Information Security Wire

Woodstock Wire: Information Security Wire

German schools ban Microsoft Office 365 amid privacy concerns

Media - The Next Web - Microsoft's cloud services has run into a fresh roadblock in Germany, after the German state of Hesse ruled it's illegal for its...
Mon, 15 Jul 2019 12:40:32 - #microsoft #security

Best tools for single sign-on (SSO)

Infosec - CSO Online - Single sign-on (SSO) centralizes session and user authentication services, requiring just one set of login credentials for multiple...
Mon, 15 Jul 2019 12:13:32 - #oracle #security

Threatlist: 68% of Overwhelmed IT Managers Can't Keep Up with Cyberattacks

Infosec - Threatpost - Most respondents in a recent survey say they're losing the battle despite having up-to-date protections in place.
Mon, 15 Jul 2019 12:13:25 - #cybersecurity #security

Security bootcamp: 8 must-read books for leaders

Enterprise - The Enterprisers Project - Hackers increasingly target individuals as weak links. As the number of breaches and their costs continue to spike,...
Mon, 15 Jul 2019 12:13:17 - #security

Evite - 100,985,047 breached accounts

Infosec - Have I been pwned - In April 2019, the social planning website for managing online invitations Evite identified a data breach of their systems....
Sun, 14 Jul 2019 19:03:45 - #cybersecurity #security

MindJolt - 28,364,826 breached accounts

Infosec - Have I been pwned - In March 2019, the online gaming website MindJolt suffered a data breach that exposed 28M unique email addresses. Also impacted...
Sun, 14 Jul 2019 19:03:44 - #cybersecurity #security

As US counties update their voting machines, many run on outdated software

Tech - The Verge - Following the 2016 presidential election, states like Pennsylvania indicated that they would be working to upgrade their voting machines...
Sun, 14 Jul 2019 19:03:36 - #microsoft #security

How organizations are bridging the cyber-risk management gap

Infosec - CSO Online - Cyber-risk management is more difficult today than it was two years ago. So say 74% of cybersecurity professionals in a recent ESG...
Sun, 14 Jul 2019 18:13:41 - #ibm #accenture #cybersecurity #sumologic #splunk #security

Black Hat USA Arsenal Serves Up A Smorgasbord of Cybersecurity Tools

Infosec - Dark Reading - Visit the Arsenal this August to go hands-on with hackable gadgets and catch live demos of open-source security tools from some...
Sun, 14 Jul 2019 18:13:40 - #cybersecurity #security

How a decentralized cloud model may increase security, privacy

Infosec - CSO Online - Whether it's Amazon Web Services (AWS), Dropbox, Citrix, Microsoft or Google, all cloud storage vendors use the same basic principle...
Sun, 14 Jul 2019 18:13:39 - #microsoft #cloud #aws #security

New ISA Global Cybersecurity Alliance Accelerates Education, Readiness, and Knowledge Sharing

PR Newswire - The International Society of Automation (ISA), developer of ANSI/ISA 62443 series of automation and control systems cybersecurity standards (adopted...
Sun, 14 Jul 2019 18:13:29 - #cybersecurity #security

Speaking of security: Our framework to secure Microsoft

Enterprise - Microsoft IT Showcase - At Microsoft, we believe that clarity is paramount. To help explain our security strategy, we devised a simple metaphor...
Sun, 14 Jul 2019 17:39:57 - #microsoft #bigdata #identity #security

Phishing from Behind an SSL Veil

Enterprise - The ChannelPro Network - Cheap SSL certificates are helping hackers create dangerous websites that look safe.
Sun, 14 Jul 2019 17:39:56 - #phishing #security

The best browsers for privacy

Tech - Digital Trends - Whether your privacy concerns are focused on controlling cookies or blocking ads and malware, you're sure to find the best browser...
Sun, 14 Jul 2019 17:13:22 - #cybersecurity #security

Global, Transparent, Trusted: Kaspersky Successfully Passes Independent SOC 2 Audit

Business Wire - Kaspersky has successfully completed the Service Organization Control for Service Organizations (SOC 2) Type 1 audit.
Sun, 14 Jul 2019 01:13:26 - #cybersecurity #security

How to Catch a Phish: Where Employee Awareness Falls Short

Infosec - Dark Reading - Advanced phishing techniques and poor user behaviors that exacerbate the threat of successful attacks.
Sun, 14 Jul 2019 00:40:20 - #phishing #security

Palo Alto Networks Welcomes Jean English as New Chief Marketing Officer

Infosec -
Sun, 14 Jul 2019 00:40:19 - #paloaltonetworks #security

Most Organizations Lack Cyber Resilience

Infosec - Dark Reading - Despite increasing threats, many organizations continue to run with only token cybersecurity and resilience.
Sun, 14 Jul 2019 00:40:18 - #cybersecurity #security

