Information Security Wire

Woodstock Wire: Information Security Wire

California to close data breach notification loopholes under new law

Tech - TechCrunch - California, which has some of the strongest data breach notification laws in the U.S., thinks it can do even better.
The golden...
Fri, 22 Feb 2019 14:13:05 - #cybersecurity #security

WinRAR patches 19-year-old security vulnerability that put millions at risk

Tech - The Verge - WinRAR has patched a 19-year-old security vulnerability that allowed attackers to extract malicious software to anywhere on your...
Fri, 22 Feb 2019 13:14:01 - #security

Once hailed as unhackable, blockchains are now getting hacked

Think - MIT Technology Review - More and more security holes are appearing in cryptocurrency and smart contract platforms, and some are fundamental to...
Thu, 21 Feb 2019 15:42:07 - #blockchain #security

Are zero-day exploits the new norm?

Infosec - CSO Online - Conventional wisdom in IT security has long taught us that zero-day exploits are rare and that we need to be far more concerned...
Thu, 21 Feb 2019 15:42:06 - #microsoft #security

Another Critical Flaw in Drupal Discovered - Update Your Site ASAP!

Infosec - The Hacker News - Developers of Drupal-a popular open-source content management system software that powers millions of websites-have released...
Thu, 21 Feb 2019 15:42:05 - #security

As Businesses Move Critical Data to Cloud, Security Risks Abound

Infosec - Dark Reading - Companies think their data is safer in the public cloud than in on-prem data centers, but the transition is driving security issues.
Thu, 21 Feb 2019 15:42:04 - #datacenter #security

IoT botnets target enterprise video conferencing systems

Infosec - CSO Online - Companies have been adding internet of things (IoT) devices to their networks over the past few years, often increasing their exposure...
Thu, 21 Feb 2019 15:13:57 - #cybersecurity #botnet #iot #security

Password manager report gets researcher booted from Bugcrowd

Infosec - CyberScoop - The author of newly-published research that examines flaws in password managers has been kicked off Bugcrowd, a popular vulnerability-reporting...
Thu, 21 Feb 2019 15:13:53 - #hp #firewall #lastpass #security

What Is Open Source Intelligence and How Is it Used?

Infosec - Recorded Future - Key Takeaways
Open source intelligence is derived from data and information that is available to the general public. It's...
Thu, 21 Feb 2019 15:13:51 - #cybersecurity #botnet #phishing #ai #machinelearning #threatintelligence #security

How to Identify Threats Within Your Docker Containers

Infosec - Threat Stack - Now is a good time to review Threat Stack's Docker integration in the wake of the recent runc CVE. The headline reporting gets...
Thu, 21 Feb 2019 15:13:50 - #cybersecurity #docker #kubernetes #security

Splunk to exit Russian market amid growing government scrutiny

Infosec - CyberScoop - Security analytics provider Splunk no longer will do business in Russia, the company announced Monday in a blog post that may have...
Thu, 21 Feb 2019 15:13:49 - #victorops #cybersecurity #splunk #security

Kali Linux 2019.1 Released - Operating System For Hackers

Infosec - The Hacker News - Wohooo! Great news for hackers and penetration testers.

Offensive Security has just released Kali Linux 2019.1, the first...
Thu, 21 Feb 2019 15:13:48 - #cybersecurity #security

Amazon Adds Three New Threat Detections to Its GuardDuty Service in AWS

Enterprise - InfoQ - Amazon has added another set of new threat detections to its GuardDuty service in AWS. The three new threat detections are two new penetration...
Thu, 21 Feb 2019 15:13:31 - #cloud #aws #security

Flaws in leading password managers can expose data

Enterprise - SiliconANGLE - In an age of constant data breaches and hacking many security experts encourage the use of online password managers but as it...
Thu, 21 Feb 2019 14:40:06 - #cybersecurity #security

Password managers may leave your online crown jewels 'exposed in RAM' to malware - but hey, they're still better than the alternative

Enterprise - The Register - The alternative being memorizing a bunch of really long unique passphrases
A bunch of infosec bods are taking some of the most...
Thu, 21 Feb 2019 14:39:58 - #cybersecurity #security

Kali Linux 2019.1 Released

Enterprise - Linux Magazine - The favorite Linux distro of Mr. Robot gets the first update of 2019.
Thu, 21 Feb 2019 14:13:27 - #robotics #security

Cyber and Physical Convergence is Creating New Attack Opportunities for Cybercriminals

