Cybersecurity News
New Attacks Slaughter All Spectre Defenses
The 3+ years computer scientists spent concocting ways to defend against these supply-chain attacks against chip architecture? It's bound for the dustbin.
Paving the way: Inspiring Women in Payments - A podcast featuring Anna-Magdalena Kohl
She started out pursuing a career in Human Resources, but soon learned it wasn’t the right fit. While pursuing her MBA, Anna-Magdalena Kohl took a chance on a work-study position at an IT security company, even though she had no formal technical training. It was a move that would define her career path. The company, in turn, took a chance on her, investing in her technical education. In this edition of our podcast, Anna-Magdalena explains that even without a technical background, many companies are very supportive and willing to provide on-the-job training opportunities – which can make all the difference in retaining women in the industry.
Hewlett Packard Enterprise Plugs Critical Bug in Edge Platform Tool
Researchers warned that unpatched versions of HPE’s Edgeline Infrastructure Manager are open to remote authentication-bypass attacks.
Name That Edge Toon: Magical May
Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.
Imperva to Buy API Security Firm CloudVector
The deal is intended to expand Imperva's API security portfolio, officials say.Buer Malware Variant Rewritten in Rust Programming Language
Researchers suggest a few reasons why operators rewrote Buer in an entirely new languageDeepfake Attacks Are About to Surge, Experts Warn
New deepfake products and services are cropping up across the Dark Web.
INTERPOL aims to deal a blow to digital piracy
The agency’s new initiative will also warn about the high cost of the free lunch – the increased risk of malware exposure
The post INTERPOL aims to deal a blow to digital piracy appeared first on WeLiveSecurity
New Buer Malware Downloader Rewritten in E-Z Rust Language
It's coming in emails disguised as DHL Support shipping notices and is apparently getting prepped for leasing on the underground.
Researchers Find Bugs Using Single-Codebase Inconsistencies
A Northeastern University research team finds code defects -- and some vulnerabilities -- by detecting when programmers used different code snippets to perform the same functions.Dark Reading Celebrates 15th Anniversary
Cybersecurity news site begins 16th year with plans to improve site, deliver more content on cyber threats and best practices.Stopping the Next SolarWinds Requires Doing Something Different
Will the SolarWinds breach finally prompt the right legislative and regulatory actions on a broader, more effective scale?The Edge Pro Tip: Protect IoT Devices
As Internet-connected devices become more prevalent in organizations, security issues increase as well.
Two-Step Verification
Two-step verification (also called two-factor authentication or 2FA) is one of the best steps you can take to secure any account. Two-step verification is when you require both a password and code sent to or generated by your mobile device. At a minimum enable two-step verification for your most important accounts such as email, financial and retirement accounts.Ransomware Task Force Publishes Framework to Fight Global Threat
An 81-page report details how ransomware has evolved, along with recommendations on how to deter attacks and disrupt its business model.New Threat Group Carrying Out Aggressive Ransomware Campaign
UNC2447 observed targeting now-patched vulnerability in SonicWall VPN.Government agencies could access personal data without consent under new bill
Privacy advocates fear Coalition’s proposed data-sharing law could allow for robodebt-style tactics
Australians’ personal information could be accessed by government agencies and researchers without their consent under proposed data-sharing legislation that critics say could pave the way for more robodebt-style tactics.
In a speech at an Australian Financial Review conference this week, the former government services minister Stuart Robert said it wasn’t his job to make government “sexy”, but make it simple.
Related: Facebook data leak: Australians urged to check and secure social media accounts
Related: Government investigates data breach revealing details of 774,000 migrants
Continue reading...PortDoor Espionage Malware Takes Aim at Russian Defense Sector
The stealthy backdoor is likely being used by Chinese APTs, researchers said.