Krebs on Security
FEBRUARY 14, 2022
In January, KrebsOnSecurity examined clues left behind by “ Wazawaka ,” the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. Wazawaka has since “lost his mind” according to his erstwhile colleagues, creating a Twitter account to drop exploit code for a widely-used virtual private networking (VPN) appliance, and publishing bizarre selfie videos taunting security researchers and journalists.
Schneier on Security
FEBRUARY 14, 2022
This is a current list of where and when I am scheduled to speak: I’m speaking at IT-S Now 2022 in Vienna on June 2, 2022. I’m speaking at the 14th International Conference on Cyber Conflict, CyCon 2022, in Tallinn, Estonia on June 3, 2022. I’m speaking at the RSA Conference 2022 in San Francisco, June 6-9, 2022. The list is maintained on this page.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
CSO Magazine
FEBRUARY 14, 2022
Cybersecurity pro Alana Scott was building her skills and her career in the conventional manner: by attending conferences and looking to network. But she and several colleagues found that they experienced a “kind of awkwardness when we tried to find our place in that space.” As she explains: “It was not an active, ‘What are you doing here?’ It was more like they just didn’t see you.
Acunetix
FEBRUARY 14, 2022
New year, new AppSec program. Just like any good resolution, AppSec that makes a lasting impact is one you have to stick to, fine-tune, and hold yourself accountable for. AppSec programs act like bumpers in a bowling lane and help keep you on track, but. Read more. The post AppSec best practices for security that sticks appeared first on Acunetix.
Advertisement
How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.
The State of Security
FEBRUARY 14, 2022
A surge in "sophisticated, high impact" ransomware attacks has prompted the United States, UK, and Australian cybersecurity agencies issue a joint advisory about the techniques being used by cybercriminals to attack businesses and organisations. Read more in my article on the Tripwire State of Security blog.
Heimadal Security
FEBRUARY 14, 2022
The San Francisco 49ers (sometimes known as the San Francisco Forty Niners) are an American football club from the San Francisco Bay Area that competes in the National Football League. Originally a founder member of the All-America Football Conference (AAFC), the club became a member of the National Football League (NFL) in 1949 when the […]. The post The 49ers Hit by Blackbyte Ransomware Attack appeared first on Heimdal Security Blog.
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
Heimadal Security
FEBRUARY 14, 2022
Yesterday, Adobe issued an emergency advisory to notify users of Adobe Commerce and Magento about a critical zero-day vulnerability that has been exploited in attacks. As per the tech giant’s threat data, the security issue is being used “in very limited attacks targeting Adobe Commerce merchants.” To address the critical security flaw affecting its products, […].
Bleeping Computer
FEBRUARY 14, 2022
Offensive Security has released ?Kali Linux 2022.1, the first version of 2022, with improved accessibility features, a visual refresh, SSH wide compatibility, and of course, new toys to play with! [.].
The Hacker News
FEBRUARY 14, 2022
Google on Monday rolled out fixes for eight security issues in the Chrome web browser, including a high-severity vulnerability that's being actively exploited in real-world attacks, marking the first zero-day patched by the internet giant in 2022.
Security Boulevard
FEBRUARY 14, 2022
Welcome to the Ask Chloé column on Security Boulevard! Each week, Chloé provides answers to readers’ questions to help guide them as they navigate the technology industry. This week, Chloé offers advice to an InfoSec pro who is struggling to cope with burnout, even after a vacation. Dear Chloé, I took a trip to Mexico to escape. The post Ask Chloé: Vacations Aren’t the Cure for Burnout appeared first on Security Boulevard.
Advertiser: Revenera
In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.
Bleeping Computer
FEBRUARY 14, 2022
The US Federal Bureau of Investigation (FBI) revealed that the BlackByte ransomware group has breached the networks of at least three organizations from US critical infrastructure sectors in the last three months. [.].
Security Boulevard
FEBRUARY 14, 2022
Since the birth of currency, the use of credit has been essential to empowering consumers to obtain goods and services. The post Right time, right place: opportunities for banks and credit unions with Buy Now, Pay Later appeared first on Entrust Blog. The post Right time, right place: opportunities for banks and credit unions with Buy Now, Pay Later appeared first on Security Boulevard.
Approachable Cyber Threats
FEBRUARY 14, 2022
In this interconnected world, social media has become the new town square, the new archive, the new marketplace. People use Facebook and Instagram to stay in touch, to share memories, and now more and more, to build a clientele. Hackers have taken advantage of this growth to gain access to people’s accounts, often targeting weak passwords. Our CEO, Alex, was featured in this piece that aired nationwide.
Security Boulevard
FEBRUARY 14, 2022
Last year was an explosive year of growth for Hyperproof. We welcomed amazing customers such as Fortinet, Instacart, Read More. The post Hyperproof Ranked Top 500 Fastest Growing SaaS Companies by Latka? appeared first on Hyperproof. The post Hyperproof Ranked Top 500 Fastest Growing SaaS Companies by Latka? appeared first on Security Boulevard.
Advertisement
Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.
Heimadal Security
FEBRUARY 14, 2022
Molerats APT group also dubbed TA402 returns by leading a new reportedly cyberespionage campaign that employs NimbleMamba malware. NimbleMamba Malware Leveraged in New Malicious Campaign A report has been recently published by the Proofpoint researchers on a new email phishing campaign. According to them, various foreign-policy think tanks, Middle Eastern governments, and a state-affiliated airline […].
