Joseph Steinberg

JULY 8, 2021

Insurance 275

Insurance Cybersecurity Cyber Insurance Artificial Intelligence 275

Threatpost

JULY 5, 2021

Matt Bromiley, senior consultant with Mandiant Managed Defense, discusses the top tricks and tips for protecting enterprise environments from ransomware. InfoSec Insider Malware

Ransomware 96

Ransomware InfoSec Malware 96

The State of Security

JULY 7, 2021

It amazes me how many people confuse the importance of vulnerability scanning with penetration testing. Vulnerability scanning cannot replace the importance of penetration testing, and penetration testing, on its own, cannot secure the entire network.

Penetration Testing 85

Penetration Testing Cyber Risk Risk 85

Troy Hunt

JULY 5, 2021

Today I'm very happy to welcome the Dutch government to HIBP, marking 24 national CERTs that now have full and free access to API level domain searches.

Government 270

Government Data breaches 270

Speaker: Mike Cramer, Director of HIPAA & Data Security at The Word & Brown Companies

Now that companies are slowly allowing employees to return to work at the office, it's time to re-evaluate your company’s posture towards privacy and security. Join Mike Cramer, Director of HIPAA & Data Security at The Word & Brown Companies, for a discussion that will focus on compliance and the types of privacy and security measures your company should be aware of, as well as tips and methods for implementing these measures.

Data privacy

Krebs on Security

JULY 7, 2021

Microsoft on Tuesday issued an emergency software update to quash a security bug that’s been dubbed “ PrintNightmare ,” a critical vulnerability in all supported versions of Windows that is actively being exploited.

Backups 240

Backups Engineering Software 240

Schneier on Security

JULY 6, 2021

A vulnerability (just patched) in the random number generator used in the Kaspersky Password Manager resulted in easily guessable passwords: The password generator included in Kaspersky Password Manager had several problems.

Password Management 237

Password Management Passwords 237

Lohrman on Security

JULY 4, 2021

Guy Perelmuter offers an insightful, easy to read, helpful guide to present and future technology in business areas ranging from the future of jobs to AI and from cryptocurrencies to quantum computing.

Cryptocurrency 207

Cryptocurrency Technology 207

Krebs on Security

JULY 9, 2021

Last summer, financial institutions throughout Texas started reporting a sudden increase in attacks involving well-orchestrated teams that would show up at night, use stolen trucks and heavy chains to rip Automated Teller Machines (ATMs) out of their foundations, and make off with the cash boxes inside.

Banking 230

Banking Insurance Surveillance Risk 230

Schneier on Security

JULY 8, 2021

ArsTechnica has a good story on the REvil ransomware attack of last weekend, with technical details: This weekend’s attack was carried out with almost surgical precision.

Ransomware 220

Ransomware Firewall Encryption Malware 220

The Last Watchdog

JULY 7, 2021

The video game industry saw massive growth in 2020; nothing like a global pandemic to drive people to spend more time than ever gaming. Related: Credential stuffers exploit Covid 19 pandemic. Now comes a report from Akamai detailing the extent to which cyber criminals preyed on this development. The video game industry withstood nearly 11 billion credential stuffing attacks in 2020, a 224 percent spike over 2019.

Accountability 203

Accountability Authentication Passwords Marketing 203

Troy Hunt

JULY 6, 2021

A little over a decade ago now, I awoke from a long haul flight to find an email I never expected to see: my first Microsoft MVP award. I earned the award by doing something many people couldn't understand, namely devoting a bunch of my time to creating things for the community.

Media 198

Media Technology 198

Krebs on Security

JULY 8, 2021

Last week cybercriminals deployed ransomware to 1,500 organizations that provide IT security and technical support to many other companies. The attackers exploited a vulnerability in software from Kaseya , a Miami-based company whose products help system administrators manage large networks remotely.

Software 201

Software System Administration Authentication Data breaches 201

Javvad Malik

JULY 7, 2021

Logan Paul and his brother Jake Paul are what you could call social media celebrities. They amassed over 20 million followers across YouTube, Vine, Instagram, and others over the years through different types of content, sketches, and pranks.

CISO 191

CISO Phishing Media Security Awareness 191

Schneier on Security

JULY 5, 2021

Detailed story of Volodymyr Kvashuk, a Microsoft insider who noticed a bug in the company’s internal systems that allowed him to create unlimited Xbox gift cards, and stole $10.1 million before he was caught

183

183

Troy Hunt

JULY 3, 2021

This week is a bit of everything again, although the main difference this time was an update on the COVID situation we're facing in Australia.

IoT 178

IoT 178

Adam Shostack

JULY 7, 2021

The latest in the World’s Shortest Threat Modeling Videos: podcasts threat modeling videos

130

130

Security Boulevard

JULY 9, 2021

Do you deploy security products to protect your organization against data breaches as part of your infrastructure cybersecurity strategy? If so, it’s important to ensure there are no critical gaps in your security stack.

