Lohrman on Security

MAY 15, 2022

Lincoln College in Illinois announced they were closing their doors as a result of COVID-19 and cyber attack disruptions. Who’s next?

Cyber Attacks 253

Cyber Attacks Ransomware 253

Acunetix

MAY 15, 2022

The lack of cybersecurity talent is nothing new. It’s a problem that all businesses have been facing for several years and it’s getting worse. There have been many proposals on how to narrow the gap, but so far all efforts have been futile. Let’s have. Read more. The post Four ways to combat the cybersecurity skills gap appeared first on Acunetix.

Cybersecurity 124

Cybersecurity 124

Security Boulevard

MAY 15, 2022

The lack of cybersecurity talent is nothing new. It’s a problem that all businesses have been facing for several years and it’s getting worse. There have been many proposals on how to narrow the gap, but so far all efforts have been futile. Let’s have. Read more. The post Four ways to combat the cybersecurity skills gap appeared first on Acunetix. The post Four ways to combat the cybersecurity skills gap appeared first on Security Boulevard.

Cybersecurity 124

Cybersecurity 124

SecureBlitz

MAY 15, 2022

In this post, I will show you 10 reasons why project management is vital to organizations. You’re missing out on chances for exponential growth and optimized efficiency if you don’t have active protocols for project management. Project management is the secret sauce of successful businesses that continuously excel and stay afloat. If you have yet. The post 10 Reasons Why Project Management Is Vital To Organizations appeared first on SecureBlitz Cybersecurity.

Cybersecurity 111

Cybersecurity Hacking 111

Speaker: Erroll Amacker

Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.

Risk

CyberSecurity Insiders

MAY 15, 2022

Eurovision Song Contest has experienced multiple numbers of cyber threats from Russian Federation and the reason is that Ukraine had fair enough of chances to win the competition through Kalush Orchestra. Killnet hacking group that is being funded by Kremlin was assigned the duty to disrupt the servers of Eurovision to block Ukraine winning all the accolades.

Cyber Attacks 109

Cyber Attacks DDOS Cyber threats Hacking 109

Bleeping Computer

MAY 15, 2022

Hackers have started to exploit a recently patched critical vulnerability, tracked as CVE-2022-30525, that affects Zyxel firewall and VPN devices for businesses. [.].

Firewall 99

Firewall VPN 99

Bleeping Computer

MAY 15, 2022

Windows admins have been expressing their dismay at Microsoft's decision to move the Quick Assist remote assistance tool to the Microsoft Store. [.].

98

98

Security Affairs

MAY 15, 2022

Ukraine Computer Emergency Response Team (CERT-UA) reported a phishing campaign conducted by Armageddon APT using GammaLoad.PS1_v2 malware. Ukraine Computer Emergency Response Team (CERT-UA) reported a phishing campaign using messages with subject “On revenge in Kherson!” and containing the “Plan Kherson.htm” attachment. The HTM-file will decode and create an archive named “Herson.rar”, which contains a file-shortcut named “Plan of approach and planting

Phishing 98

Phishing Malware Hacking Government 98

Security Boulevard

MAY 15, 2022

Lincoln College in Illinois announced they were closing their doors as a result of COVID-19 and cyber attack disruptions. Who’s next? The post College Closing Another Sad Milestone for Ransomware Impact appeared first on Security Boulevard.

Ransomware 98

Ransomware Cyber Attacks 98

Security Affairs

MAY 15, 2022

This post provides a timeline of the events related to Russia invasion of Ukraine from the cyber security perspective. Below is the timeline of the events related to the ongoing Russia invasion that occurred in the previous weeks: May 14 – The LEGION collective calls to action to attack the final of the Eurovision song contest. The Pro-Russian volunteer movement known as LEGION is calling to launch DDoS attacks against the final of the Eurovision song contest.

Hacking 98

Hacking DDOS Government Malware 98

Advertisement

Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.

Cyber threats

The Hacker News

MAY 15, 2022

The European Parliament announced a "provisional agreement" aimed at improving cybersecurity and resilience of both public and private sector entities in the European Union. The revised directive, called "NIS2" (short for network and information systems), is expected to replace the existing legislation on cybersecurity that was established in July 2016.

Cybersecurity 98

Cybersecurity 98

Security Affairs

MAY 15, 2022

Microsoft reported that the Sysrv botnet is targeting Windows and Linux servers exploiting flaws in the Spring Framework and WordPress. Microsoft Security Intelligence team Microsoft reported that a new variant of the Sysrv botnet, tracked as Sysrv-K, now includes exploits for vulnerabilities in the Spring Framework and WordPress. Threat actors use the botnet in a cryptomining campaign targeting Windows and Linux servers.

Security Intelligence 98

Security Intelligence Malware Backups Architecture 98

The Hacker News

MAY 15, 2022

A 28-year-old Ukrainian national has been sentenced to four years in prison for siphoning thousands of server login credentials and selling them on the dark web for monetary gain as part of a credential theft scheme. Glib Oleksandr Ivanov-Tolpintsev, who pleaded guilty to his offenses earlier this February, was arrested in Poland in October 2020, before being extradited to the U.S.

Hacking 98

Hacking 98

Security Affairs

MAY 15, 2022

Researchers from threat intelligence firm Cyble analyzed the Eternity Project Tor website which offers any kind of malicious code. Researchers at cybersecurity firm Cyble analyzed a Tor website named named ‘Eternity Project’ that offers for sale a broad range of malware, including stealers, miners, ransomware, and DDoS Bots. The experts discovered the marketplace during a routine investigation, they also discovered that its operators also have a Telegram channel with around 500 subscribers

Ransomware 98

Ransomware DDOS Cybercrime Malware 98

Advertisement

The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.

