Cybersecurity News
Meet the Middlemen Who Connect Cybercriminals With Victims
An analysis of initial access brokers explains how they break into vulnerable organizations and sell their access for up to $10,000.09 September 2020
Chart: Does Lack of Diversity Impact the Skills Shortage?
Yes, according to 21% of security pros who participated in the 2020 Black Hat Attendee Survey.
09 September 2020
Inova Suffers Third-Party Data Breach
The breach occurred as part of a ransomware attack against service provider Blackbaud.09 September 2020
Zeppelin Ransomware Returns with New Trojan on Board
The malware has popped up in a targeted campaign and a new infection routine.
09 September 2020
Google Squashes Critical Android Media Framework Bug
The September Android security bulletin addressed critical- and high-severity flaws tied to 53 CVEs overall.
09 September 2020
Our Diversity Program Isn't Working. What Are We Doing Wrong?
Assuming that you're truly stuck, here are some things to consider.
09 September 2020
Why We Need to Pay Attention to Attacks on the Smart-Built Environment
Are attacks on IoT physical security devices real or just theoretical? Why professionals need to be aware of the real-life examples in an effort to guard against future attacks on their own businesses.09 September 2020
BLURtooth vulnerability lets attackers overwrite Bluetooth authentication keys
All devices using the Bluetooth standard 4.0 through 5.0 are vulnerable. Patches not immediately available.09 September 2020
Secureworks to Buy Delve Laboratories for Vulnerability Management
Delve's automated vulnerability platform provides insight on high-risk vulnerabilities across an organization's network, endpoints, and cloud.09 September 2020
7 Cybersecurity Priorities for Government Agencies & Political Campaigns
As election season ramps up, organizations engaged in the process must strengthen security to prevent chaos and disorder from carrying the day. Here's how.
09 September 2020
Cybersecurity 101: Protect your privacy from hackers, spies, and the government
Simple steps can make the difference between losing your online accounts or maintaining what is now a precious commodity: Your privacy.09 September 2020
TeamTNT Gains Full Remote Takeover of Cloud Instances
Using a legitimate tool called Weave Scope, the cybercrime group is establishing fileless backdoors on targeted Docker and Kubernetes clusters.
09 September 2020
Critical Flaws in 3rd-Party Code Allow Takeover of Industrial Control Systems
Researchers warn of critical vulnerabilities in a third-party industrial component used by top ICS vendors like Rockwell Automation and Siemens.
09 September 2020
Multiparty Encryption Allows Companies to Solve Security-Data Conundrum
An interdisciplinary research team constructs a way for companies to share breach data without revealing specific details that could exposes businesses to legal risk.09 September 2020
Top 5 Identity-Centric Security Imperatives for Newly Minted Remote Workers
In the wake of COVID-19, today's remote workforce is here to stay, at least for the foreseeable future. And with it, an increase in identity-related security incidents.09 September 2020
Spyware Labeled ‘TikTok Pro’ Exploits Fears of US Ban
Malware can take over common device functions as well as creates a phishing page to steal Facebook credentials.
09 September 2020
Weave Scope is now being exploited in attacks against cloud environments
The legitimate cloud infrastructure monitoring tool has been added to attacker arsenals.09 September 2020
Adobe Experience Manager, InDesign, Framemaker receive fixes for critical bugs in new update
The worst issues can lead to code and browser-based JavaScript execution.09 September 2020
Next-Gen Firewalls 101: Not Just a Buzzword
In a rare twist, "next-gen" isn't just marketing-speak when it comes to next-gen firewalls, which function differently than traditional gear and may enable you to replace a variety of devices.
08 September 2020
