Schneier on Security
AUGUST 31, 2020
Seny Kamara gave an excellent keynote talk this year at the (online) CRYPTO Conference. He talked about solving real-world crypto problems for marginalized communities around the world, instead of crypto problems for governments and corporations. Well worth watching and listening to.
Tech Republic Security
AUGUST 31, 2020
Commentary: For organizations struggling to secure their IT, a host of new, developer-focused products are hitting the market. Check out this guide of the best developer-centric security products.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Security Affairs
AUGUST 31, 2020
Cisco warns that threat actors are attempting to exploit a high severity DoS flaw in its Cisco IOS XR software that runs on carrier-grade routers. Cisco warned over the weekend that attackers are trying to exploit a high severity memory exhaustion denial-of-service (DoS) vulnerability ( CVE-2020-3566 ) affecting the Cisco IOS XR Network OS that runs on carrier-grade routers.
Tech Republic Security
AUGUST 31, 2020
Two days accounted for 818 vulnerabilities, or 7.3% of the entire midyear's disclosures so far, according to a new report.
Advertisement
How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.
Security Affairs
AUGUST 31, 2020
Hackers target QNAP NAS devices running multiple firmware versions vulnerable to a remote code execution (RCE) flaw addressed by the vendor 3 years ago. Hackers are scanning the Internet for vulnerable network-attached storage (NAS) devices running multiple QNAP firmware versions vulnerable to a remote code execution (RCE) vulnerability addressed by the vendor 3 years ago.
WIRED Threat Level
AUGUST 31, 2020
The ubiquitous Shlayer adware has picked up a new trick, slipping past Cupertino's “notarization” defenses for the first time.
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
Threatpost
AUGUST 31, 2020
The notarized malware payloads were discovered in a recent MacOS adware campaign, disguised as Adobe Flash Player updates.
Dark Reading
AUGUST 31, 2020
Communication with stakeholders, extensive testing, and robust automation pays dividends for military intelligence agency, one of several presenters at GitLab's virtual Commit conference.
Trend Micro
AUGUST 31, 2020
We dive into the common life cycle of a compromised server from initial compromise to the different stages of monetization preferred by criminals.
Hacker Combat
AUGUST 31, 2020
The results of a survey published in Forbes stated that 56% of CEOs have seen that digital developments in their company have contributed to an increase in revenue. Efficient and error-free digital services have made this possible. At the customer front, the GUI offered by internet or standalone applications looks smooth only because of a series of testing and changes that have led to the release of the final product.
Advertiser: Revenera
In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.
Dark Reading
AUGUST 31, 2020
The remote code execution flaw could allow a successful attacker to fully control the Slack desktop app on a target machine.
WIRED Threat Level
AUGUST 31, 2020
Speaking at a prestigious crypto conference this month, Seny Kamara called on the field to recognize its blind spots—and fix them.
Dark Reading
AUGUST 31, 2020
In today's unparalleled era of disruption, forward-thinking CISOs can become key to company transformation -- but this means resetting relationships with the board and C-suite.
Threatpost
AUGUST 31, 2020
The RCE bug affects versions below 4.4 of the Slack desktop app.
Advertisement
Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.
Dark Reading
AUGUST 31, 2020
Chinese national Haizhou Hu was researching bio-mimics and fluid dynamics at the University of Virginia.
Threatpost
AUGUST 31, 2020
More than 2 billion breached Fortnite accounts have gone up for sale in underground forums so far in 2020 alone.
WIRED Threat Level
AUGUST 31, 2020
Seemingly small design tweaks to the search results interface may change how and where people find information online.
Dark Reading
AUGUST 31, 2020
Multiple Android apps were found spying on users and recruiting victims' devices into ad-fraud botnets.
Advertisement
The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.
Threatpost
AUGUST 31, 2020
The Iran-linked APT is targeting Israeli scholars and U.S. government employees in a credential-stealing effort.
SecureWorld News
AUGUST 31, 2020
School districts across the United States are back in session. But this fall, most of the students are sitting in virtual class. They are connecting with their teachers and learning on their laptops via Google, Skype, or Zoom. This is a challenge for parents and teachers. It is also an opportunity—for hackers and cybercriminals who are trying to make money by disrupting school district networks.
InfoWorld on Security
AUGUST 31, 2020
Everyone is moving to containers for their programs, and to manage them, almost everyone is using Kubernetes. That leads to one big problem: How do you secure Kubernetes itself?
SecureWorld News
AUGUST 31, 2020
Sudhish Ramesh was an engineer at Cisco. Like engineers at a lot of companies, he resigned and moved on. But a few months later, he gained unauthorized access to Cisco's cloud environment and caused more than $2,000,000 in damage. Ramesh just pleaded guilty to the crime in a Silicon Valley courtroom. Former Cisco engineer admits delete hundreds of virtual machines.
Advertisement
The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported. Ransomware attackers can potentially paralyze not just private sector organizations but also healthcare facilities, schools, and entire police departments.
ForAllSecure
AUGUST 31, 2020
If you’re a fan of The Game of Thrones, then here’s a little known bit of trivia. In 1970, a young science fiction writer turned chess player, George RR Martin, played with his Northwestern University team against one of the fastest computers of the time -- and the humans won. It would take another 27 years before IBM’s Deep Blue defeated world chess champion Gary Kasparov, and -- how’s this for a coincidence?
Security Affairs
AUGUST 31, 2020
Researchers from White Ops discovers several Android apps in the official Play store which installed on users’ mobile devices the Terracotta ad fraud malware. Researchers from security firm White Ops discovered several Android apps in the official Play Store that installed a hidden browser to load pages containing ad and commit ad fraud. The company shared its findings with Google which has quickly removed an undisclosed number of Android apps from the Google Play Store.
ForAllSecure
AUGUST 31, 2020
If you’re a fan of The Game of Thrones, then here’s a little known bit of trivia. In 1970, a young science fiction writer turned chess player, George RR Martin, played with his Northwestern University team against one of the fastest computers of the time -- and the humans won. It would take another 27 years before IBM’s Deep Blue defeated world chess champion Gary Kasparov, and -- how’s this for a coincidence?
Expert insights. Personalized for you.
251 
Let's personalize your content