Schneier on Security

JANUARY 31, 2023

Chainalysis reports that worldwide ransomware payments were down in 2022. Ransomware attackers extorted at least $456.8 million from victims in 2022, down from $765.6 million the year before. As always, we have to caveat these findings by noting that the true totals are much higher, as there are cryptocurrency addresses controlled by ransomware attackers that have yet to be identified on the blockchain and incorporated into our data.

Ransomware 336

Ransomware Cryptocurrency Cybercrime 336

Tech Republic Security

JANUARY 31, 2023

IT pros typically have access to company servers, network devices and data so they can perform their jobs. However, that access entails risk, including exposure of confidential information and interruption in essential business services. This policy from TechRepublic Premium offers guidelines for governing access to critical systems and confidential data.

Business Services 187

Business Services Government Risk 187

Security Boulevard

JANUARY 31, 2023

API sprawl, which Brian Otten, VP of the digital transformation catalysts division with Axway, defined as “an uncontrolled proliferation of APIs in an organization,” is creating a flood of new security headaches for organizations. One of the biggest problems in providing security for APIs is that sprawl makes them difficult to track and inventory. And.

Digital transformation 137

Digital transformation Cybersecurity 137

Tech Republic Security

JANUARY 31, 2023

Foundry’s study found the role has been significantly elevated because of the economy, and CIOs are recognized as strategic business partners by their LOB peers. The post CIOs hold greater organizational leadership status appeared first on TechRepublic.

184

184

Speaker: Erroll Amacker

Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.

Risk

Security Boulevard

JANUARY 31, 2023

Two researchers report vulnerability in KeePass. But lead developer Dominik Reichl says it’s not a problem—and refuses to fix the flaw. The post Another Password Manager Leak Bug: But KeePass Denies CVE appeared first on Security Boulevard.

Password Management 131

Password Management Passwords Social Engineering Engineering 131

SecureList

JANUARY 31, 2023

Prilex is a singular threat actor that has evolved from ATM-focused malware into unique modular PoS malware—actually, the most advanced PoS threat we have seen so far, as described in a previous article. Forget about those old memory scrapers seen in PoS attacks. Prilex goes beyond these, and it has evolved very differently. This is highly advanced malware adopting a unique cryptographic scheme, doing real-time patching in target software, forcing protocol downgrades, manipulating cryptograms, d

Retail 128

Retail Malware Mobile Technology 128

We Live Security

JANUARY 31, 2023

An overview of the activities of selected APT groups investigated and analyzed by ESET Research in T3 2022 The post ESET APT Activity Report T3 2022 appeared first on WeLiveSecurity

117

117

InfoWorld on Security

JANUARY 31, 2023

The creator of C++, Bjarne Stroustrup, is defending the venerable programming language after the US National Security Agency (NSA) recently recommended against using it. NSA advises organizations to use memory safe languages instead. Responding to the agency’s November 2022 bulletin on software memory safety, Stroustrup , who designed C++ in 1979, stressed decades-long efforts to enable better, safer, and more efficient C++.

Software 117

Software 117

Naked Security

JANUARY 31, 2023

There was a breach, so the bad news isn't great, but the good news isn't too bad.

115

115

CyberSecurity Insiders

JANUARY 31, 2023

Google Fi, a wireless phone plan offered only to Alphabet Inc’s subsidiary customers, has confirmed a data breach that could have occurred because of a security incident on T-Mobile servers that leaked data related to millions of customers. Only a limited portion of customer data was reportedly leaked in the attack and accessed information, such as phone numbers, account details, SIM card serial numbers, and mobile billing plan details.

Cyber Attacks 115

Cyber Attacks Mobile Wireless Data breaches 115

Advertisement

Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.

Cyber threats

CSO Magazine

JANUARY 31, 2023

The growth of the internet of things (IoT) and connected devices are the biggest contributing factors to organizations’ expanding attack surfaces. That’s according to a new report from Cisco AppDynamics , which revealed that 89% of global IT professionals believe their organization has experienced an expansion in its attack surface over the last two years.

