June 22, 2017

GhostHook Attack Bypasses Windows 10 PatchGuard

June 22, 2017 09:49 PM - InfoSec.Buzz - Information Security Buzz -- Threatpost - Researchers at CyberArk have developed a bypass for Windows PatchGuard that leverages Intel's Processor Trace (Intel PT) technology...

Cybersecurity job market to suffer severe workforce shortage

June 22, 2017 09:49 PM - InfoSec.Buzz - Information Security Buzz -- CSO Online - The global cybercrime epidemic - predicted to cost the world $6 trillion annually by 2021 - is creating an unprecedented shortage...

Critical RCE Flaw Found in OpenVPN that Escaped Two Recent Security Audits

June 22, 2017 09:46 PM - InfoSec.Buzz - Information Security Buzz -- The Hacker News - A security researcher has found four vulnerabilities, including a critical remote code execution bug, in OpenVPN, those were...

5 Tips to Maximize Your IT Security Training

June 22, 2017 09:46 PM - InfoSec.Buzz - Information Security Buzz -- TripWire - The State of Security - Quality security training is a costly investment. Multiple-day training sessions are usually required for...

'Stack Clash' Smashed Security Fix in Linux

June 22, 2017 06:35 PM - InfoSec.Buzz - Information Security Buzz -- Dark Reading - Linux, OpenBSD, Free BSD, Solaris security updates available to thwart newly discovered attack by researchers.

10 tough security interview questions, and how to answer them

June 22, 2017 06:35 PM - InfoSec.Buzz - Information Security Buzz -- CSO Online - Anyone who's experienced a job interview knows that one of the keys to landing a position is answering the interview questions effectively...

Outside IT, few aware of projected skills gap to impact security by 2019

June 22, 2017 06:34 PM - InfoSec.Buzz - Information Security Buzz -- CSO Online - This month Boston hosted the fifth annual Boston TechJam--a virtual block party in the heart of Government Center, complete with...

Is Continuing to Patch Windows XP a Mistake?

June 22, 2017 06:33 PM - InfoSec.Buzz - Information Security Buzz -- Schneier on Security - Last week, Microsoft issued a security patch for Windows XP, a 16-year-old operating system that Microsoft officially...

Honda Halts Car Production Following WannaCry Infection

June 22, 2017 06:33 PM - InfoSec.Buzz - Information Security Buzz -- TripWire - The State of Security - Japanese automaker Honda Motor said it temporarily shut down production at a local car plant earlier this...

GDPR: how to avoid the data protection cowboys

June 22, 2017 06:32 PM - InfoSec.Buzz - Information Security Buzz -- Naked Security - As we keep reminding you, GDPR is now less than a year away. Here are our tips to help you pick the right person to help you...

Attackers Are More Determined

June 22, 2017 06:31 PM - InfoSec.Buzz - Information Security Buzz -- Neustar - The deluge of DDoS attacks is a sign of success for the bad guys. They know they're winning and are bolder than ever in raising the...

Dark Reading Launches New Conference on Cyber Defense

June 22, 2017 06:31 PM - InfoSec.Buzz - Information Security Buzz -- Dark Reading - November event will focus on attendee interaction, "blue team" best practices

June 21, 2017

25% of Companies Struck by Fireball or WannaCry in May, Index Reveals

June 21, 2017 04:43 PM - InfoSec.Buzz - Information Security Buzz -- TripWire - The State of Security - A quarter of companies worldwide suffered an infection at the hands of Fireball malware or WannaCry ransomware...

Ping Identity Named a Product Leader in KuppingerCole Leadership Compass for Customer IAM Platforms

June 21, 2017 03:58 PM - Business Wire: Software -- Ping Identity(r), the Identity Security Company, today announced that it has been named a product leader in the KuppingerCole Leadership Compass...

What it takes to be a security incident responder

June 21, 2017 03:56 PM - InfoSec.Buzz - Information Security Buzz -- CSO Online - Cyber security response teams are keeping busy these days, with an abundance of hacking and other attacks launched against organizations...

WebSites Found Collecting Data from Online Forms Even Before You Click Submit

June 21, 2017 03:36 PM - InfoSec.Buzz - Information Security Buzz -- The Hacker News - 'Do I really need to give this website so much about me?'



That's exactly what I usually think after filling but before submitting...

NSA Opens Github Account - Lists 32 Projects Developed by the Agency

June 21, 2017 03:36 PM - InfoSec.Buzz - Information Security Buzz -- The Hacker News - The National Security Agency (NSA) - the United States intelligence agency which is known for its secrecy and working in the...