Security Boulevard
FEBRUARY 14, 2022
As we await new guidelines from NIST, we review the impact the federal government and previous cybersecurity executive orders have had on setting new policies. The post What the cybersecurity executive order means for the private sector appeared first on Software Integrity Blog. The post What the cybersecurity executive order means for the private sector appeared first on Security Boulevard.
Bleeping Computer
FEBRUARY 14, 2022
The US Federal Trade Commission (FTC) said today that it will take legal action against Voice-over-Internet Protocol (VoIP) service providers who do not hand over information requested during robocall investigations. [.].
Security Boulevard
FEBRUARY 14, 2022
In today’s era of remote and hybrid work, organizations continue to grapple with many cybersecurity questions. What solutions can help companies effectively and securely manage remote employees? Is it possible to protect network traffic using cloud computing? How have targeted cyberattacks and advanced persistent threats (APTs) influenced the development of next-generation firewalls?
Advertisement
The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.
Heimadal Security
FEBRUARY 14, 2022
Heimdal Security (Heimdal) partnered with Bechtle UK will be holding a free online webinar on the 29th of March called “An insight into cybersecurity and the key threats”. This webinar will give you deep knowledge about what factors add to how a business vulnerability can be exploited and further leads to a cyberattack, what are […]. The post Heimdal™ and Bechtle UK Partner Up for an Exquisite Webinar on the CyberSec Threat Outlook appeared first on Heimdal Security Blog.
Security Boulevard
FEBRUARY 14, 2022
Netflix recently released a new documentary which is timely to today—Valentine’s Day. It tells the story of The Tinder Swindler, a man who pretended to be a wealthy diamond mogul and courted women on dating apps as part of one big scheme to ultimately con them out of millions of dollars. Here at DTEX we … Continued. The post Burner Phones, Fake Social Profiles, Cat Fishing—Not a Valentine’s Day Horror Story, It’s the Super Malicious Insider appeared first on DTEX Systems Inc.
The Hacker News
FEBRUARY 14, 2022
Spain's National Police Agency, the Policía Nacional, said last week it dismantled an unnamed cybercriminal organization and arrested eight individuals in connection with a series of SIM swapping attacks that were carried out with the goal of financial fraud.
Security Boulevard
FEBRUARY 14, 2022
In today’s world, businesses, economies, and lives are connected by a complex spider web of code and software applications. This code and these applications drive e-commerce, financial transactions, and data input. They impact our ability to quickly transfer money from one account to another, to fill out an online mortgage application, and to order supplies […].
Advertisement
The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported. Ransomware attackers can potentially paralyze not just private sector organizations but also healthcare facilities, schools, and entire police departments.
Digital Guardian
FEBRUARY 14, 2022
A joint advisory on ransomware issued by the FBI, CISA, and the NSA recapped ransomware activity in 2021 and showed why the threat continues to loom large for enterprises.
Security Boulevard
FEBRUARY 14, 2022
All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of February 7, 2022. I’ve also included some comments on these stories. Mac Trojan Comes with Expanded Ability to Drop […]… Read More.
Bleeping Computer
FEBRUARY 14, 2022
Sports equipment and sportswear brand Mizuno is affected by phone outages and order delays after being hit by ransomware, BleepingComputer has learned from sources familiar with the attack. [.].
Security Boulevard
FEBRUARY 14, 2022
Various threat actor groups continue to develop exploits that are targeting the Log4j vulnerability. However, The post The Hunt for Log4j appeared first on Gurucul. The post The Hunt for Log4j appeared first on Security Boulevard.
Speaker: Blackberry, OSS Consultants, & Revenera
Software is complex, which makes threats to the software supply chain more real every day. 64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. In the U.S. alone, cyber losses totaled $10.3 billion in 2022. All of these stats beg the question, “Do you know what’s in your software?
We Live Security
FEBRUARY 14, 2022
How well retailers can manage the surge in cyberthreats may be crucial for their prospects in a post‑pandemic world. The post From the back office to the till: Cybersecurity challenges facing global retailers appeared first on WeLiveSecurity.
Security Boulevard
FEBRUARY 14, 2022
Many thanks to BSidesRDU for publishing their outstanding videos from the BSidesRDU 2021 Conference on the organization’s YouTube channel. Permalink. The post BSidesRDU 2021 -Dahvid Schloss’ ‘PowerShell’s Return To Power’ appeared first on Security Boulevard.
Bleeping Computer
FEBRUARY 14, 2022
The Security Service of Ukraine (SSU) today said the country is the target of an ongoing "wave of hybrid warfare," aiming to instill anxiety and undermine Ukrainian society's confidence in the state's ability to defend its citizens. [.].
Security Boulevard
FEBRUARY 14, 2022
Valentine’s Day is a prime activity period for romance scams and fake accounts. To maximize their exploits, bad actors prey on potential victims not just on dating platforms, but also on gaming and social media platforms Valentine’s Day is the day for love. But for those who don’t already have a special someone in their […]. The post Cupid or Cybercriminal: Arkose Labs Data Predicts 80% Rise in Romance Scams this Valentine’s Day appeared first on Security Boulevard.
Speaker: Erika R. Bales, Esq.
When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place. Let’s step back and focus on the idea that no matter how complicated the compliance and security regime, it should be able to be distilled down to a checklist.
Expert insights. Personalized for you.
192 
Let's personalize your content