Schneier on Security

AUGUST 17, 2022

This vulnerability was reported to Zoom last December: The exploit works by targeting the installer for the Zoom application, which needs to run with special user permissions in order to install or remove the main Zoom application from a computer. Though the installer requires a user to enter their password on first adding the application to the system, Wardle found that an auto-update function then continually ran in the background with superuser privileges.

Passwords 282

Passwords Malware 282

The Last Watchdog

AUGUST 17, 2022

Network security is in dire straits. Security teams must defend an expanding attack surface, skilled IT professionals are scarce and threat actors are having a field day. Related: The role of attack surface management. That said, Managed Security Services Providers – MSSPs — are in a position to gallop to the rescue. MSSPs arrived on the scene 15 years ago to supply device security as a contracted service: antivirus, firewalls, email security and the like.

Antivirus 196

Antivirus Cyber Risk Firewall Internet 196

Tech Republic Security

AUGUST 17, 2022

Jack Wallen walks you through the process of deploying a Bitwarden vault server with the help of Docker containers. The post How to deploy the Bitwarden self-hosted server with Docker appeared first on TechRepublic.

173

173

eSecurity Planet

AUGUST 17, 2022

A new Linux kernel exploitation called Dirty Cred was revealed at last week’s Black Hat security conference. Zhenpeng Lin, a PhD student, and a team of researchers worked on an alternative approach to the infamous Dirty Pipe vulnerability that affected Linux kernel versions 8 and later. Dity Pipe is a major flaw that allows attackers to elevate least-privileged accounts to the maximum level (root) by exploiting the way the kernel uses pipes to pass data.

Software 141

Software Accountability Risk Network Security 141

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

Tech Republic Security

AUGUST 17, 2022

The cyberespionage threat actor is aligned with Russian interests and has hit numerous organizations since 2017, aiming at stealing sensitive data. The post Seaborgium targets sensitive industries in several countries appeared first on TechRepublic.

Cybersecurity 144

Cybersecurity 144

CyberSecurity Insiders

AUGUST 17, 2022

A recent survey conducted by IBM has discovered that companies can save millions incurred from data breaches, just by automating their cybersecurity posture. The report that goes with the title ‘IBM Cost of Data Breach Report’ stated that organizations can save for themselves about $3.05 million per data breach, if they take the help of the technology of Artificial Intelligence (AI) along with Automation.

Data breaches 136

Data breaches Artificial Intelligence Cyber Risk Technology 136

CyberSecurity Insiders

AUGUST 17, 2022

By Aaron Sandeen, CEO, Cyber Security Works. It should be no surprise that ransomware is currently one of the most common attack vectors wreaking havoc on businesses worldwide. Attackers and ransomware operators are constantly looking for more vulnerabilities to weaponize and increase their arsenal of tools, tactics, and techniques. In fact, the FBI’s Internet Crime Report for 2021 recorded 649 ransomware attacks on critical infrastructure establishments, with nearly $50 million reportedly

Ransomware 124

Ransomware Healthcare Manufacturing Cybersecurity 124

The State of Security

AUGUST 17, 2022

The world of enterprise cybersecurity is exceedingly dynamic. In a landscape that is ever-changing, security professionals need to combat a class of evolving threat actors by deploying increasingly sophisticated tools and techniques. Today with enterprises operating in an environment that is more challenging than ever, Security Information and Event Management (SIEM) platforms play an indispensable […]… Read More.

Cybersecurity 118

Cybersecurity 118

CyberSecurity Insiders

AUGUST 17, 2022

Lazarus Group that is being funded by North Korea Military Intelligence is reportedly using signed executable to mimic a Coinbase website in order to attract employees and customers. The aim behind the said social engineering attack is simple, one to trap employees with fake job offers and second to lure customers in signing up the page and then steal their currency.

