Tech Republic Security

JULY 21, 2021

Artificial intelligence is a powerful tool, and an expert says we had better ensure it stays just that—a useful tool

Artificial Intelligence 171

Artificial Intelligence Cybersecurity 171

Krebs on Security

JULY 19, 2021

Browse the comments on virtually any story about a ransomware attack and you will almost surely encounter the view that the victim organization could have avoided paying their extortionists if only they’d had proper data backups.

Backups 236

Backups Encryption Insurance Internet 236

Daniel Miessler

JULY 23, 2021

There’s massive confusion in the security community around Security Through Obscurity. In general, most people know it’s bad, but they can’t say exactly why.

Encryption 227

Encryption Information Security 227

Schneier on Security

JULY 20, 2021

NSO Group, the Israeli cyberweapons arms manufacturer behind the Pegasus spyware — used by authoritarian regimes around the world to spy on dissidents, journalists, human rights workers, and others — was hacked. Or, at least, an enormous trove of documents was leaked to journalists.

Hacking 285

Hacking Spyware Manufacturing Software 285

Speaker: P. Andrew Sjogren, Sr. Product Marketing Manager at Very Good Security, Matt Doka, Co-Founder and CTO of Fivestars, and Steve Andrews, President & CEO of the Western Bankers Association

In this webinar, we have a great set of panelists who will take you through how Zero Data strategies can be used as part of a well-rounded compliance and security approach, and get you to market much sooner by also allowing for payment optimization. They’ll share how to grow your business faster and minimize costs for both security and compliance

Marketing

Lohrman on Security

JULY 18, 2021

Global leaders want to carve out specific areas of critical infrastructure to be protected under international agreements from cyber attacks. But where does that leave others

Government 277

Government Cyber Attacks Ransomware 277

Troy Hunt

JULY 21, 2021

When the Ashley Madison data breach occurred in 2015, it made headline news around the world. Not just infosec headlines or tech headlines, but the headlines of major consumer media the likes my mum and dad would read.

Accountability 265

Accountability DNS Data breaches InfoSec 265

Schneier on Security

JULY 23, 2021

A Catholic priest was outed through commercially available surveillance data.

Data collection 265

Data collection Surveillance Marketing 265

Daniel Miessler

JULY 21, 2021

There’s a paradox in information security where the community wants two things at once: High quality research and talks, and. Unbiased research and talks. I’ve personally been one of these affiliated speakers countless times.

Marketing 276

Marketing Mobile Information Security 276

Troy Hunt

JULY 23, 2021

This week, by popular demand, it's Charlotte! Oh - and Scott. People had been asking for Charlotte for a while, so we finally decided to do a weekly update together on how she's been transitioning from Mac to PC.

IoT 206

IoT 206

Krebs on Security

JULY 20, 2021

Peter Levashov, appearing via Zoom at his sentencing hearing today.

Antivirus 193

Antivirus Identity Theft Cybercrime Scams 193

Speaker: Mike Cramer, Director of HIPAA & Data Security at The Word & Brown Companies

Now that companies are slowly allowing employees to return to work at the office, it's time to re-evaluate your company’s posture towards privacy and security. Join Mike Cramer, Director of HIPAA & Data Security at The Word & Brown Companies, for a discussion that will focus on compliance and the types of privacy and security measures your company should be aware of, as well as tips and methods for implementing these measures.

Data privacy

Schneier on Security

JULY 22, 2021

From SentinelLabs , a critical vulnerability in HP printer drivers: Researchers have released technical details on a high-severity privilege-escalation flaw in HP printer drivers (also used by Samsung and Xerox), which impacts hundreds of millions of Windows machines.

Encryption 251

Encryption Accountability 251

The Last Watchdog

JULY 21, 2021

Most of us, by now, take electronic signatures for granted. Related: Why PKI will endure as the Internet’s secure core. Popular services, like DocuSign and Adobe Sign, have established themselves as convenient, familiar tools to conduct daily commerce, exclusively online. Yet electronic signatures do have their security limitations.

Computers and Electronics 167

Computers and Electronics Digital transformation Authentication Encryption 167

Tech Republic Security

JULY 23, 2021

Commentary: DuckDuckGo is small by Google's standards, but the company is proving it's very possible to make a lot of money with just a bit more privacy

171

171

The Hacker News

JULY 23, 2021

A malware known for targeting macOS operating system has been updated once again to add more features to its toolset that allows it to amass and exfiltrate sensitive data stored in a variety of apps, including apps such as Google Chrome and Telegram, as part of further "refinements in its tactics."

Software 114

Software Malware 114

Schneier on Security

JULY 19, 2021

Citizen Lab has identified yet another Israeli company that sells spyware to governments around the world: Candiru. From the report : Summary: Candiru is a secretive Israel-based company that sells spyware exclusively to governments.

Manufacturing 249

Manufacturing Spyware Internet Internet 249

Security Boulevard

JULY 23, 2021

Cyber criminals are taking advantage of the global crisis coronavirus pandemic (COVID-19) to attempt cyber scams! The Wave of Coronavirus Cyber Scams While the world is busy fighting with the coronavirus pandemic (COVID-19), cyber attackers are misusing this global crisis for their malicious use.

