Information Security Wire

July 24, 2017

Sweden leaked every car owners' details last year, then tried to hush it up

July 24, 2017 03:49 AM - ChannelFlash.today -- The Register - Another day, another botched government contract

In a slowly-unfolding scandal in Sweden, it's emerged that the country's transport...

July 23, 2017

Open Source Flaw 'Devil's Ivy' Puts Millions of IoT Devices at Risk

July 23, 2017 11:26 PM - LinuxInsider -- Millions of IoT devices are vulnerable to cybersecurity attacks due to a vulnerability initially discovered in remote security cameras. Senrio...

Hacker made off with over 5.5 million Social Security Numbers across 10 states

July 23, 2017 11:14 PM - Infosec -- CSO Online - When a Kansas Department of Commerce data system was breached back in March, a hacker accessed more than 5,561,803 Social Security...

The lady (or man) vanishes: The thorny issue of GDPR coding

July 23, 2017 11:05 PM - ChannelFlash.today -- The Register - The Devil is in the enhanced data model

The General Data Protection Regulation (GDPR) is now less than a year away, coming into...

That massive DDoS attack on FCC was so powerful, the watchdog made no notes about it

July 23, 2017 10:59 PM - ChannelFlash.today -- The Register - Did someone DoS their pens, too?

US broadband watchdog the FCC has declined to spare any more details on the cyber-assault that...

Hackers are targeting hotel Wi-Fi with particularly evil malware

July 23, 2017 08:48 PM - BGR -- Just because your hotel offers complimentary Wi-Fi, it doesn't mean you have to take it. Hackers may be lurking, looking to compromise your computer,...

Three Inconvenient Truths about Cybersecurity

July 23, 2017 02:12 AM - ChannelFlash.today -- ChannelBuzz.ca - If one of your clients gets hit by the next ransomware attack,, that will reflect on you as much as on the client, unless you...

Dummies Book Takes a Crack at the IT/OT Conflict

July 23, 2017 01:18 AM - Design News -- Not surprisingly, a book about industrial cybersecurity becomes a deep dive into the endless conflict between information technology (IT) and...

Google cracks down on phishing

July 23, 2017 12:52 AM - CNN - Top Stories -- Google wants to prevent another massive phishing attack like the one that targeted Google Docs users earlier this year.

Kansas System Hacked, Social Security Numbers of Millions Accessed Spanning 10 States

July 23, 2017 12:00 AM - CircleID -- Hackers breached a Kansas Department of Commerce data system used across multiple states and gained access to more than 5.5 million Social Security...

July 22, 2017

A Russian man involved in the development and maintenance of Citadel was sentenced to five years in prison

July 22, 2017 10:39 PM - Infosec -- Security Affairs - The Russian hacker Mark Vartanyan was sentenced to five years in prison for his involvement in the development and maintenance...

Stantinko botnet was undetected for at least 5 years while infecting half a million systems

July 22, 2017 10:07 PM - Infosec -- Security Affairs - A huge botnet dubbed Stantinko was undetected for at least 5 years, the disconcerting discovery was made by researchers...

Alabama Man Indicted in Alleged $19 Million Stolen Identity Refund Fraud Scheme

July 22, 2017 10:02 PM - Infosec -- Office of Inadequate Security - A federal grand jury sitting in Montgomery, Alabama returned an indictment, which was unsealed, charging a Phenix...

It's ALL YOU at Oktane17

July 22, 2017 09:57 PM - Infosec -- Okta Blog - Our fifth annual customer conference Oktane17 is just a month away and I'm looking forward to seeing you all there. Oktane has...

The CISO's Guide to Spear Phishing Defense

July 22, 2017 09:28 PM - Infosec -- PhishLabs - https://info.phishlabs.com/the-cisos-guide-to-spear-phishing-defense-1

Microsoft Rolls Out AI-based Security Risk Detection Tool

July 22, 2017 09:23 PM - Infosec -- Dark Reading - Microsoft Security Risk Detection leverages artificial intelligence to root out bugs in software before it's released.