IoT 111

IoT Marketing Internet Internet 111

Heimadal Security

JANUARY 31, 2023

The U.K. sports-fashion retail company JD Sports announced that one of its servers suffered a data breach. The server was holding details about the online orders of 10 million customers. All the information stored in the attacked server related to purchases made between November 2018 and October 2020. Details About the Data Breach JD Sports […] The post 10 Million JD Sports Customers Had Their Data Exposed in a Data Breach appeared first on Heimdal Security Blog.

Data breaches 108

Data breaches Retail Cybersecurity 108

Appknox

JANUARY 31, 2023

The OWASP API Top 10 is a list of common vulnerabilities found in APIs. OWASP created it as a resource for developers, testers, and security professionals to help them understand how to protect against API threats.

105

105

Security Boulevard

JANUARY 31, 2023

Introduction to Fintech as a Service (FaaS) Fintech as a Service (FaaS) is a business model that enables companies to outsource financial technology (fintech) services to a third-party provider. This model provides companies with a more flexible and cost-effective way to access fintech services and improve their financial operations. Let’s explore the concept of Fintech […] The post What is Fintech as a service & the Impact of APIs on Fintech?

Technology 103

Technology 103

Advertisement

The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.

Cybersecurity

Trend Micro

JANUARY 31, 2023

Stay informed and stay ahead

Cyber threats 102

Cyber threats Risk 102

Bleeping Computer

JANUARY 31, 2023

Microsoft announced today that it added device isolation support via Microsoft Defender for Endpoint (MDE) on onboarded Linux devices. [.

99

99

CSO Magazine

JANUARY 31, 2023

Guardz, a Tel Aviv-based startup promising a broad range of out-of-the-box cybersecurity solutions for small and medium-size businesses (SMBs), has announced both a successful $10 million round of seed funding and the broad availability of its flagship product. The premise of the company’s main offering is tight API integration with Microsoft 365 and Google Workspace.

Small Business 99

Small Business Cybersecurity Threat Detection Accountability 99

Malwarebytes

JANUARY 31, 2023

The European Commission has been looking at retail websites to see if they're misleading consumers with "dark patterns". Spoiler: Yes, they are. The Commission, along with the national consumer protection authorities of 23 EU member states, plus Norway and Iceland, have released the results of their screening of online shops. In a sweep of 399 sites the investigation discovered that 148 of them contained at least one of the three dark patterns they were checked for.

Consumer Protection 98

Consumer Protection Retail Advertising Risk 98

Speaker: Sierre Lindgren

Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.

Scams

Security Affairs

JANUARY 31, 2023

Horizon3 security researchers released proof-of-concept (PoC) code for VMware vRealize Log Insight RCE vulnerability CVE-2022-31706. Last week, researchers from Horizon3’s Attack Team announced the release of PoC exploit code for remote code execution in VMware vRealize Log tracked as CVE-2022-31706 (CVSS base 9.8/10). The PoC exploit code will trigger a series of flaws in VMware vRealize Log to achieve remote code execution on vulnerable installs.

Engineering 98

Engineering Authentication Hacking Information Security 98

eSecurity Planet

JANUARY 31, 2023

John the Ripper is a popular password cracking tool that can be used to perform brute-force attacks using different encryption technologies and helpful wordlists. It’s often what pen-testers and ethical hackers use to find the true passwords behind hashes. This open-source package is free to download and has several modules for generating hashes from a range of file types, such as Secure Shell (SSH) keys with ssh2john,kbdx files with keepass2john, and password-protected zip archives with zip2joh

Passwords 98

Passwords Penetration Testing Encryption Password Management 98

Security Affairs

JANUARY 31, 2023

TrickGate is a shellcode-based packer offered as a service to malware authors to avoid detection, CheckPoint researchers reported. TrickGate is a shellcode-based packer offered as a service, which is used at least since July 2016, to hide malware from defense programs. A packer (aka “Crypter” and “FUD”) implements a series of functionalities to make it harder for antivirus programs to detect the malware.

