Cybersecurity News


The TLS 1.2 Deadline is Looming, Do You Have Your Act Together?

The TLS 1.2 Deadline is Looming, Do You Have Your Act Together? Sectors such as Education (47%), Energy (40%), and Public Administration (37%) have struggled to implement TLS 1.2 protocols
15 July 2020

Stay on the Cutting Edge of Mobile Security

Here are some of the mobile-focused Briefings, Trainings, and Arsenal tools that will be explored at Black Hat USA.
15 July 2020

Details of 142 million MGM hotel guests selling for US$2,900

It appears that the July 2019 breach at MGM Resorts affected far more people than initially thought

The post Details of 142 million MGM hotel guests selling for US$2,900 appeared first on WeLiveSecurity

15 July 2020

Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko

ESET malware researcher Lukas Stefanko gives us a peek behind the scenes of his analysis of CryCryptor ransomware and puts the threat into a broader context

The post Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko appeared first on WeLiveSecurity

15 July 2020

DevSecOps Requires a Different Approach to Security

Breaking applications into microservices means more difficulty in gaining good visibility into runtime security and performance issues, says startup Traceable.
14 July 2020

‘Wormable’ Flaw Leads July Microsoft Patches

Microsoft today released updates to plug a whopping 123 security holes in Windows and related software, including fixes for a critical, "wormable" flaw in Windows Server versions that Microsoft says is likely to be exploited soon. While this particular weakness mainly affects enterprises, July's care package from Redmond has a little something for everyone. So if you're a Windows (ab)user, it's time once again to back up and patch up (preferably in that order).
14 July 2020

Microsoft Patches Wormable RCE Flaw in Windows DNS Servers

Patch Tuesday security updates address a critical vulnerability in Windows DNS Servers, which researchers believe is likely to be exploited.
14 July 2020

Microsoft Tackles 123 Fixes for July Patch Tuesday

Microsoft Tackles 123 Fixes for July Patch Tuesday Eighteen critical bugs, impacting Windows Server, Office and Outlook, were fixed as part of the patch roundup.
14 July 2020

Chrome 84 released with support for blocking notification popups on spammy sites

Other new features that shipped with Chrome 84 include a new animations engine and a one-tap system for importing SMS passcodes into Chrome web forms.
14 July 2020

Critical DNS Bug Opens Windows Servers to Infrastructure Hijacking

Critical DNS Bug Opens Windows Servers to Infrastructure Hijacking Microsoft gives the ‘wormable’ flaw a security rating of 10 – the most severe warning possible.
14 July 2020

'Make Your Bed' and Other Life Lessons for Security

Follow this advice from a famous military commanders' commencement speech and watch your infosec team soar.
14 July 2020

Microsoft July 2020 Patch Tuesday fixes 123 vulnerabilities

This month's patches fix a major wormable bug in the Windows Server DNS component.
14 July 2020

SigRed: A 17-year-old 'wormable' vulnerability for hijacking Microsoft Windows Server

The vulnerability, fixed in Microsoft's Patch Tuesday, has been awarded a severity rating of 10.0.
14 July 2020

Adobe Discloses Critical Code-Execution Bugs in July Update

Adobe Discloses Critical Code-Execution Bugs in July Update The software giant released patches for four critical vulnerabilities and five different platforms.
14 July 2020

Women in Payments: Q&A with Lisa Conroy


Though she didn’t initially set out to prevent crime, when Lisa Conroy was first involved in data security breaches at her company, she became hooked. In this month’s blog series, Conroy explains how she discovered her true calling by accident.

14 July 2020

Google Cloud Unveils 'Confidential VMs' to Protect Data in Use

Confidential Virtual Machines, now in beta, will let Google Cloud customers keep data encrypted while it's in use.
14 July 2020

DMARC Adoption Spikes, Higher Ed Remains Behind

DMARC Adoption Spikes, Higher Ed Remains Behind As colleges and universities prepare for the fall semester, email protections against surging threats like BEC and phishing are lagging.
14 July 2020

Critical Vulnerability Hits SAP Enterprise Applications

RECON could allow an unauthenticated attacker to take control of SAP enterprise applications through the web interface.
14 July 2020

Crypto-Primer: Encryption Basics Every Security Pro Should Know

With so many choices for encrypting data and communication, it's important to know the pros and cons of different techniques.
14 July 2020

New Mirai Variant Surfaces With Exploits for 9 Vulnerabilities Products

Impacted products include routers, IP cameras, DVRs, and smart TVs.
14 July 2020