Schneier on Security
FEBRUARY 6, 2023
The field of machine learning (ML) security—and corresponding adversarial ML—is rapidly advancing as researchers develop sophisticated techniques to perturb, disrupt, or steal the ML model or data. It’s a heady time; because we know so little about the security of these systems, there are many opportunities for new researchers to publish in this field.
The Last Watchdog
FEBRUARY 6, 2023
The decision by the House of Representatives to ban TikTok from federal devices is noteworthy, especially as the Chinese spy balloon crisis unfolds. Related: The Golden Age of cyber espionage On December 23, 2022, Congress, in a bipartisan spending bill, banned TikTok from all government devices. The White House, the Pentagon, the Department of Homeland Security, and the State Department have already banned the social media app, as have more than a dozen other states.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Tech Republic Security
FEBRUARY 6, 2023
New research from Check Point Research exposes a crypter that stayed undetected for six years and is responsible for several major malware infections around the globe. The post TrickGate crypter discovered after 6 years of infections appeared first on TechRepublic.
Cisco Security
FEBRUARY 6, 2023
The use of unmanaged and IoT devices in enterprises is growing exponentially, and will account for 55.7 billion connected devices by the end of 2025. A critical concern is deploying IoT devices without requisite security controls. While these numbers are numbing, their reality is undeniable. 90% of customers believe digitization has accelerated the importance placed upon security.
Speaker: Erroll Amacker
Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.
Security Boulevard
FEBRUARY 6, 2023
Police in the Netherlands broke open alleged drugs gangs by hacking an encrypted messenger service, Exclu. Lives were saved and alleged perps arrested. The post Dutch Cops Bust ‘Exclu’ Messaging Service, Arrest 42 appeared first on Security Boulevard.
Cisco Security
FEBRUARY 6, 2023
“Where do we start?” This is the question every CISO asks about every new program. In fact, I ask and answer that question many times a month. There’s a reason for this, of course. A strong start to any project builds momentum, reassures stakeholders, and sets the stage for what’s to come. Security resilience initiatives are no different.
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
|
We Live Security
FEBRUARY 6, 2023
As children’s safety and privacy online becomes a matter of increasing urgency, lawmakers around the world push ahead on new regulations in the digital realm The post Online safety laws: What’s in store for children’s digital playgrounds?
Trend Micro
FEBRUARY 6, 2023
In this investigation, we analyzed several prominent "passive income" applications and found out that there may be security risks upon participating in these programs.
Graham Cluley
FEBRUARY 6, 2023
Vesuvius, the London Stock Exchange-listed molten metal flow engineering company, says it has shut down some of its IT systems after being hit by a cyber attack.
Security Boulevard
FEBRUARY 6, 2023
Cybersecurity protects a wide range of electronic assets, but data is the most important. When you boil it down, most cybersecurity practices and technologies center around sensitive information, whether directly or indirectly. Given that relationship, the most effective digital security aligns perfectly with concepts like data governance. As close as they may be, data governance.
Advertisement
Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.
Graham Cluley
FEBRUARY 6, 2023
Graham Cluley Security News is sponsored this week by the folks at Incogni. Thanks to the great team there for their support! Cybercrimes happen much more often than you might think and affect a growing amount of people.
IT Security Guru
FEBRUARY 6, 2023
The app industry is incredibly competitive. There are millions of apps available today, with many more being released all of the time. As a developer, making a fantastic app is one thing; ensuring it gets lots of downloads is another. There are a number of ways in which developers can boost their app’s download numbers. Some choose to buy app installs ; others focus on implementing an effective marketing strategy.
CyberSecurity Insiders
FEBRUARY 6, 2023
All those parents who are worried about the whereabouts of their kids, here’s a solution to wipe-out your concerns. The iPhone maker has introduced a new app feature on its Apple Watch that allows children to send their location to their parents when emergency. It also allows the parents to keep a watch on the places their kids are visiting- all thorough the ‘Find My Kids’ feature on the apple watch.
Heimadal Security
FEBRUARY 6, 2023
Threat actors breached Tallahassee Memorial HealthCare`s (TMH) security system last Thursday. As a result, the whole IT system had to be taken offline and thoroughly checked, while non-emergency procedures were suspended. All patients requiring emergency services were taken to other hospitals, with only Level 1 traumas from TMH`s immediate service area being accepted.
Advertisement
The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.
SecureBlitz
FEBRUARY 6, 2023
Standoff 365 is one of the few websites in the world that unites in one portal representatives of the IT industry, both attackers, that is, hackers, and defenders, that is, those professionals who specialize in cyber security of financial and trading platforms, whose work involves user registration, gaining access to a private account and making transactions. […] The post Standoff 365 – Everything You Need To Know About Cyber Security appeared first on SecureBlitz Cybersecurity.
CyberSecurity Insiders
FEBRUARY 6, 2023
France, Canada, Finland, and Italy have collectively released a warning against a ransomware attack that is targeting VMware servers through a vulnerability. And if facts are considered, the issue seems to be a two-year-old susceptibility that was fixed already. However, thousands of systems are still vulnerable to attacks, says the National Cybersecurity Agency (ACN) of Italy.