Social Engineering 117

Social Engineering Cryptocurrency Education Cybercrime 117

InfoWorld on Security

AUGUST 17, 2022

ARMO, developer of Kubescape, an open source security platform for Kubernetes , has added two new vulnerability scanning functions to the platform. Code repository scanning and container image registry scanning are the first fruits of an effort to cover more aspects of Kubernetes security, the company said, including integrating with more third-party devops and Kubernetes tools like Lens, Prometheus, Plural, Civo, GitHub Actions, GitLab, and Visual Studio. [ Also on InfoWorld: No one wants to ma

114

114

Advertiser: Revenera

In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.

Risk

Security Affairs

AUGUST 17, 2022

Google addressed a dozen vulnerabilities in the Chrome browser, including the fifth Chrome zero-day flaw exploited this year. Google this week released security updates to address a dozen vulnerabilities in its Chrome browser for desktops including an actively exploited high-severity zero-day flaw in the wild. The actively exploited flaw, tracked as CVE-2022-2856, is an Insufficient validation of untrusted input in Intents.

Telecommunications 108

Telecommunications Mobile Engineering Hacking 108

CSO Magazine

AUGUST 17, 2022

Cybersecurity firm Deep Instinct has rolled out a new partner program to provide its endpoint and application protection software to managed security service providers (MSSPs) , the company announced Wednesday. The Stratosphere program was initially announced in April, and designed as a simplified channel program that focuses on expected partner margins, instead of set discounts on the product.

Ransomware 106

Ransomware Software Cybersecurity 106

Security Affairs

AUGUST 17, 2022

A China-linked APT group named RedAlpha is behind a long-running mass credential theft campaign aimed at organizations worldwide. Recorded Future researchers attributed a long-running mass credential theft campaign to a Chinese nation-state actor tracked RedAlpha. The campaign targeted global humanitarian, think tank, and government organizations. Experts believe RedAlpha is a group of contractors conducting cyber-espionage activity on behalf of China.

Phishing 108

Phishing Government Information Security Technology 108

Dark Reading

AUGUST 17, 2022

Especially if your e-commerce and CMS platforms are integrated, you risk multiple potential sources of intrusion, and the integration points themselves may be vulnerable to attack.

Risk 104

Risk 104

Advertisement

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.

Cybersecurity

CSO Magazine

AUGUST 17, 2022

Google Cloud Wednesday announced the general availability of what it calls “curated detection” for its Chronicle security analysis platform. The new detection feature leverages the threat intelligence that Google gains from protecting its own user base into an automated detection service that covers everything from ransomware , infostealers and data theft to simple misconfigured systems and remote access tools.

Threat Detection 105

Threat Detection Ransomware 105

The Hacker News

AUGUST 17, 2022

Apple on Wednesday released security updates for iOS, iPadOS, and macOS platforms to remediate two zero-day vulnerabilities previously exploited by threat actors to compromise its devices.

103

103

Security Boulevard

AUGUST 17, 2022

Dynamic business requirements and cloud complexity make managing least privilege a huge challenge. The post Facing the Shift-Left Security Conundrum. A True Story appeared first on Ermetic. The post Facing the Shift-Left Security Conundrum. A True Story appeared first on Security Boulevard.

104

104

Threatpost

AUGUST 17, 2022

The North Korean APT is using a fake job posting for Coinbase in a cyberespionage campaign targeting users of both Apple and Intel-based systems.

Engineering 114

Engineering Malware Government Hacking 114

Advertisement

The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.

Healthcare

Dark Reading

AUGUST 17, 2022

The state-sponsored group particularly targets organizations working on behalf of the Uyghurs, Tibet, and Taiwan, looking to gather intel that could lead to human-rights abuses, researchers say.

102

102

CSO Magazine

AUGUST 17, 2022

The Institute for Security and Technology (IST) recently released a “Blueprint for Ransomware Defense.” The guide includes recommendations of defensive actions for small- and medium-sized businesses (SMBs) to protect against and respond to ransomware and other common cyberattacks. It focuses on the identify, protect, respond, and recover format that aligns with the National Institute of Standards and Technology (NIST) Cybersecurity Framework.

