Joseph Steinberg

OCTOBER 6, 2022

A jury yesterday found former Uber security chief Joe Sullivan guilty of covering up a massive data breach; the conviction makes Sullivan likely to become the first executive to face prison time over the mishandling of a cyberattack. According to The New York Times , in 2016, while the Federal Trade Commission (FTC) was investigating an earlier breach of Uber’s computer systems, Sullivan learned of a subsequent compromise that affected more than 57 million Uber accounts.

CISO 258

CISO Artificial Intelligence Data breaches Cybersecurity 258

Tech Republic Security

OCTOBER 6, 2022

Targeting more than 21,000 users, the phishing email managed to bypass Microsoft Exchange email security, says Armorblox. The post Phishing attack spoofs Zoom to steal Microsoft user credentials appeared first on TechRepublic.

Phishing 183

Phishing 183

Quick Heal Antivirus

OCTOBER 6, 2022

SOVA is an Android banking Trojan with significant capabilities like credential theft, capturing keystrokes, taking screenshots, etc., The post Beware: SOVA Android Banking Trojan emerges more powerful with new capabilities appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

Banking 132

Banking Cybercrime Malware Cybersecurity 132

Tech Republic Security

OCTOBER 6, 2022

Find out the best practices for securely deploying applications and managing data in the cloud. The post Top 5 best practices for cloud security appeared first on TechRepublic.

174

174

Speaker: Erroll Amacker

Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.

Risk

CSO Magazine

OCTOBER 6, 2022

Recent ESG research reveals that 52% of security professionals believe security operations are more difficult today than they were two years ago. Why? Security operations center (SOC) teams point to issues such as: A rapidly evolving and changing threat landscape: Forty-one percent of security professionals find it difficult to understand and counteract modern threats like ransomware or supply chain attacks and then build this knowledge into a comprehensive security operations program.

Technology 130

Technology Marketing Internet Internet 130

Tech Republic Security

OCTOBER 6, 2022

Joe Sullivan schemed to hide a 2016 breach of 57 million users’ information shortly after he was hired. The post Former Uber CSO found guilty of obstruction in attempted data breach cover-up appeared first on TechRepublic.

CSO 158

CSO Data breaches 158

Tech Republic Security

OCTOBER 6, 2022

Jack Wallen shows you how you can increase the security of Bitwarden vault items with a simple configuration. The post How to add an extra layer of protection in Bitwarden vault items appeared first on TechRepublic.

Password Management 148

Password Management Passwords Software 148

CyberSecurity Insiders

OCTOBER 6, 2022

Lloyd’s London, a leading insurance trader in the world, has apparently experienced cyber attack that is currently being deeply probed. The company issued a press statement that it has hired a cyber experts team to investigate the incident and those behind the attack. Because, UK is supporting Ukraine in its war with Russia, the suspicion finger obliviously is pointing towards Kremlin.

Ransomware 125

Ransomware Cyber Attacks Insurance Encryption 125

Hacker Combat

OCTOBER 6, 2022

The Tucson Data Breach is a recent data breach that occurred in the city of Tucson, Arizona. The breach affected approximately 1.2 million individuals, who had their personal information exposed. This information included names, addresses, social security numbers, and date of birth. The Tucson Data Breach is one of the largest data breaches to ever occur in the United States.

Data breaches 124

Data breaches Identity Theft Cybersecurity 124

Heimadal Security

OCTOBER 6, 2022

RatMilad, a new Android malware that masquerades as a VPN and phone number spoofing app, has been observed to target a Middle Eastern enterprise mobile device. The mobile trojan acts as advanced spyware, receiving and executing commands to collect and exfiltrate a wide range of data from the infected mobile endpoint, according to a report published by […].

Spyware 124

Spyware Mobile VPN Malware 124

Advertisement

Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.

Cyber threats

CyberSecurity Insiders

OCTOBER 6, 2022

Whatever assets you happen to control, you want to be sure that they’re secure. Even if your system is lucky enough to be based in Sweden – the country with the lowest malware infection rates in the world – it needs vigilant protection. . The uncomfortable truth is that there are innumerable threats out there, and more companies than ever are being targeted by cybercriminals. .

Risk 115

Risk Marketing Internet Internet 115

We Live Security

OCTOBER 6, 2022

Healthy habits that are instilled and nurtured at an early age bring lifelong benefits – the same applies to good cybersecurity habits. The post The need to change cybersecurity for the next generation appeared first on WeLiveSecurity.

Cybersecurity 115

Cybersecurity 115

CyberSecurity Insiders

OCTOBER 6, 2022

Cybersecurity is one of the fastest-growing industries and one that will likely see a lot of opportunities for career progression over the years. As a result, more people than ever are now looking to work in this field. However, there are a lot of challenges when it comes to working in cybersecurity, and you’ll need to understand how to make the most of your opportunities.

Cybersecurity 112

Cybersecurity Information Security Education 112

Heimadal Security

OCTOBER 6, 2022

Exchange Online users are warned about the increasing number of password spray attacks that use Microsoft’s Exchange Basic Authentication feature. The warning from Microsoft’s Exchange team comes as the Basic Authentication (Basic Auth), “an outdated industry standard”, is gradually being deprecated for Exchange Online, beginning October 1, 2022.

Passwords 111

Passwords Authentication Cybersecurity 111

Advertisement

The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.