Antivirus 113

Antivirus Data breaches Software Cybersecurity 113

Tech Republic Security

JULY 7, 2021

A new phishing campaign claims to offer a security update for Kaseya's VSA software but actually tries to install malware, says Malwarebytes

Phishing 164

Phishing Software Malware Ransomware 164

CyberSecurity Insiders

JULY 8, 2021

China is once again in the news for misusing the technology of Artificial Intelligence. Earlier, it was using AI tech to analyze loads of videos that were grabbed from the CCTV cameras installed across some of its major cities.

Cyber Attacks 114

Cyber Attacks Wireless Artificial Intelligence DDOS 114

CSO Magazine

JULY 5, 2021

Neurodiversity within cybersecurity is progressively becoming a topic of regular, meaningful discussion across the sector.

CISO 111

CISO Cybersecurity 111

Security Boulevard

JULY 7, 2021

Cyberattacks on hospitals are rising, and patients are worried. Is my personal data at risk? Could ransomware or hackers effectively shut down the ER near me?

Ransomware 114

Ransomware Risk IoT Cybersecurity 114

Tech Republic Security

JULY 9, 2021

Cybersecurity training company KnowBe4 reports that the number of employees likely to fall for phishing emails drops dramatically with proper instruction on how to recognize an attack

Scams 160

Scams Phishing Cybersecurity 160

CyberSecurity Insiders

JULY 6, 2021

This blog was written by an independent guest blogger. Lethal unauthorized code injections like XXS (cross site scripting) attacks are some of the most dynamic cyber-attacks.

Data breaches 113

Data breaches Cyber Attacks Cybersecurity Cyber threats 113

The Hacker News

JULY 9, 2021

While it's a norm for phishing campaigns that distribute weaponized Microsoft Office documents to prompt victims to enable macros in order to trigger the infection chain directly, new findings indicate attackers are using non-malicious documents to disable security warnings prior to executing macro code to infect victims' computers.

Phishing 105

Phishing Malware 105

Security Boulevard

JULY 8, 2021

Chinese genetics company BGI accused of misusing DNA harvested from prenatal testing. The post China ‘Eugenics’ Claim as BGI Hoards Prenatal Test DNA Data appeared first on Security Boulevard.

Social Engineering 107

Social Engineering Engineering Security Awareness Risk 107

Tech Republic Security

JULY 7, 2021

An analysis by Sophos suggests that the latest attack is similar to one that Kaseya endured in 2018

Software 162

Software Ransomware 162

CyberSecurity Insiders

JULY 6, 2021

Zimperium, a globally recognized mobile security firm has made it official that it is going to acquire application security company whiteCryption for an undisclosed amount. The details of the deal are kept under wraps.

Mobile 112

Mobile Cyber Risk IoT Technology 112

The Hacker News

JULY 3, 2021

Google intervened to remove nine Android apps downloaded more than 5.8 million times from the company's Play Store after the apps were caught furtively stealing users' Facebook login credentials. The applications were fully functional, which was supposed to weaken the vigilance of potential victims.

Passwords 108

Passwords 108

Security Boulevard

JULY 5, 2021

During COVID-19, threat actors used fear of the virus and hope of a vaccine to trick unwitting victims into downloading malware or giving up their credentials. It was a master class in social engineering, one that put an organization’s security posture at risk.

Social Engineering 108

Social Engineering Engineering Cybersecurity Risk 108

Tech Republic Security

JULY 9, 2021

Ransomware attacks are rampant, with thousands taking place every single day. Learn how a zero-trust security model can protect your organization

Ransomware 155

Ransomware 155

CyberSecurity Insiders

JULY 3, 2021

Identity security is the greatest weakness in enterprise security. As any infosec manager will tell you, no matter how secure your infrastructure, anyone with the right credentials can walk through the front door. Identity and user authentication continue to be a concern for IT managers.

Authentication 114

Authentication Identity Theft Technology InfoSec 114

CSO Magazine

JULY 5, 2021

Ransomware evolved from a menial cybercrime issue to a crisis that threatens national security. Incidents such as the Colonial Pipeline attack show that this type of criminal activity can impact not just specific organizations that lack good security practices, but every citizen.

Healthcare 106

Healthcare Cybercrime Ransomware 106

Security Boulevard

JULY 9, 2021

This post was written by the following Avast researchers: Petr Somol, Avast Director AI Research. Tomáš Pevný, Avast Principal AI Scientist. Viliam Lisý, Avast Principal AI Scientist. Branislav Bošanský, Avast Principal AI Scientist. Andrew B. Gardner, Avast VP Research & AI. Michal P?chou?ek,

Artificial Intelligence 105

Artificial Intelligence Internet Internet 105

We Live Security

JULY 8, 2021

Caught between a rock and a hard place, many ransomware victims cave in to extortion demands. Here’s what might change the calculus. The post Ransomware: To pay or not to pay? Legal or illegal? These are the questions … appeared first on WeLiveSecurity. Ransomware

Ransomware 104

Ransomware 104

CyberSecurity Insiders

JULY 5, 2021

Ransomware 111

Ransomware Cryptocurrency DDOS Software 111

Tech Republic Security

JULY 8, 2021

Ransomware attacks are getting bigger and harder to defend against. Tom Merritt lists the top five more things about ransomware you need to know

Ransomware 147

Ransomware 147