Atlassian turns around fix for critical Jira vulnerability

Infosec - The Daily Swig - Long-hidden server-side template injection bug unearthed
Sun, 14 Jul 2019 00:40:17 - #atlassian #security

Threat Actors are Increasing Their Use of Free Hosts

Infosec - The PhishLabs Blog - In our continued expansion and exploration of data from this year's annual Phishing Trends and Intelligence report it's...
Sun, 14 Jul 2019 00:40:15 - #phishing #wordpress #security

Spray and Pray: Magecart Campaign Breaches Websites En Masse Via Misconfigured Amazon S3 Buckets

Infosec - RiskIQ - On May 14th, RiskIQ covered the latest mass compromise of third-party web suppliers by a Magecart group. This initial report focused...
Sun, 14 Jul 2019 00:40:14 - #cloud #aws #riskiq #security

Magecart Hackers Infect 17,000 Sites Through Misconfigured Amazon S3 Buckets

Infosec - The Hacker News - Magecart strikes again!

Cybersecurity researchers have identified yet another supply-chain attack carried out by payment card...
Sun, 14 Jul 2019 00:40:13 - #cybersecurity #security

Coalfire Conducts Adaptive Penetration Testing Training at Black Hat USA for Eighth Consecutive Year

PR Newswire - Coalfire, a trusted provider of cybersecurity advisory and assessment services, announced that it will conduct two penetration testing training...
Sun, 14 Jul 2019 00:13:36 - #cybersecurity #security

SANS to Offer New Blue Team Fundamentals Course at Dallas Cyber Security Training Event

PR Newswire - SANS Institute, the global leader in cyber security training and certifications, today announced the agenda for SANS Dallas Fall 2019 (#SANSDallas)...
Sun, 14 Jul 2019 00:13:35 - #cybersecurity #security

Cybersecurity: Broken hardware behind many outages, but ransomware threat increases

Enterprise - ZDNet News - The main causes of downtime remain prosaic, but cyber incidents are growing too.
Sun, 14 Jul 2019 00:13:19 - #cybersecurity #security

Recorded Future Delivers the Best-in-Breed Threat Intelligence Solution for Partners

Infosec - Recorded Future - Synacktek, a Connecticut-based consulting firm focused on strategic alignment in the IT security and infrastructure technology...
Sat, 13 Jul 2019 19:13:17 - #machinelearning #threatintelligence #security

The Insider Threat Intelligence Cycle

Infosec - Flashpoint - By Eric Lackey - A growing number of organizations across the public and private sectors are recognizing insider threat as a critical...
Sat, 13 Jul 2019 18:40:27 - #cybersecurity #phishing #threatintelligence #security

Kali Linux is now available for Raspberry Pi 4

Infosec - Security Affairs - The popular operating system Kali Linux is finally available for Raspberry Pi 4, this is great news for hackers and passionate.
Sat, 13 Jul 2019 18:40:25 - #raspberrypi #64bit #security

Agent Smith Malware Infects 25M Android Phones to Push Rogue Ads

Infosec - Threatpost - Researchers say malware infects phones in order to sneak ads on devices for profit.
Sat, 13 Jul 2019 18:40:24 - #android #cybersecurity #security

10 Ways to Keep a Rogue RasPi From Wrecking Your Network

Infosec - Dark Reading - A Raspberry Pi attached to the network at NASA JPL became the doorway for a massive intrusion and subsequent data loss. Here's...
Sat, 13 Jul 2019 18:40:23 - #nasa #raspberrypi #security

What's new in Azure Firewall

Enterprise - Microsoft Azure - Today we are happy to share...
Sat, 13 Jul 2019 18:13:23 - #microsoft #devops #cloud #azure #firewall #iaas #kubernetes #threatintelligence #security

This new ransomware is targeting network attached storage devices

Enterprise - ZDNet News - NAS devices are often used to store critical data and back-ups - but many are exposed to the open internet and the cybercriminals...
Sat, 13 Jul 2019 18:13:22 - #cybersecurity #security

Barracuda deepens Azure support with two new capabilities

Enterprise - ChannelBuzz.ca - Both Barracuda Cloud Security Guardian for Microsoft Azure and new support for the Office 365 control plane through the Barracuda...
Sat, 13 Jul 2019 18:13:19 - #microsoft #cloud #azure #firewall #microservices #aws #threatintelligence #security

