protect the data itself. Sounds simple enough.

Encryption

Encryption Data breaches Digital transformation Banking

ENISA Threat Landscape Report 2020

Security Affairs

OCTOBER 22, 2020

Below the main trends reported in the document: Attack surface in cybersecurity continues to expand as we are entering a new phase of the digital transformation. SecurityAffairs – hacking, ENISA Threat Landscape Report 2020). Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Cyber threats

Cyber threats Digital transformation Advertising IoT

MY TAKE: Get ready to future-proof cybersecurity; the race is on to deliver ‘post-quantum crypto’

The Last Watchdog

MARCH 20, 2019

The world’s leading provider of digital certificates is working alongside other leading companies, including Microsoft Research and ISARA, to gain endorsement from the National Institute of Standards for breakthrough PQC algorithms, including Microsoft’s “Picnic” and ISARA’s qTESLA. Hojjati: Absolutely.

Encryption

Encryption Cybersecurity Digital transformation IoT

Healthcare – Patient or Perpetrator? – The Cybercriminals Within

Security Affairs

NOVEMBER 8, 2021

The industry is undergoing a digital transformation and is becoming increasingly reliant on technology and, more importantly, Internet of Medical Things (IoMT) devices. SecurityAffairs – hacking, supply chain attack). Worryingly, the large number of devices used within medical facilities proliferates the hardware threat.

Healthcare

Healthcare Identity Theft Digital transformation Data collection

Cybersecurity in the Evolving Threat Landscape

Security Affairs

APRIL 10, 2024

As businesses in every sector embrace digital transformation initiatives, adopting cloud computing, Internet of Things (IoT) devices, automation, AI, and interconnected ecosystems, their attack surface widens exponentially. She is also a regular writer at Bora.

Cybersecurity

Cybersecurity Digital transformation Threat Detection Cyber threats

Understanding Florida’s water treatment hack, and how to stop future attacks

SC Magazine

APRIL 13, 2021

Unfortunately, hasty digital transformations left behind a patchwork of remote access capabilities vulnerable to exploit, particularly in operational technology (OT) environments. Unterminated direct-access protocols exposed on the internet. Otherwise, organizations will continue to experience damaging and costly hacks.

Hacking

Hacking Passwords Digital transformation Authentication

The Impact of Remote Work and Cloud Migrations on Security Perimeters

Security Affairs

MAY 27, 2024

Cloud-based applications and services can be accessed from anywhere via an internet connection, facilitating seamless collaboration among remote workers. For example, setting overly permissive access controls can inadvertently expose sensitive data to the public internet or unauthorized users. She is also a regular writer at Bora.

Cloud Migration

Cloud Migration B2B Data breaches Digital transformation

RSAC insights: ‘SASE’ disrupts networking by meshing security, connectivity at the services edge

The Last Watchdog

MAY 14, 2021

It also has become very clear that we won’t achieve the full potential of digital transformation without security somehow getting intricately woven into every layer of corporate IT systems. Early SD-WAN solutions “were built only to replace an MPLS-VPN with an Internet-based VPN,” Ahuja says. I’ll keep watch, and keep reporting.

Firewall

Firewall Mobile VPN Digital transformation

SHARED INTEL: FireMon survey shows security lags behind fast pace of hybrid cloud deployments

The Last Watchdog

MARCH 18, 2020

Yet ignorance persists when it comes to a momentous challenge at hand: how to go about tapping the benefits of digital transformation while also keeping cyber exposures to a minimum level. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW Meanwhile, 73.5

Digital transformation

Digital transformation Software Technology Network Security

Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date

Security Affairs

JANUARY 27, 2022

The attack hit the Russian internet giant Yandex and was launched by a new DDoS botnet, tracked as M?ris “In India, another driving factor may be that the acceleration of digital transformation, for example, the “Digital India” initiative 11 , has increased the region’s overall exposure to cyber risks.”