July 21, 2017

Oracle's monster update emphasizes flaws in critical business applications

July 21, 2017 05:52 PM - Infosec -- CSO Online - Recent global malware outbreaks WannaCry and NotPetya exposed how much enterprises struggle with patching. Staying current with...

Help with your IoT Security

July 21, 2017 05:33 PM - Circuit Cellar -- IoT security vulnerabilities can put users at risk and damage companies' reputations, and these risks increase as more devices are connected...

AI Fight Club Could Help Save Us from a Future of Super-Smart Cyberattacks

July 21, 2017 05:31 PM - MIT Technology Review -- The best defense against malicious AI is AI.

Employees regarded as an organisation's greatest asset but also one of the biggest data security risks

July 21, 2017 05:21 PM - GlobeNewsWire: Manufacturing --

Sophos Named a Visionary for Enterprise Network Firewalls by Gartner in the 2017 Magic Quadrant Report

July 21, 2017 05:20 PM - GlobeNewsWire: Semi and Semi Equip --

Check Point Software Technologies Reports Second Quarter 2017 Financial Results

July 21, 2017 05:20 PM - GlobeNewsWire: Semi and Semi Equip --

RSA Acknowledged as a Leader in Four Gartner Magic Quadrants for its IT Risk Management Solutions

July 21, 2017 05:16 PM - PR Newswire: Networks -- RSA, a global cybersecurity leader delivering Business-Driven Security(tm) solutions, today announced that Gartner, Inc. has positioned RSA in...

RiskSense Expands Attack Surface Validation to IoT Devices and OT Networks

July 21, 2017 05:15 PM - PR Newswire: Computer Software -- RiskSense(r), Inc., the pioneer and market leader in pro-active cyber risk management, today announced it has expanded its RiskSense Attack Surface...

Top 5 Patch Management Mistakes

July 21, 2017 05:12 PM - PR Newswire: Computer and Electronics -- Verismic, a global leader in cloud-based IT management technology, has released a list of top five patch management oversights. After a year...

Maritime industry experts to discuss cyber security

July 21, 2017 05:11 PM - PR Newswire: Business Technology -- IT protection and cyber security will take centre stage at the biennial Seatrade...

SANS Announces its Return to Baltimore, Maryland for Security Training Event

July 21, 2017 05:09 PM - PR Newswire: Business Technology -- SANS Institute, the global leader in information security training, today announced its return to Maryland September 25 - 30. SANS Baltimore...

SANS Survey Finds Cyber Security Often Defends Against the Wrong Enemy

July 21, 2017 05:07 PM - PR Newswire: Business Technology -- Information security staffs are so single-minded about defending their organizations from external attack that they all but ignore a threat with...

Veristor Cybersecurity Tech Summit Features Best Practices from Six Security-Industry Thought Leaders

July 21, 2017 05:07 PM - PR Newswire: Business Technology -- Veristor Systems, Inc., a leading provider of transformative business technology solutions, today announced the latest installment of its Expert...

IoT Village Announces 2017 List of Devices to be Hacked at DEF CON

July 21, 2017 05:05 PM - PR Newswire: Computer Hardware -- Independent Security Evaluators ("ISE"), the elite group of security consultants and researchers who organize IoT Village, which runs at several...

CylancePROTECT Receives FedRAMP Certification

July 21, 2017 04:55 PM - Business Wire: Software -- Cylance Inc., the company that is revolutionizing cybersecurity through the use of artificial intelligence to proactively prevent advanced persistent...

HackerOne Makes It Easier and Safer to Manage Vulnerability Reports

July 21, 2017 04:52 PM - Business Wire: Software -- HackerOne, the leading hacker-powered security platform, today announced HackerOne Response, a new product offering for companies to receive...

7 things your IT disaster recovery plan should cover

July 21, 2017 04:48 PM - Infosec -- CSO Online - Hurricanes. Tornadoes. Earthquakes. Fires. Floods. Terrorist attacks. Cyberattacks. You know any of these could happen to your business...