Cybersecurity

SecureWorld News

MAY 15, 2022

It is safe to assume that the automotive OEMs don't enjoy being regulated. And yet, regulation is a fact of life for the folks in the car business, and that's the reason every OEM needs to pay careful attention to a document titled ISO/SAE 21434 Road Vehicles – Cybersecurity Engineering (August 2021). ISO/SAE 21434 specifies the practices that safeguard against design, development, production, operation, maintenance, and decommissioning risks in the electrical and electronic systems of road vehi

Cybersecurity 98

Cybersecurity Risk Manufacturing Accountability 98

Security Affairs

MAY 15, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. If you want to also receive for free the newsletter with the international press subscribe here. The LEGION collective calls to action to attack the final of the Eurovision song contest OpRussia update: Anonymous breached other organizations Pro-Russian hacktivists target Italy government websites SonicWall urges customers to fix SMA 1000 vulnerab

Hacking 98

Hacking Ransomware Manufacturing Firewall 98

Bleeping Computer

MAY 15, 2022

A fake Pixelmon NFT site entices fans with free tokens and collectibles while infecting them with malware that steals their cryptocurrency wallets. [.].

Malware 86

Malware Passwords Cryptocurrency 86

Naked Security

MAY 15, 2022

A new point-release of Firefox. Not unusual, but the timing of this one is interesting, with Pwn2Own coming up in a few days.

83

83

Speaker: Sierre Lindgren

Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.

Scams

Kali Linux

MAY 15, 2022

It’s that time of year again, time for another Kali Linux release! Quarter #2 - Kali Linux 2022.2. This release has various impressive updates, all of which are ready for immediate download or updating. The summary of the changelog since the 2022.1 release from February 2022 is: GNOME 42 - Major release update of the popular desktop environment KDE Plasma 5.24 - Version bump with a more polished experience Multiple desktop enhancements - Disabled motherboard beep on Xfce, alternative panel

Wireless 52

Wireless Firmware Architecture Media 52

Security Boulevard

MAY 15, 2022

The threat of ransomware is real and growing. To protect your organization, it’s essential to partner with a Managed Security Service Provider (MSSP) that can help you mitigate the risk. Because there are new ransomware variants and attacks every day, […]. The post MSSP’s Mitigation Responsibilities Against Ransomware appeared first on WeSecureApp :: Simplifying Enterprise Security!

Ransomware 52

Ransomware Risk 52

Malwarebytes

MAY 15, 2022

Threats and bluster play a key role in most online attacks: Ransomware has its ransom note; trolls threaten to ramp up the pressure; tech support scammers insist your PC needs urgent assistance. Some take it a step further, leaning in with a more direct approach, ranging from death threats to sextortion, and even kidnap claims. These tactics have been around for a very long time.

Scams 131

Scams Social Engineering Password Management Engineering 131

Security Boulevard

MAY 15, 2022

The FBI searched emails, texts and other electronic communications of 3.4 million U.S. residents without a warrant, Apple, Google, and Microsoft have announced they will support a new passwordless sign-in standard created by the FIDO Alliance and the World Wide Web Consortium, and details about how some websites are keylogging your data as you type […].

Surveillance 52

Surveillance Data privacy Passwords InfoSec 52

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

Security Boulevard

MAY 15, 2022

Last week, Google held its annual developer conference, Google I/O , and discussed new products and services that they plan to rollout. These range from new features on YouTube, Google Meet, advances in AI technology used in Google Maps, and the world’s largest, publicly available machine learning hub. For a full rundown of the improvements and features announced, check out Google’s recap of the keynote address delivered by Google and Alphabet CEO Sundar Pichai at the event.

Technology 52

Technology 52

Security Boulevard

MAY 15, 2022

Our thanks to Security BSides Sofia for publishing their Presenter’s Security BSides Sofia 2022 superb security videos on the organization’s’ YouTube channel. Permalink. The post Security BSides Sofia 2022 – Svetlomir Balevski’s ‘Application Security Into DevOps’ appeared first on Security Boulevard.

Education 52

Education InfoSec Cybersecurity 52

Security Boulevard

MAY 15, 2022

Hello, and welcome to the latest edition of the LogicHub Monthly Update! Each month we’ll be covering a broad view of this past month’s threats, a series of informative use cases seen this month by our teams, and a series of recommended articles, podcasts, and other useful resources. Watch the LogicHub Monthly Security RoundUp - May 2022. Security Safari: New Threats in the Wild.

Social Engineering 52

Social Engineering Ransomware Internet Internet 52

Security Boulevard

MAY 15, 2022

Our thanks to Security BSides Sofia for publishing their Presenter’s Security BSides Sofia 2022 superb security videos on the organization’s’ YouTube channel. Permalink. The post Security BSides Sofia 2022 – Stoyan Kolev’s, Lyubomir Vanyov’s And Vladimir Dimitrov’s ‘Vulnerabiltiy Full Disclosure’ appeared first on Security Boulevard.

Education 52

Education InfoSec Cybersecurity 52

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Software

Security Boulevard

MAY 15, 2022

Before digging into this post, I need to set some context. Friday, May 13, 2022 was my last day at my, now, former employer of nearly seven years. I’m not mentioning the company name1 because this post is not about them2. This post is about burnout and the importance of continuous monitoring and maintenance of. Continue reading ?. The post Escaping Groundhog Day appeared first on Security Boulevard.

52

52

Security Boulevard

MAY 15, 2022

via the textual amusements of Thomas Gx , along with the Illustration talents of Etienne Issartia and superb translation skillset of Mark Nightingale - the creators of CommitStrip ! Permalink. The post CommitStrip ‘Your Smart Home’s Achilles’ Heel’ appeared first on Security Boulevard.

52

52