Mapping the Top Five CSC to Four Cybersecurity Pillars

June 21, 2017 03:35 PM - InfoSec.Buzz - Information Security Buzz -- TripWire - The State of Security - Foundational Controls may not sound like the sexiest subject in IT but arguably, it's the most critical -...

Organizations Are Detecting Intrusions More Quickly

June 21, 2017 03:34 PM - InfoSec.Buzz - Information Security Buzz -- Dark Reading - But almost every other metric in Trustwave's 2017 global cybersecurity report card is headed in the wrong direction.

Exclusive: Upcoming Windows 10 Version May Have Built-in EMET to Boost Security

June 21, 2017 03:33 PM - InfoSec.Buzz - Information Security Buzz -- The Hacker News - It seems Microsoft is planning to build its EMET anti-exploit tool into the kernel of Windows 10 Creator Update (also known...

Stack Clash Linux vulnerability: you need to patch now

June 21, 2017 03:32 PM - InfoSec.Buzz - Information Security Buzz -- Naked Security - If you're running Linux-based IoT devices, remember that attackers are particularly focusing on these - so make sure you patch...

Why Is It So Important To Rethink The Role Of DNS In DevOps?

June 21, 2017 03:32 PM - InfoSec.Buzz - Information Security Buzz -- Dyn - Phil Stanhope, Vice President of Technology Strategy at Oracle Dyn, knows a thing or two about the DNS. He has recently become interested...

ProtonMail Launches Free VPN Service

June 21, 2017 03:32 PM - InfoSec.Buzz - Information Security Buzz -- Threatpost - Encrypted email service ProtonMail announced it was launching its own VPN, ProtonVPN, on Tuesday.

AdGholas Malvertising Campaign Employs Astrum Exploit Kit

June 21, 2017 03:31 PM - InfoSec.Buzz - Information Security Buzz -- TrendLabs Security Intelligence Blog - At the end of April this year, we found Astrum exploit kit employing Diffie-Hellman key exchange to prevent...

Say Goodbye to SMBv1 in Windows Fall Creators Update

June 21, 2017 03:30 PM - InfoSec.Buzz - Information Security Buzz -- Threatpost - The SMBv1 file-sharing protocol abused by the NSA's EternalBlue exploit to spread WannaCry ransomware is being disabled in the upcoming...

Microsoft admits it disables anti-virus software in response to Kaspersky's EU complaint

June 21, 2017 03:16 PM - The Verge -- Microsoft's anti-virus efforts have hit the news recently, following the spread of the massive WannaCry malware and an EU antitrust complaint...

June 20, 2017

Machine learning by ESET: The road to Augur

June 20, 2017 05:38 PM - InfoSec.Buzz - Information Security Buzz -- WeLiveSecurity - Machine learning (ML) in eight blogposts!? In our last post, let's take a peek under the hood of ESET's cybersecurity engine...

How safe is your online behavior? Carnegie Mellon researchers say it depends on where you're from.

June 20, 2017 05:29 PM - PR Newswire: High Tech Security -- Selecting a password or deciding whether an email is a phishing email or not are among countless security decisions you make on a regular basis....

Mosaic451 Awarded Contract by the National Cooperative Purchasing Alliance to Provide Security Services

June 20, 2017 05:28 PM - PR Newswire: Business Technology -- Mosaic451, a bespoke cybersecurity services provider and consultancy, announced today that the company has been awarded a contract for Network...

Top Cyber Security Professionals Head to Boston for SANS Security Training Event

June 20, 2017 05:24 PM - PR Newswire: Computer and Electronics -- SANS Institute, the global leader in information security training, today announced the agenda for SANS Boston 2017 taking place August 7 - 12....

Industrial Control Cyber Security Addressed at US Cyber Senate Summit

June 20, 2017 05:23 PM - PR Newswire: Networks -- Leading cyber security experts from across the USA will gather in Sacramento later this year for the 4th Annual Industrial Control Cyber Security...

Forcepoint Leaders Highlight the Cyber Continuum of Intent at Gartner Security & Risk Management Summit

June 20, 2017 05:23 PM - PR Newswire: Networks -- Last week at the Gartner Security & Risk Management Summit, Chief Information Officer Meerah Rajavel and Chief Scientist Dr. Richard Ford from...

Inpixon Announces Webinar with Leading Expert to Address Internet of Things Security Risks and Best Practices

June 20, 2017 05:22 PM - Business Wire: Nanotechnology -- Inpixon (NASDAQ:INPX), a leading indoor positioning analytics company, announced it will be sponsoring a webinar titled, "Protect Your Company...