Feds have taken down two major dark web marketplaces

July 21, 2017 03:30 PM - The Verge -- An international law enforcement effort has brought down two of the dark web's largest marketplaces, AlphaBay and Hansa Market. According to...

Introducing Enterprise Smart Contracts

July 21, 2017 03:08 PM - Microsoft Azure Blog -- Enterprise Smart Contracts decompose the "Public Smart Contract" approach, reflecting on both "contract" and technology evolution to provide...

How Microsoft Cleverly Cracks Down On "Fancy Bear" Hacking Group

July 21, 2017 03:08 PM - Infosec -- The Hacker News - What could be the best way to take over and disrupt cyber espionage campaigns?



Hacking them back?



Probably not. At least...

Using DevOps to Move Faster than Attackers

July 21, 2017 03:08 PM - Infosec -- Dark Reading - Black Hat USA talk will discuss the practicalities of adjusting appsec tooling and practices in the age of DevOps.

New Phishing-Based TrickBot Campaign Identified

July 21, 2017 03:03 PM - Infosec -- The PhishLabs Blog - This week, PhishLabs analysts have detected a new TrickBot campaign that began at approximately 23:30 EST on July 17th,...

Great big list of cybersecurity resources

July 21, 2017 02:55 PM - Infosec -- CSO Online - Here's an excuse for IT workers to take some extra time off and head to the beach. Bring a smartphone and check out these cybersecurity...

DNS Audits: What You Need To Know

July 21, 2017 02:54 PM - Infosec -- Neustar - If the recent Mirai botnet attack that took down a managed DNS provider taught us anything, it's that losing a service like DNS can...

Microsoft Office 365 Users Targeted in Brute Force Attacks

July 21, 2017 02:52 PM - Infosec -- Dark Reading - Attackers leveraged popular cloud service platforms to conduct persistent - and stealthy - login attempts on corporate Office...

DevOps & Security: Butting Heads for Years but Integration Is Happening

July 21, 2017 02:51 PM - Infosec -- Dark Reading - A combination of culture change, automation, tools and processes can bring security into the modern world where it can be as agile...

July 20, 2017

Skyhigh Networks Reveals Sophisticated Cyber Attack Campaign on Enterprise Office 365 Users

July 20, 2017 05:52 PM - Business Wire: Software -- Skyhigh Networks, the world's leading Cloud Access Security Broker (CASB) platform, today announced it has detected and remediated one of the...

New Netsparker Survey Finds Vulnerable Web Applications Make Web Developers an Easy Target, Even When Working Behind a Firewall

July 20, 2017 05:52 PM - Business Wire: Software -- Netsparker Ltd., a leading player in the web applications security industry, has released survey results showing that most software developers...

Cylance Research and Data Scientists to Present New Threat Research and Hunting Tools at Black Hat USA 2017

July 20, 2017 05:47 PM - Business Wire: Software -- Cylance(r) Inc., the company that revolutionized the antivirus industry with AI-powered prevention that blocks everyday malware along with today's...

Citadel "mechanic" receives five year prison sentence

July 20, 2017 05:42 PM - Infosec -- WeLiveSecurity - A Russian man has been sentenced to five years in prison for helping develop the Citadel malware, which was used to steal personal...

Lucchese computer hacker sentenced to 18-months in federal prison

July 20, 2017 05:11 PM - Infosec -- Office of Inadequate Security - Andra Litton has the follow-up to a case previously noted on this site: A disgruntled ex-employee of Lucchese...

Sentenced malware developer a 'key resource' for criminal networks

July 20, 2017 05:11 PM - Infosec -- Office of Inadequate Security - R. Robin McDonald reports that the hacker known as "Kolypto," whose real name is Mark Vartanyan, has been sentenced...

Business Email Compromise: A bigger threat than ransomware?

July 20, 2017 04:47 PM - Infosec -- Flashpoint - The large-scale attacks that have become defining characteristics of 2017 have given rise to stronger defenses across the enterprise....

Bookmark and Share

Last updated (UTC):
July 24, 2017 01:36 AM

If you have any questions about this site, please contact me -