Malware 98

Malware Antivirus Manufacturing Healthcare 98

Heimadal Security

JANUARY 31, 2023

Monday, GitHub announced that unidentified threat actors were able to exfiltrate encrypted code signing certificates for certain versions of the GitHub Desktop for Mac and Atom applications. Therefore, the company is taking the precautionary action of canceling the exposed certificates. These versions of GitHub Desktop for Mac have been rendered invalid: 3.0.2, 3.0.3, 3.0.4, 3.0.5, […] The post Hackers Stole GitHub Desktop and Atom Code-Signing Certificates appeared first on Heimdal Securi

Encryption 98

Encryption Cybersecurity 98

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

Security Affairs

JANUARY 31, 2023

The Pro-Russia group Killnet is launching a series of DDoS attacks against the websites of US healthcare organizations and hospitals. The Pro-Russia group Killnet launched a series of DDoS attacks against US healthcare organizations and hospitals. The group announced the attacks on its Telegram channel, calling for action against the US government healthcare.

Healthcare 98

Healthcare DDOS Cyber Attacks Banking 98

The Hacker News

JANUARY 31, 2023

A shellcode-based packer dubbed TrickGate has been successfully operating without attracting notice for over six years, while enabling threat actors to deploy a wide range of malware such as TrickBot, Emotet, AZORult, Agent Tesla, FormBook, Cerber, Maze, and REvil over the years.

Malware 98

Malware 98

Security Affairs

JANUARY 31, 2023

IT Army of Ukraine claims to have breached the infrastructure of the Russian energy giant Gazprom and had access to a 1.5 GB archive. The collective IT Army of Ukraine announced it has gained access to a 1.5 GB archive belonging to the Russian energy giant Gazprom. The group of hacktivists announced the hack on their Telegram channel claiming that the archive contains more than 6,000 files of the companies of the Gazprom group.

Hacking 98

Hacking Engineering Cybersecurity Data breaches 98

Security Boulevard

JANUARY 31, 2023

Learn about CVE-2022-23846, a denial-of-service-vulnerability affecting GTP libraries found in Open5GS. The post CyRC Vulnerability Advisory: CVE-2023-23846 Denial-of-Service Vulnerability in Open5GS GTP Library appeared first on Security Boulevard.

Cybersecurity 98

Cybersecurity 98

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Software

Security Affairs

JANUARY 31, 2023

GitHub confirmed that threat actors exfiltrated encrypted code signing certificates for some versions of GitHub Desktop for Mac and Atom apps. GitHub this week disclosed a security breach, threat actors exfiltrated encrypted code signing certificates for some versions of GitHub Desktop for Mac and Atom apps. In response to the incident, the Microsoft-owned company is started revoking the exposed certificates.

Encryption 98

Encryption Hacking Accountability Data breaches 98

Heimadal Security

JANUARY 31, 2023

DHCP, or Dynamic Host Configuration Protocol, is a network protocol that allows devices on a network to be automatically assigned an IP address. DHCP is used extensively in both home and enterprise networks, as it simplifies the process of configuring IP addresses for new devices. In this article, we will have a closer look at […] The post What Is Dynamic Host Configuration Protocol (DHCP)?

Cybersecurity 98

Cybersecurity 98

Security Boulevard

JANUARY 31, 2023

The post Google’s open source team layoffs: Your software supply chain security is at risk appeared first on Security Boulevard.

Software 98

Software Risk 98

SecureWorld News

JANUARY 31, 2023

Oh, the economy. You've probably heard folks talking about the global or American economy and the looming recession that is being anticipated, but how is that going to impact the cybersecurity industry? Well, according to the professionals, we're in for a doozy of a ride. Following the World Economic Forum's 2023 Annual Meeting (WEF) in Davos, Switzerland, the outlook is looking a bit grim for the cybersecurity field.

InfoSec 98

InfoSec Cybersecurity Marketing 98

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!