DDOS

DDOS Digital transformation DNS Cyber Risk

How to Prepare for the Future of Healthcare Digital Security

Thales Cloud Protection & Licensing

MARCH 5, 2018

Healthcare’s IT evolution has brought numerous security challenges including regulations, the use of digitally transformative technologies that have created huge amounts of data to store and protect, and the extraordinary value of electronic personal health information (ePHI) to cybercriminals. Almost all (96%) of U.S.

Healthcare

Healthcare Digital transformation Encryption Unstructured Data

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Security Affairs

MARCH 10, 2022

After Russia started invading Ukraine, the Ukrainian Minister for Digital Transformation Mykhaylo Fedorov called to action against Russia attempting to create an “IT Army,” composed of volunteers, to launch a massive offensive against Russia. SecurityAffairs – hacking, IT Army). Pierluigi Paganini.

DDOS

DDOS Malware Digital transformation Advertising

SHARING INTEL: Why full ‘digital transformation’ requires locking down ‘machine identities’

How ‘digital transformation’ gave birth to a new breed of criminal: ‘machine-identity thieves’

Trending Sources

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

MY TAKE: Coping with security risks, compliance issues spun up by ‘digital transformation’

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

SHARED INTEL: Automating PKI certificate management alleviates outages caused by boom

MY TAKE: Why companies had better start taking the security pitfalls of API proliferation seriously

MY TAKE: Why speedy innovation requires much improved cyber hygiene, cloud security

NEW TECH: Cequence Security’s new ‘API Sentinel’ helps identify, mitigate API exposures

SHARING INTEL: Here’s why it has become so vital to prioritize the security-proofing of APIs

RSAC insights: How IABs — initial access brokers — help sustain, accelerate the ransomware plague

Q&A: Here’s why it has become vital for companies to deter ‘machine-identity thieves’

SHARED INTEL: Report details how cyber criminals leverage HTTPS TLS to hide malware

SHARED INTEL: IT pros gravitate to ‘passwordless’ authentication to improve security, boost agility

NEW TECH: Data Theorem helps inventory sprawling APIs — as the first step to securing them

MY TAKE: Agile cryptography is coming, now that ‘attribute-based encryption’ is ready for prime time

RSAC insights: Why vulnerability management absolutely must shift to a risk-assessment approach

Estonia blocked cyberattacks claimed by Pro-Russia Killnet group

NEW TECH: CyCognito employs offensive bot network to put companies a step a head of attackers

MY TAKE: A path for SMBs to achieve security maturity: start small controlling privileged accounts

NEW TECH: ‘Micro-segmentation’ security vendor Guardicore seeks to disrupt firewall market

Black Hat insights: WAFs are getting much more dynamic making them well-suited to protect SMBs

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

MY TAKE: How ‘credential stuffing’ and ‘account takeovers’ are leveraging Big Data, automation

SHARED INTEL: Here’s why CEOs who’ve quit Tweeting are very smart to do so

Federal cybersecurity: breaking down the barriers to adoption

The Role of Translation in Cyber Security and Data Privacy

NEW TECH: A better way to secure agile software — integrate app scanning, pen testing into WAF

MY TAKE: Why new tools, tactics are needed to mitigate risks introduced by widespread encryption

NEW TECH: How ‘cryptographic splitting’ bakes-in security at a ‘protect-the-data-itself’ level

ENISA Threat Landscape Report 2020

MY TAKE: Get ready to future-proof cybersecurity; the race is on to deliver ‘post-quantum crypto’

Healthcare – Patient or Perpetrator? – The Cybercriminals Within

Cybersecurity in the Evolving Threat Landscape

Understanding Florida’s water treatment hack, and how to stop future attacks

The Impact of Remote Work and Cloud Migrations on Security Perimeters

RSAC insights: ‘SASE’ disrupts networking by meshing security, connectivity at the services edge

SHARED INTEL: FireMon survey shows security lags behind fast pace of hybrid cloud deployments

Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date

How to Prepare for the Future of Healthcare Digital Security

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Stay Connected