Microsoft to Windows 10 users: Patch Secure Boot now against 'critical' bug

Enterprise - ZDNet News - Microsoft's latest SSU helps fix a bug in Secure Boot that interferes with Windows' BitLocker encryption system.
Sat, 13 Jul 2019 18:13:18 - #microsoft #security

Ubuntu maker's GitHub account hacked - but the source code is safe

Media - The Next Web - The GitHub account of Canonical Ltd., the company behind the popular Ubuntu Linux distribution, was hacked over the weekend on...
Sat, 13 Jul 2019 17:13:52 - #ubuntu #maker #security

Ping Identity Named Best Identity Management Solution at the 2019 SC Awards Europe

Business Wire - Ping Identity, the leader in Identity Defined Security, today announced that its Ping Intelligent IdentityTM platform has been named "Best Identity...
Sat, 13 Jul 2019 17:13:41 - #pingidentity #identity #security

New LastPass Study Finds 92 percent of Businesses Experience Identity Challenges

Globe Newswire - LastPass by LogMeIn today announced the results of a new study conducted by Vanson Bourne to offer small and medium businesses (SMBs) insights...
Fri, 12 Jul 2019 14:13:19 - #lastpass #identity #security

25 Million Infected Devices: Check Point Research Discovers New Variant of Mobile Malware

Globe Newswire - Technology - "Agent Smith" malware automatically replaces installed apps with malicious versions without the user's knowledge or interaction....
Fri, 12 Jul 2019 14:13:17 - #cybersecurity #security

Apple has pushed a silent Mac update to remove hidden Zoom web server

Tech - TechCrunch - Apple has released a silent update for Mac users removing a vulnerable component in Zoom, the popular video conferencing app, which...
Fri, 12 Jul 2019 12:39:52 - #cybersecurity #security

What CISOs need to learn from WannaCry

Tech - TechCrunch - In 2017 - for the first time in over a decade - a computer worm ran rampage across the internet, threatening to disrupt businesses,...
Fri, 12 Jul 2019 12:39:51 - #cybersecurity #botnet #security

Raspberry Pi 4 and Kali #piday #raspberrypi @Raspberry_Pi

EE - Adafruit Industries - Exciting news from Kali!We love the Raspberry Pi, and judging by the response we got to a late night tweet we sent out...
Fri, 12 Jul 2019 12:13:07 - #raspberrypi #security

Organizations Are Adapting Authentication for Cloud Applications

Infosec - Dark Reading - Companies see the changing demands of cloud identity management but are mixed in their responses to those demands.
Wed, 10 Jul 2019 14:59:54 - #identity #security

Palo Alto Networks Completes Acquisition of Twistlock

Infosec -
Wed, 10 Jul 2019 14:59:53 - #paloaltonetworks #acquisition #security

3 Common SIEM Problems Threat Intelligence Can Solve

Infosec - Recorded Future - Security information and event management (SIEM) platforms have been a great way to pull security event data from across an...
Wed, 10 Jul 2019 14:59:52 - #cisco #machinelearning #threatintelligence #cybersecurity #security

Elastic takes the first steps toward building out its SIEM solution

Enterprise - ZDNet Blogs - Following its dive into APM, the new release of the Elastic stack has the beginnings of what will become a security events-based...
Wed, 10 Jul 2019 14:13:07 - #cybersecurity #security

Focus on IT security basics to prevent breaches, urges latest Online Trust Alliance report

Enterprise - IT World Canada - Report includes advice for infosec pros on core readiness principles and a cyber security checklist
Wed, 10 Jul 2019 13:40:04 - #cybersecurity #security

Kaspersky Beefs Up Virtualization Defenses

Enterprise - Channelnomics - Kaspersky Beefs Up Virtualization Defenses
Controls for virtual machines now part of vendor's Hybrid Cloud Security...
Wed, 10 Jul 2019 13:40:02 - #cybersecurity #hypervisor #hybridcloud #security

Enterprise Meets Consumer Security: Exploring Approaches To Protect Employees At Home

Think - Forrester Blogs - Does your organization have a strategy for protecting employees at home as a part of your overall cybersecurity program? Something...
Tue, 09 Jul 2019 14:13:45 - #cybersecurity #security

7 Hot Cybersecurity Trends to Be Highlighted at Black Hat

Infosec - Dark Reading - Just some of the research and ideas worth checking out at this year's 'security summer camp.'
Tue, 09 Jul 2019 13:38:52 - #cybersecurity #security

GitHub account belonging to Ubuntu Linux maker Canonical hacked

Enterprise - SiliconANGLE - A GitHub account belonging to Canonical Ltd., the maker of Ubuntu Linux, was hacked over the weekend as a hacker created new...
Tue, 09 Jul 2019 13:38:48 - #ubuntu #maker #security