Schneier on Security

JULY 22, 2021

From SentinelLabs , a critical vulnerability in HP printer drivers: Researchers have released technical details on a high-severity privilege-escalation flaw in HP printer drivers (also used by Samsung and Xerox), which impacts hundreds of millions of Windows machines. If exploited, cyberattackers could bypass security products; install programs; view, change, encrypt or delete data; or create new accounts with more extensive user rights.

Encryption 301

Encryption Accountability 301

Tech Republic Security

JULY 22, 2021

An attacker who exploits this flaw could use system privileges to install programs, view or delete data, and create accounts with full user rights.

Accountability 217

Accountability 217

Malwarebytes

JULY 22, 2021

A very serious security flaw in immensely popular printer drivers has been disclosed and it could affect many millions of Windows systems. The printer driver was issued by HP, but it’s also in use by Samsung and Xerox. All the affected printers are laser printers. The most surprising about this find is probably that the vulnerability apparently has existed since 2005 and was only found 16 years later.

Software 145

Software Firmware Manufacturing Engineering 145

Tech Republic Security

JULY 22, 2021

Knowing that many organizations fail to patch known flaws, attackers continually scan for security holes that they can exploit, says Barracuda.

218

218

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

CyberSecurity Insiders

JULY 22, 2021

South Africa-based Transport Company named Transnet is reported to have been hit by a cyber attack that has caused serious disruptions to its operations that can last for a week. In an email update released by the Cape Town Harbour Carrier Association to the members, it was clearly mentioned the port operations have been seized and the movement of cargo has been barred until the disrupted systems are restored.

Cyber Attacks 144

Cyber Attacks Engineering Ransomware Cybersecurity 144

Tech Republic Security

JULY 22, 2021

A company spokesperson confirmed that the key works but won't reveal the source, saying only that it came from a trusted third party.

Ransomware 172

Ransomware 172

Tech Republic Security

JULY 22, 2021

Paralysis is the worst possible state for businesses to find themselves in when faced with the threat, says Claroty's CPO.

Risk 175

Risk Ransomware 175

Security Boulevard

JULY 22, 2021

Rapid7, Inc. this week announced it has acquired IntSights Cyber Intelligence Ltd. for $335 million as part of an effort to provide more visibility into potential external threats as they unfold on the dark web. Richard Perkett, vice president of detection and response for Rapid7, said IntSights expands Rapid7’s detection capabilities portfolio to include automatic.

Security Awareness 139

Security Awareness Cybersecurity Network Security 139

Tech Republic Security

JULY 22, 2021

A dangerous vulnerability was found in the Linux systemd stack. Find out what it is and how to upgrade your Linux distributions.

155

155

Bleeping Computer

JULY 22, 2021

Akamai is investigating an ongoing outage affecting many major websites and online services including Steam, the PlayStation Network, Newegg, Cloudflare, AWS, Amazon, Google, and Salesforce. [.].

DNS 132

DNS 132

Advertiser: Revenera

In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.

Risk

Tech Republic Security

JULY 22, 2021

Kaspersky's analysis found that cybercriminals are getting extra creative with the latest campaigns designed to harvest credentials.

149

149

CyberSecurity Insiders

JULY 22, 2021

Kaseya Software Company has released an update that all its software users who have fallen prey to the ransomware attack will receive a free decryptor to unlock their database files on a respective note. Thus, all those companies who are in negotiations with the ransomware spreading gang can pause their activity as they will get a decryption key all for free.

Ransomware 131

Ransomware Cryptocurrency Software Government 131

Threatpost

JULY 22, 2021

Update now: The ream of bugs includes some remotely exploitable code execution flaws. Still to come: a fix for what makes iPhones easy prey for Pegasus spyware.

Spyware 138

Spyware Mobile 138

Security Boulevard

JULY 22, 2021

Historically, only large, well-established banks had control over the majority of consumer and corporate finances, making it highly challenging for smaller financial services providers to break into the market. Open banking has transformed the way organizations and consumers manage their money, as users can now conveniently access their finances from the comfort of their homes.

Banking 130

Banking Financial Services Marketing Risk 130

Advertisement

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.

Cybersecurity

Bleeping Computer

JULY 22, 2021

Atlassian is prompting its enterprise customers to patch a critical vulnerability in multiple versions of its Jira Data Center and Jira Service Management Data Center products. The vulnerability tracked as CVE-2020-36239 can give remote attackers code execution abilities, due to a missing authentication flaw in Ehcache RMI. [.].

Authentication 130

Authentication 130

The State of Security

JULY 22, 2021

Police in Spain have arrested a British man in connection with what many consider the worst hack in Twitter's history. Read more in my article on the Tripwire State of Security blog.

Hacking 128

Hacking Cryptocurrency Scams Accountability 128

Security Boulevard

JULY 22, 2021

CIOs and CISOs are under constant barrage and pressure to deliver more with fewer resources and less capital, all while continuing to meet any number of regulatory requirements. . The post Top 20 Problems FIM Can Help Solve Part 1 appeared first on Security Boulevard.

CISO 127

CISO 127

Security Affairs

JULY 22, 2021

U.S. CISA released an alert today about several stealth malware samples that were found on compromised Pulse Secure devices. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published a security alert related to the discovery of 13 malware samples on compromised Pulse Secure devices, many of which were undetected by antivirus products.