Ransomware 102

Ransomware Technology Cybersecurity 102

Dark Reading

AUGUST 17, 2022

The high-severity security vulnerability (CVE-2022-2856) is due to improper user-input validation.

136

136

Bleeping Computer

AUGUST 17, 2022

Android malware developers are already adjusting their tactics to bypass a new 'Restricted settings' security feature introduced by Google in the newly released Android 13. [.].

Malware 99

Malware Mobile 99

Advertisement

The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported. Ransomware attackers can potentially paralyze not just private sector organizations but also healthcare facilities, schools, and entire police departments.

Identity Theft

The Hacker News

AUGUST 17, 2022

Google on Tuesday rolled out patches for Chrome browser for desktops to contain an actively exploited high-severity zero-day flaw in the wild. Tracked as CVE-2022-2856, the issue has been described as a case of insufficient validation of untrusted input in Intents.

98

98

Security Boulevard

AUGUST 17, 2022

Radware today published a global threat analysis report that finds the number of malicious distributed denial of service (DDoS) attacks launched in the first of 2002 increased 203% year over year, mainly because of the war in Ukraine and political strife involving Taiwan and the Philippines. In fact, the report finds there were 60% more. The post Radware Report Sees Major Spike in DDoS Attacks appeared first on Security Boulevard.

DDOS 98

DDOS Cyber threats 98

Dark Reading

AUGUST 17, 2022

The curated detection feature for Chronicle SecOps Suite provides security teams with actionable insights on cloud threats and Windows-based attacks from Google Cloud Threat Intelligence Team.

98

98

Security Boulevard

AUGUST 17, 2022

One cannot argue against the need for quality assurance when it comes to software development. An organization’s reputation can be negatively affected due to the poor quality, or defects dispensed in the software they produce, and can ultimately lead to losing a large number of clients. In extreme cases, these security loopholes can become the […]. The post Types of Testing Techniques: Black, White and Grey Box appeared first on Kratikal Blogs.

Software 98

Software 98

Speaker: Blackberry, OSS Consultants, & Revenera

Software is complex, which makes threats to the software supply chain more real every day. 64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. In the U.S. alone, cyber losses totaled $10.3 billion in 2022. All of these stats beg the question, “Do you know what’s in your software?

Cybersecurity

Bleeping Computer

AUGUST 17, 2022

Microsoft PowerToys is getting a new utility called PowerOCR that lets you select text in an image and copy it directly to the Windows clipboard. [.].

Software 111

Software 111

Security Boulevard

AUGUST 17, 2022

The saying, “a picture is worth a thousand words,” coined by Norwegian playwright Henrik Ibsen, posited that visualization is often the fastest route to understanding. Advertisers have lived by this adage for decades, but in the coming years, cybersecurity professionals will need to embrace it as well. As work moves to the cloud and hybrid. The post Why Modern Cybersecurity Pros Need Data Visualization appeared first on Security Boulevard.

Cybersecurity 98

Cybersecurity Advertising Security Awareness Network Security 98

Bleeping Computer

AUGUST 17, 2022

Google has released a security update for Chrome browser that addresses close to a dozen vulnerabilities, including a zero-day flaw that is being exploited in the wild. [.].

98

98

Security Boulevard

AUGUST 17, 2022

A report published by FortiGuard Labs arm of Fortinet today finds that the number of ransomware variants detected in the last six months has increased by nearly a factor of two. A total of 10,666 ransomware variants have been detected in the last six months, compared to 5,400 variants detected in the previous six months. The post Fortinet Reports Massive Increase in Ransomware Variants appeared first on Security Boulevard.

Ransomware 98

Ransomware 98

Speaker: Erika R. Bales, Esq.

When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place. Let’s step back and focus on the idea that no matter how complicated the compliance and security regime, it should be able to be distilled down to a checklist.