Schneier on Security

MARCH 8, 2023

Researchers have discovered malware that “can hijack a computer’s boot process even when Secure Boot and other advanced protections are enabled and running on fully updated versions of Windows.” Dubbed BlackLotus, the malware is what’s known as a UEFI bootkit. These sophisticated pieces of malware target the UEFI—short for Unified Extensible Firmware Interface —the low-level and complex chain of firmware responsible for booting up virtually every modern computer.

Malware 290

Malware Firmware Software Hacking 290

The Last Watchdog

MARCH 8, 2023

APIs (Application Programming Interfaces) play a critical role in digital transformation by enabling communication and data exchange between different systems and applications. Related: It’s all about attack surface management APIs help digital transformation by enabling faster and more efficient business processes, improving customer experience, and providing new ways to interact with your business.

Digital transformation 200

Digital transformation Data breaches Cyber Risk Marketing 200

Security Boulevard

MARCH 8, 2023

With victims from 23 countries, Lockbit continues to be the most prolific ransomware group in the early months of 2023, even as an 11% decrease in ransomware victims was reported in January. These were among the findings from GuidePoint Security’s monthly ransomware threat report, which found the total number of attacks by Lockbit was more. The post Lockbit Ransomware Dominant Even as Overall Attack Rates Fall appeared first on Security Boulevard.

Ransomware 133

Ransomware Threat Reports Security Awareness Malware 133

Bleeping Computer

MARCH 8, 2023

Fortinet has disclosed a "Critical" vulnerability impacting FortiOS and FortiProxy, which allows an unauthenticated attacker to execute arbitrary code or perform denial of service (DoS) on the GUI of vulnerable devices using specially crafted requests. [.

128

128

Speaker: Erroll Amacker

Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.

Risk

Security Boulevard

MARCH 8, 2023

Staff churn is a huge issue for the cybersecurity industry. Frustrations are building among security teams as they face increasing cyberattacks, scrutiny from stakeholders and data overwhelm. This is made worse when paired with the cybersecurity skills shortage of around 3.5 million unfilled positions worldwide. In this environment, it’s vital organizations find ways to retain.

Cybersecurity 124

Cybersecurity CISO 124

SecureList

MARCH 8, 2023

The state of stalkerware in 2022 (PDF) Main findings of 2022 The State of Stalkerware is an annual report by Kaspersky which contributes to a better understanding of how many people in the world are affected by digital stalking. Stalkerware is a commercially available software that can be discretely installed on smartphone devices, enabling perpetrators to monitor an individual’s private life without their knowledge.

Mobile 122

Mobile Software Accountability Cybersecurity 122

Dark Reading

MARCH 8, 2023

Researchers warn that polymorphic malware created with ChatGPT and other LLMs will force a reinvention of security automation.

Malware 119

Malware 119

Bleeping Computer

MARCH 8, 2023

Privacy-focused search engine DuckDuckGo has launched the first beta version of DuckAssist, an AI-assisted feature that writes accurate summaries to answer users' search queries. [.

Engineering 118

Engineering Technology 118

Security Boulevard

MARCH 8, 2023

As women, from a young age, being technically savvy or being interested in math, science or business wasn’t celebrated. You were ‘cool’ and ‘popular’ if you had great hair or nice jeans, not if you wanted to code software. If the tech industry could go back in time, would it celebrate more complex subjects like. The post 3 Reasons Women Should Reskill to Work in Cybersecurity appeared first on Security Boulevard.

Cybersecurity 116

Cybersecurity Software Network Security 116

CSO Magazine

MARCH 8, 2023

The number of detected hard-coded secrets increased by 67% last year compared to 2021, with 10 million new secrets discovered in public GitHub commits in 2022. That’s according to GitGuardian’s State of Secrets Sprawl 2023 report. It found that hard-coded secrets and accelerating secrets sprawl (storing secrets in many different places) are threatening the security of software supply chains.

Software 113

Software Risk 113

Advertisement

Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.

Cyber threats

Security Boulevard

MARCH 8, 2023

1Password announced today general availability of a single sign-on (SSO) capability that makes sure secrets are kept secure by leveraging keys that are stored on an end user’s device. The Unlock with Single Sign-On capability requires two different keys to decrypt secrets, such as passwords, that are stored in the 1Password vault. The capability is.

Passwords 116

Passwords Password Management Cybersecurity 116

Heimadal Security

MARCH 8, 2023

Dark web, deep web, clear web – just words or more? Well, in seeing just how many of you are interested in hearing all about the dark wonders of the internet, I’ve decided to make this small dark web guide. So, if you want to learn all about Tor Onion, Silk Road, secret, hush-hush Governmental […] The post How to Get on the Dark Web: A Step-by-Step Guide appeared first on Heimdal Security Blog.

Internet 111

Internet Internet 111

Security Boulevard

MARCH 8, 2023

Email has been a popular delivery of malware and risk for decades.The first phishing schemes took place in the 1990s, and phishing techniques have only become more sophisticated in the decades since. It’s particularly popular among criminals now; since 2019, the use of phishing scams has increased by 300%. The reason for the increase? Despite […] The post Business Email Compromise: 3 Steps to Reduce Risk appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

Risk 114

Risk Phishing Scams Cyber threats 114

Security Through Education

MARCH 8, 2023

People in many different professions use social engineering as a tool in everyday life. In the case of sales, social engineering plays a significant role in persuading potential customers to buy a product or service. This is done using a social engineering technique known as Influence Tactics. These tactics build trust, establish a connection, and provide value, to the customer or client.

Social Engineering 111

Social Engineering Engineering Education Technology 111

Advertisement

The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.