Scams 114

Scams Cyber Attacks 114

Tech Republic Security

JULY 22, 2021

Knowing that many organizations fail to patch known flaws, attackers continually scan for security holes that they can exploit, says Barracuda

171

171

CyberSecurity Insiders

JULY 22, 2021

South Africa-based Transport Company named Transnet is reported to have been hit by a cyber attack that has caused serious disruptions to its operations that can last for a week.

Cyber Attacks 114

Cyber Attacks Engineering Ransomware Cybersecurity 114

eSecurity Planet

JULY 23, 2021

A pair of vulnerabilities in the Linux kernel disclosed this week expose major Linux operating systems that could let a hacker either gain root privileges on a compromised host or shut down the entire OS altogether.

CISO 113

CISO Architecture Big data Accountability 113

Security Boulevard

JULY 21, 2021

With digital business initiatives accelerating across nearly every industry, Gartner projects worldwide IT spending to reach a whopping $4.1 trillion by the end of the year.

Digital transformation 114

Digital transformation CISO Security Awareness Risk 114

Tech Republic Security

JULY 21, 2021

About one-quarter of respondents do not incorporate any of the listed measures to protect these devices and many feel as though consumers are not responsible for smart and IoT device security

IoT 170

IoT Cybersecurity 170

CyberSecurity Insiders

JULY 22, 2021

Chine Foreign Ministry has issued a public statement condemning the distribution and usage of Pegasus Spyware surveillance software by various countries.

Surveillance 114

Surveillance Spyware Software Banking 114

eSecurity Planet

JULY 22, 2021

When millions of people around the world were sent home to work at the onset of the global COVD-19 pandemic, they left behind not only empty offices but also a host of Internet of Things (IoT) devices - from smartwatches to networked printers - that were still connected to corporate networks and cranking away.

IoT 113

IoT Risk Architecture Manufacturing 113

The Hacker News

JULY 20, 2021

Microsoft's Windows 10 and the upcoming Windows 11 versions have been found vulnerable to a new local privilege escalation vulnerability that permits users with low-level permissions access Windows system files, in turn, enabling them to unmask the operating system installation password and even decrypt private keys.

Passwords 114

Passwords 114

Tech Republic Security

JULY 20, 2021

A new report finds that 74% of companies have been the victim of phishing in the last year. Staff shortages, a lack of security training and an increase in mobile device usage for work are factors

Mobile 168

Mobile Phishing 168

CyberSecurity Insiders

JULY 21, 2021

By: Matt Lindley, COO and CISO at NINJIO. The ultimate goal of any effective cybersecurity platform is to make digital safety and awareness second nature to employees.

Social Engineering 114

Social Engineering Password Management Passwords Phishing 114

We Live Security

JULY 20, 2021

On iOS we have seen link shortener services pushing spam calendar files to victims’ devices. The post Some URL shortener services distribute Android malware, including banking or SMS trojans appeared first on WeLiveSecurity. Mobile Security Uncategorized

Banking 114

Banking Malware Mobile 114

The Hacker News

JULY 20, 2021

Cybersecurity researchers on Tuesday lifted the lid on a previously undocumented malware strain dubbed "MosaicLoader" that singles out individuals searching for cracked software as part of a global campaign.

Software 114

Software Cybersecurity Malware 114

Tech Republic Security

JULY 20, 2021

iPhones have been compromised by the NSO Group's Pegasus spyware. Should you be worried? That depends on who you ask

Spyware 167

Spyware Hacking 167

CyberSecurity Insiders

JULY 21, 2021

Organizations have expedited use of and reliance on public cloud services to run their businesses in ways that would have been hard to anticipate, even a few years ago.

Cybercrime 114

Cybercrime Malware Ransomware Cybersecurity 114

Security Boulevard

JULY 19, 2021

In January, we published the Ransomware Pandemic, a report discussing the ever-evolving threat of ransomware and the growing devastation disseminated by these malicious malware strains.

Ransomware 114

Ransomware Malware Security Awareness Cybersecurity 114

The Hacker News

JULY 19, 2021

According to Keeper Security's Workplace Password Malpractice Report, many remote workers aren't following best practices for password security. Password security was a problem even before the advent of widespread remote work. So, what happened post-pandemic?

Passwords 114

Passwords 114

Security Affairs

JULY 23, 2021

The software provider Kaseya announced to have obtained a universal decryptor for the REvil ransomware.

Small Business 112

Small Business Ransomware Authentication Encryption 112

CyberSecurity Insiders

JULY 19, 2021

Author: Dave Armlin, VP Customer Success, ChaosSearch. Creating an effective threat hunting program is among the top priorities of security leaders looking to become more proactive and build active defenses.

Architecture 114

Architecture Data breaches Malware Risk 114

Security Boulevard

JULY 20, 2021

DevSecOps is the expansion of DevOps that includes security professionals as well. The idea is for everyone to be looking at the code together, rather than in silos. This will produce the most robust and resilient software with the least amount of time and cost.

Software 114

Software 114