Cybersecurity

Security Affairs

OCTOBER 6, 2022

Researchers at cybersecurity firm Resecurity spotted a new group of hacktivists targeting financial institutions in Egypt, Resecurity, a California-based cybersecurity company protecting Fortune 500 corporations globally, has noticed a new group of hacktivists targeting financial institutions in Egypt. The bad actors go under the campaign “EG Leaks” (also known as “Egypt Leaks”), they started leaking large volumes of compromised payment data belonging to the customers of major Egyptian banks on

Banking 105

Banking Identity Theft Engineering Hacking 105

Heimadal Security

OCTOBER 6, 2022

The Australian telecommunications company Telstra reveals a data breach targeting third-party platform that holds names and email addresses of its employees. After Optus reported its own security breach this past September, this time it is Telstra`s turn to deal with the aftermath of data leakage. Critically, there was no breach of any Telstra systems, and […].

Risk 110

Risk Telecommunications Data breaches Cybersecurity 110

The Hacker News

OCTOBER 6, 2022

The Australian Federal Police (AFP) has arrested a 19-year-old teen from Sydney for allegedly attempting to leverage the data leaked following the Optus data breach late last month to extort victims.

Scams 102

Scams Data breaches Banking Accountability 102

Heimadal Security

OCTOBER 6, 2022

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) declares in a public service announcement that cyber activity has been registered to try to compromise the infrastructure of the election. The attempt is unlikely to affect the voting result or cause any major disruption in the system. The two institutions […].

Cybersecurity 110

Cybersecurity 110

Speaker: Sierre Lindgren

Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.

Scams

Dark Reading

OCTOBER 6, 2022

Russian-speaking cyberattackers boast they are behind disruption of Colorado, Kentucky, and Mississippi government websites.

Government 101

Government 101

Heimadal Security

OCTOBER 6, 2022

Over 125,000 people found out recently that their personal information is at risk, when a data breach was discovered by the authorities in the City of Tucson, Arizona. Timeline of Events As revealed in a notice sent to those affected by the attack, the threat actors had access to the network between May 17 and May […]. The post Massive Data Breach Exposes City of Tucson, Arizona appeared first on Heimdal Security Blog.

Data breaches 105

Data breaches Risk Cybersecurity 105

WIRED Threat Level

OCTOBER 6, 2022

Sixteen states collectively suffered more than 90 false reports of school shooters during three weeks in September—and many appear to be connected.

Hacking 100

Hacking 100

Heimadal Security

OCTOBER 6, 2022

BlackByte, a ransomware gang that has been active since 2021, is using a new technique to get past security system. Researchers call the technique BYOVD (Bring Your Own Vulnerable Driver) and it enables the threat actors to bypass protection systems by disabling more than 1.000 drivers simultaneously. What makes the method successful is the fact […].

Ransomware 105

Ransomware Cybersecurity 105

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

Security Affairs

OCTOBER 6, 2022

Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a recently discovered sample of a new malware called LilithBot to the Eternity group (aka EternityTeam; Eternity Project). The Eternity group operates a homonymous malware-as-a-service (MaaS), it is linked to the Russian “Jester Group,” which is active since at least January 2022.

Malware 98

Malware DDOS Ransomware Cryptocurrency 98

Heimadal Security

OCTOBER 6, 2022

The Australian Federal Police (AFP) have taken into custody a 19-year-old man in Sydney for reportedly using leaked Optus customer data for extortion. Source According to the official statement issued by AFP today, the suspect now faces two charges: one for blackmail and the second for dealing with identification information, which carry a maximum penalty […].

Cybersecurity 104

Cybersecurity 104

Security Affairs

OCTOBER 6, 2022

A bug in Linux Kernel 5.19.12 that was released at the end of September 2022 can potentially damage the displays of Intel laptops. Linux users reported the displays of their Intel laptops rapidly blinking, flickering, and showing white flashes after upgrading to Linux kernel version 5.19.12. Linux expert Ville Syrjäl pointed out that the anomalous issue may damage displays. “After looking at some logs we do end up with potentially bogus panel power sequencing delays, which may harm the LCD

Hacking 98

Hacking Information Security 98

Security Boulevard

OCTOBER 6, 2022

Cybersecurity teams know that any technology is not only vulnerable to a cyberattack but also that threat actors will eventually use that technology to launch attacks. Take the cloud, for example. Cybercriminals are using cloud services to their advantage with ransomware-as-a-service (RaaS). In a recent report from Venafi, the authors found that “In addition to.

Ransomware 98

Ransomware Technology Cybersecurity Malware 98

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Software

Security Affairs

OCTOBER 6, 2022

Cisco fixed high-severity flaws in some of its networking and communications products, including Enterprise NFV, Expressway and TelePresence. Cisco announced it has addressed high-severity vulnerabilities affecting some of its networking and communications products, including Enterprise NFV, Expressway and TelePresence. “Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series Software and Cisco TelePresence Video Communication Server (VCS) S

Software 98

Software Hacking Information Security Malware 98

Digital Guardian

OCTOBER 6, 2022

Judges looked at criteria, including innovation, performance, ease of use, functionality, value, and impact, for the award.

Cybersecurity 98

Cybersecurity 98

Security Affairs

OCTOBER 6, 2022

The City of Tucson, Arizona disclosed a data breach, the incident was discovered in May 2022 and impacted 123,500 individuals. The security breach was discovered at the end of May 2022 and concluded the investigation in September. According to the notification letter sample provided to the Maine Attorney General’s Office, over 123,500 were impacted have been impacted by the incident. “On August 4, 2022, the City learned that certain files may have been copied and taken from the City’s ne

Data breaches 98

Data breaches Identity Theft Cyber Attacks Hacking 98

Cisco Security

OCTOBER 6, 2022

Giving back is part of the ethos at Cisco. Part of how that happens is through employees volunteering as part of Cisco’s Time2Give benefit in which employees can use paid time to contribute to their communities and support the causes they’re passionate about. During the pandemic, Cisco increased this benefit from five paid volunteering days to 10 and encourages virtual volunteering, too.

Engineering 98

Engineering Marketing Accountability Software 98

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!