Imperva Announces Enhancements to the Incapsula Content Delivery Network

June 20, 2017 05:12 PM - Business Wire: Internet -- Imperva enhances Incapsula Content Delivery Network (CDN) to improve website performance and responsiveness while lowering bandwidth cost.

Ping Identity Announces Updates to Expedite Adoption of Multi-Factor Authentication

June 20, 2017 05:10 PM - Business Wire: Software -- At the Cloud Identity Summit (CIS), the premier industry event focused on identity, Ping Identity(r), the Identity Security Company, today announced...

Accenture, Microsoft Create Blockchain Solution to Support ID2020

June 20, 2017 05:10 PM - Business Wire: Software -- Accenture and Microsoft created a blockchain solution to support ID2020.

BrandPost: DNS Expertise & Experience Matter

June 20, 2017 04:44 PM - InfoSec.Buzz - Information Security Buzz -- CSO Online - Most IT professionals focus on the technologies driving the digital economy -- cloud computing, Internet of Things (IoT), big data...

Stack Clash Vulnerability in Linux, BSD Systems Enables Root Access

June 20, 2017 04:44 PM - InfoSec.Buzz - Information Security Buzz -- Threatpost - Patches are available for a newly discovered Linux, BSD and Solaris vulnerability called Stack Clash that bypasses stack guard-page...

Microsoft, Accenture Team up on Blockchain for Digital ID Network

June 20, 2017 04:43 PM - InfoSec.Buzz - Information Security Buzz -- Dark Reading - Microsoft and Accenture use blockchain tech to build a digital ID network, which will help give legal identification to 1.1 billion...

IoT Malware Activity Already More Than Doubled 2016 Numbers

June 20, 2017 04:43 PM - InfoSec.Buzz - Information Security Buzz -- Threatpost - The number of new malware samples in the wild this year targeting connected internet-of-things (IoT) devices has already more than...

Major Websites Vulnerable to their Own Back-End Servers

June 20, 2017 04:42 PM - InfoSec.Buzz - Information Security Buzz -- Dark Reading - DoD, other websites found with back-end server flaws and misconfigurations that could give attackers an entryway to internal networks,...

With new dynamic capabilities, will whitelisting finally catch on?

June 20, 2017 04:41 PM - InfoSec.Buzz - Information Security Buzz -- CSO Online - Everybody knows and hates whitelisting. Employees are only allowed to install approved software on their desktops and laptops, so...

New Technique to Hijack Social Media Accounts

June 20, 2017 04:41 PM - InfoSec.Buzz - Information Security Buzz -- Schneier on Security - Access Now has documented it being used against a Twitter user, but it also works against other social media accounts:



With...

Erebus Resurfaces as Linux Ransomware

June 20, 2017 04:39 PM - InfoSec.Buzz - Information Security Buzz -- TrendLabs Security Intelligence Blog - by Ziv Chang, Gilbert Sison, and Jeanne Jocson

On June 10, South Korean web hosting company NAYANA was...

GDPR Questions? Azure has answers.

June 20, 2017 03:36 PM - Microsoft Azure Blog -- Microsoft is here to help Please read our white paper How Microsoft Azure Can Help Organizations Become Compliant with the EU General Data Protection...

June 19, 2017

IBM Opens European X-Force Command Center in Poland

June 19, 2017 03:53 PM - PR Newswire: Computer and Electronics -- IBM (NYSE: IBM) Security today announced the official opening of its modernized European IBM X-Force Command Center based in Poland. The center...

Raytheon launches new Cyber Protection System with scalable response centers

June 19, 2017 03:52 PM - PR Newswire: Computer and Electronics -- Today at the Paris Air Show, Raytheon Company (NYSE: RTN) unveiled its new Cyber Protection System with scalable Cyber Response Centers for global...

RNC data analytics firm exposes voting records on 198 million Americans

June 19, 2017 03:49 PM - InfoSec.Buzz - Information Security Buzz -- Salted Hash - Researcher Chris Vickery has discovered nearly 200 million voter records in an unsecured Amazon S3 bucket maintained by Deep Root...

Tested: How 4 deception tools deliver truer network security

June 19, 2017 03:48 PM - InfoSec.Buzz - Information Security Buzz -- CSO Online - The use of deception as a weapon has been around since the dawn of warfare, and certainly since Sun Tzu helped to define it in about...

Bookmark and Share

Last updated (UTC):
June 22, 2017 09:36 PM

If you have any questions about this site, please contact me -