Malware 126

Malware Antivirus Passwords Firewall 126

Advertisement

The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.

Healthcare

Bleeping Computer

JULY 22, 2021

Kaseya received a universal decryptor that allows victims of the July 2nd REvil ransomware attack to recover their files for free. [.].

Ransomware 145

Ransomware 145

Security Affairs

JULY 22, 2021

Oracle released its Critical Patch Update for July 2021 , it fixes hundreds of flaws, including Critical Remotely Exploitable vulnerabilities in Weblogic Server. Oracle this week released its quarterly Critical Patch Update for July 2021 that contains 342 new security patches for multiple product families. Some of the vulnerabilities addressed by the IT giant could be remotely exploited by attackers to take control of devices.

Authentication 125

Authentication Passwords Hacking Technology 125

ImmuniWeb

JULY 22, 2021

Updated core engine and novel features of ImmuniWeb Discovery turbocharge efficiency of Attack Surface Management, Dark Web Monitoring and Third-Party Risk Management offerings.

Engineering 122

Engineering Risk 122

Security Boulevard

JULY 22, 2021

By profiling and documenting criminal TTPs network defenders can better understand criminal behavior and how specific attacks are created. The post Why Understanding Cyber Criminals Behavior and Tools is Vital appeared first on Radware Blog. The post Why Understanding Cyber Criminals Behavior and Tools is Vital appeared first on Security Boulevard.

Cybercrime 123

Cybercrime 123

Advertisement

The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported. Ransomware attackers can potentially paralyze not just private sector organizations but also healthcare facilities, schools, and entire police departments.

Identity Theft

Security Affairs

JULY 22, 2021

Multiple major websites, including Steam, AWS, Amazon, Google, and Salesforce, went offline due to Akamai DNS global outage. A software configuration update triggered a bug in the Akamai DNS which took offline major websites, including Steam, the PlayStation Network, AWS, Google, and Salesforce. “A software configuration update triggered a bug in the DNS (domain name system) system, the system that directs browsers to websites,” reads a statement published by Akamai. “This caus

Software 120

Software DNS DDOS Technology 120

Heimadal Security

JULY 22, 2021

Researchers from ReversingLabs have released a report detailing a threat referred to as NPM malware they found in NPM packages that targets credentials by means of the Google Chrome Recovery Tool. How Does the NPM Malware Operate? The NPM Malware file name is Win32.Infostealer.Heuristics, but it originally was named “a.exe” and could be found in […].

Passwords 115

Passwords Malware Cybersecurity 115

The Hacker News

JULY 22, 2021

Nearly three weeks after Florida-based software vendor Kaseya was hit by a widespread supply-chain ransomware attack, the company on Thursday said it obtained a universal decryptor to unlock systems and help customers recover their data.

Ransomware 110

Ransomware Software 110

Security Boulevard

JULY 22, 2021

This article will show you how to use the LogRhythm API. It is important to understand what the API can do and how you can use it. This will help you gain better value from your SIEM deployment. A Practical Use…. The post 6 Steps to Using the LogRhythm API appeared first on LogRhythm. The post 6 Steps to Using the LogRhythm API appeared first on Security Boulevard.

Network Security 109

Network Security 109

Speaker: Blackberry, OSS Consultants, & Revenera

Software is complex, which makes threats to the software supply chain more real every day. 64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. In the U.S. alone, cyber losses totaled $10.3 billion in 2022. All of these stats beg the question, “Do you know what’s in your software?

Cybersecurity

The Hacker News

JULY 22, 2021

An advanced persistent threat (APT) actor has been tracked in a new campaign deploying Android malware via the Syrian e-Government Web Portal, indicating an upgraded arsenal designed to compromise victims.

Government 109

Government Malware 109

Security Boulevard

JULY 22, 2021

“Everything in moderation,” the saying goes. But it may come as a surprise that this expression even seems to apply to many of the hacker forums littered across the dark web. On the surface, these forums may appear to be a lawless landscape, but there are some activities even hacker forums ban because they tend. The post How (and Why) Hacker Forums Self-Moderate appeared first on Security Boulevard.

Security Awareness 109

Security Awareness Ransomware Malware Cybersecurity 109

The Hacker News

JULY 22, 2021

Organizations today must give attention to their cybersecurity posture, including policies, procedures, and technical solutions for cybersecurity challenges. This often results in a greater burden on the IT service desk staff as end-users encounter issues related to security software, policies, and password restrictions.

Passwords 109

Passwords Software Cybersecurity 109

Security Boulevard

JULY 22, 2021

Top Highlights from Data Company Conference 2021. michelle. Thu, 07/22/2021 - 14:45. Here’s a look at key takeaways from our flagship virtual event. Jul 22, 2021. This summer, we hosted the second annual Data Company Conference, where technology leaders from some of the world’s largest companies came together virtually for a gathering of ideas and insights around responsible innovation. .

Banking 109

Banking Digital transformation Technology Engineering 109

Speaker: Erika R. Bales, Esq.

When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place. Let’s step back and focus on the idea that no matter how complicated the compliance and security regime, it should be able to be distilled down to a checklist.