SecureWorld News
FEBRUARY 6, 2023
When we think of the dangers of cyberattacks, physical harm is not often the first thing that comes to mind. But when a cyberattack involves a hospital or healthcare provider, things can change pretty quickly. Tallahassee Memorial Healthcare (TMH), a private, not-for-profit healthcare system based in North Florida and South Georgia, recently detected a cyberattack on its IT systems, which prompted the organization to take systems offline in a bid to limit the impact of the attack.
CyberSecurity Insiders
FEBRUARY 6, 2023
A few of the Russian supports in Ukraine were held responsible for treason when they were caught red-handed by the cyber security forces of Ukraine during a zoom call. According to the press release, the supporters haling from Donetsk were on a video call when the law enforcement disrupted their call and force-appeared on their screens to slap them with the accounts of treason.
Speaker: Sierre Lindgren
Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.
SecureWorld News
FEBRUARY 6, 2023
How would you feel if you found out your partner had been secretly monitoring your every move? The unsuspecting victims of the illegal spyware sold by tech CEO Patrick Hinchy felt the painful sting of this violation of privacy firsthand, as their every call, text, location, and online activity was being monitored without their knowledge or consent. New York Attorney General Letitia James recently secured a $410,000 settlement from Patrick Hinchy and 16 of his companies for illegally promoting sp
Dark Reading
FEBRUARY 6, 2023
Despite growing awareness, organizations remain plagued with unpatched vulnerabilities and weaknesses in credential policies.
WIRED Threat Level
FEBRUARY 6, 2023
Moscow promised residents lower crime rates through an expansive smart city project. Then Vladimir Putin invaded Ukraine.
Security Affairs
FEBRUARY 6, 2023
Royal Ransomware operators added support for encrypting Linux devices and target VMware ESXi virtual machines. The Royal Ransomware gang is the latest extortion group in order of time to add support for encrypting Linux devices and target VMware ESXi virtual machines. Other ransomware operators already support Linux encrypting, including AvosLocker , Black Basta , BlackMatter , HelloKitty , Hive , LockBit , Luna , Nevada , RansomEXX , and REvil.
Advertisement
Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.
Security Boulevard
FEBRUARY 6, 2023
ChatGPT is the latest in a long line of game-changing technology, and it has people across a wide variety of industries furiously debating its potential impact, use cases and its pros and cons. Cybercrime is one of those industries that has taken an interest in ChatGPT and how to make it work for the benefit. The post ChatGPT-Written Malware Will Change the Threat Landscape appeared first on Security Boulevard.
Security Affairs
FEBRUARY 6, 2023
The Italian National Cybersecurity Agency (ACN) warns of an ongoing massive ransomware campaign targeting VMware ESXi servers. The Italian National Cybersecurity Agency (ACN) warns of an ongoing massive ransomware campaign targeting VMware ESXi servers worldwide, including Italian systems. The attackers are attempting to exploit the CVE-2021–21974 vulnerability.
Heimadal Security
FEBRUARY 6, 2023
Endpoints are one of the hackers` favorite gates to attacking organizations` networks. Check out our top 10 endpoint security best practices that will keep you safe and help prevent cyberattacks. Setting foot into only one of the connected devices can open the way for threat actors to deploy malware, launch phishing attacks, and steal data. […] The post Top 10 Endpoint Security Best Practices That Help Prevent Cyberattacks appeared first on Heimdal Security Blog.
Security Affairs
FEBRUARY 6, 2023
ESXi ransomware targeted thousands of VMware servers in a global-scale campaign, security experts and international CERTs warn. Thousands of computer servers have been targeted by a global ransomware hacking attack targeting VMware (VMW.N) ESXi servers. ESXi is VMware’s hypervisor, a technology that allows organizations to host several virtualized computers running multiple operating systems on a single physical server.
Advertisement
Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.
Bleeping Computer
FEBRUARY 6, 2023
Microsoft is investigating and working on addressing an ongoing outage affecting the company's Outlook webmail service. [.
Malwarebytes
FEBRUARY 6, 2023
Tallahassee Memorial Healthcare (TMH), a major hospital system in northern Florida, has reportedly been experiencing an "IT security issue" since Thursday evening, which impacted some of its IT systems. When TMH learned of the issue, it took its entire IT systems offline as a precaution and contacted law enforcement. In a news post on its website, the hospital says it's making progress managing the security incident while it continues to operate under IT system downtime protocols, which includes
Security Boulevard
FEBRUARY 6, 2023
ImageMagick is a popular open-source image manipulation library used by many websites and software applications to process and display images. A couple of vulnerabilities have recently been discovered in ImageMagick by MetabaseQ. Two vulnerabilities CVE-2022-44267 and CVE-2022-44268 allow attackers to arbitrarily read files and cause DoS on the affected system.
Bleeping Computer
FEBRUARY 6, 2023
VMware warned customers today to install the latest security updates and disable the OpenSLP service targeted in a large-scale campaign of ransomware attacks against Internet-exposed and vulnerable ESXi servers. [.
Advertisement
After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!
Expert insights. Personalized for you.
277 
Let's personalize your content