Cybersecurity

InfoWorld on Security

MARCH 8, 2023

As cloud usage grew over the past decade, one trend among cloud users remained constant: Security held steady as the top challenge for users. That focus is shifting. For the first time, since Flexera began its annual survey of cloud decision-makers, security was not the top challenge reported by respondents. As revealed in the Flexera 2023 State of the Cloud Report , released on March 8, 2023, 82% of respondents from across all organizations indicated that their top cloud challenge is managing c

108

108

The Hacker News

MARCH 8, 2023

The North Korea-linked Lazarus Group has been observed weaponizing flaws in an undisclosed software to breach a financial business entity in South Korea twice within a span of a year.

Hacking 108

Hacking Software 108

Trend Micro

MARCH 8, 2023

In this entry, we discuss case studies that demonstrated how data-science techniques were applied in our investigation of ransomware groups' ransom transactions, as detailed in our joint research with Waratah Analytics, “What Decision-Makers Need to Know About Ransomware Risk.

Ransomware 108

Ransomware Risk 108

WIRED Threat Level

MARCH 8, 2023

Rather than obtaining a warrant, the bureau purchased sensitive data—a controversial practice that privacy advocates say is deeply problematic.

108

108

Speaker: Sierre Lindgren

Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.

Scams

We Live Security

MARCH 8, 2023

An astrobiologist, analog astronaut, author and speaker, Dr.

106

106

Security Boulevard

MARCH 8, 2023

So you’ve made your case successfully and you’re now shopping for a SIEM. Aside from looking at what the software itself can do for you, we also advise purchasing committees to think about what kind of a company you’ll be… The post Don’t Settle for Less: Why You Need a Pureplay Cybersecurity Vendor appeared first on LogRhythm. The post Don’t Settle for Less: Why You Need a Pureplay Cybersecurity Vendor appeared first on Security Boulevard.

Cybersecurity 105

Cybersecurity Software 105

Heimadal Security

MARCH 8, 2023

A threat actor claimed to have hacked Taiwanese multinational hardware and electronics business Acer, prompting the company to declare a data breach. The hacker announced the breach on a popular cybercrime forum, claiming to have stolen nearly 3,000 files of sensitive information. Acer Leak Announcement Spotted on Cybercrime Forum (Source) What Data Was Stolen?

Data breaches 104

Data breaches Cybercrime Hacking Cybersecurity 104

CSO Magazine

MARCH 8, 2023

CISO Nicole Darden Ford has become accustomed to doing more with less since the COVID-19 pandemic suddenly upended her company’s workforce. “I got off a plane from India and saw all these people with masks at the airport in Washington, DC, and I wondered what was going on. I went straight to the office where my CEO and CIO explained our new reality: We were going into quarantine and we had less than a week to come up with a way for people to work remotely.

CISO 102

CISO 102

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

WIRED Threat Level

MARCH 8, 2023

After successful autonomous flight tests in December, the military is ramping up its plans to bring artificial intelligence to the skies.

Artificial Intelligence 100

Artificial Intelligence 100

The Hacker News

MARCH 8, 2023

As threats grow and attack surfaces get more complex, companies continue to struggle with the multitude of tools they utilize to handle endpoint security and management. This can leave gaps in an enterprise's ability to identify devices that are accessing the network and in ensuring that those devices are compliant with security policies.

99

99

Malwarebytes

MARCH 8, 2023

The March security updates for Android include fixes for two critical remote code execution (RCE) vulnerabilities impacting Android systems running versions 11, 12, 12L, and 13. Users should update as soon as they can. The March 2023 Android Security Bulletin contains the details of the security vulnerabilities affecting Android devices. Security patch levels of 2023-03-05 or later address all of these issues.

Software 98

Software Risk Cybersecurity 98

The Hacker News

MARCH 8, 2023

Fortinet has released fixes to address 15 security flaws, including one critical vulnerability impacting FortiOS and FortiProxy that could enable a threat actor to take control of affected systems. The issue, tracked as CVE-2023-25610, is rated 9.3 out of 10 for severity and was internally discovered and reported by its security teams.

98

98

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Software

Security Affairs

MARCH 8, 2023

Veeam addressed a high-severity vulnerability in the Backup Service that impacts Backup & Replication software. Veeam addressed a high-severity vulnerability in the Backup Service, tracked as CVE-2023-27532 (CVSS v3 score: 7.5), that impacts all versions of Backup & Replication software versions. “Vulnerability CVE-2023-27532 in Veeam Backup & Replication component allows to obtain encrypted credentials stored in the configuration database.

Backups 98

Backups Encryption Firewall Software 98

Bleeping Computer

MARCH 8, 2023

Microsoft has released a new Windows 11 preview build with new features such as File Explorer access keys, a new VPN status indicator, and a new way to copy two-factor authentication (2FA) codes from text messages. [.

VPN 98

VPN Authentication 98

Security Affairs

MARCH 8, 2023

Fortinet addressed a critical heap buffer underflow vulnerability affecting FortiOS and FortiProxy, which can lead to arbitrary code execution. Fortinet addressed a critical buffer underwrite (‘buffer underflow’) vulnerability, tracked as CVE-2023-25610 (CVSS v3 9.3), that resides in the administrative interface in FortiOS and FortiProxy.

InfoSec 98

InfoSec Hacking Information Security 98

Heimadal Security

MARCH 8, 2023

Identity management has become an essential aspect of cybersecurity as businesses struggle to protect their sensitive data from cyber threats. To shed some light on this topic, in this article, we’ll help demystify the key differences between PIM (Privileged Identity Management), PAM (Privileged Access Management), and IAM (Identity and Access Management), explain how these terms […] The post PIM vs PAM vs IAM: What’s The Difference?

Cyber threats 98

Cyber threats Cybersecurity 98

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!