Globe Newswire - Technology - Fortinet Threat Landscape Report Reveals Half of Top 12 Global Exploits Targeted IoT Devices Fortinet Threat Landscape Report Reveals...
Thu, 21 Feb 2019 12:40:56 - #iot #security

Netsurion First to Deliver Both EDR and SIEM Technologies as a Single Managed Security Service

Globe Newswire - Netsurion, a leading provider of managed network connectivity, security, and compliance solutions, today announced EventTracker EDR, the industry's...
Thu, 21 Feb 2019 12:40:52 - #cybersecurity #security

Google researchers say software alone can't mitigate Spectre chip flaws

Enterprise - Silicon Republic - Google researchers say that software alone is not enough to prevent the exploitation of the Spectre flaws present in a variety...
Wed, 20 Feb 2019 16:40:51 - #cybersecurity #security

With threats of cyberattacks looming over European elections, Microsoft expands AccountGuard cybersecurity program

Tech - GeekWire - European leaders are on high alert for potential cyberattacks ahead of major elections, and Microsoft reports hackers are also targeting...
Wed, 20 Feb 2019 15:40:55 - #microsoft #cybersecurity #security

How to spot and avoid credit card skimmers

Tech - Mashable - The moment I started seriously worrying about credit card and debit card skimmers wasn't when my entire bank account was transferred...
Wed, 20 Feb 2019 15:13:38 - #cybersecurity #security

After paying out $250,000 in 2018, GitHub plans to boost bug bounty bonuses

Tech - GeekWire - The GitHub Octocat on the floor of the company's San Francisco headquarters. (Steve Fadden Photo, via Flickr, Creative Commons.)Bug...
Wed, 20 Feb 2019 15:13:37 - #microsoft #security

Palo Alto Networks to acquire Demisto for $560M

Tech - TechCrunch - Palo Alto Networks announced today that it intends to acquire security startup, Demisto, for $560 million.
The company sees a tool...
Wed, 20 Feb 2019 15:13:35 - #paloaltonetworks #acquisition #ai #machinelearning #security

Forescout Unveils the Industry's First Unified Device Visibility and Control Platform for IT and OT Security

Globe Newswire - Forescout Technologies, Inc. (NASDAQ: FSCT), the leader in device visibility and control, today announced the industry's first unified device...
Wed, 20 Feb 2019 14:13:40 - #cybersecurity #security

Sophos Central Management Platform Now Features All Next-Gen Cybersecurity Protection from Sophos

Globe Newswire - Technology - Addition of Sophos XG Firewall provides advanced Synchronized Security capabilities for accelerated response to cyberattacks from...
Wed, 20 Feb 2019 14:13:37 - #sophos #cybersecurity #firewall #security

Information Warfare, IoT Attacks, and More: Booz Allen Forecasts Future Cyber Threats

Justmeans - Water utilities, wireless networks, and beyond - find out where #cyber criminals will attack in 2019 @BoozAllen...
Wed, 20 Feb 2019 12:41:47 - #cybersecurity #ddos #iot #security

Micro Focus acquires cybersecurity startup Interset

Enterprise - CRN - For its machine learning and user and entity behavior analytics capabilities.
Tue, 19 Feb 2019 13:41:02 - #cybersecurity #acquisition #machinelearning #security

First Fines show Reality of GDPR Laws

SupplyChain - Software AG - GDPR is not a myth, but a tough reality - a lesson that Google learned recently.
Tue, 19 Feb 2019 13:40:51 - #software-ag #gdpr #security

Free Tool: Honey Feed

Infosec - Security Affairs - Cybersecurity expert Marco Ramilli shared another tool of his arsenal that extracts suspicious IPs from undesired connections,...
Mon, 18 Feb 2019 15:13:18 - #cybersecurity #security

Microsoft study shows poor employee habits threaten cybersecurity

Enterprise - Silicon Republic - Microsoft Ireland has today (18 February) warned that poor cybersecurity habits within large public and private sector organisations...
Mon, 18 Feb 2019 15:13:11 - #microsoft #cybersecurity #phishing #security

Another database with hacked account details found for sale on the dark web

Enterprise - SiliconANGLE - Another day, another database of hacked account details has been discovered for sale on the dark web with the latest containing...
Mon, 18 Feb 2019 14:40:47 - #security

A new batch of 127 million records appears in the dark web

Infosec - Security Affairs - A new batch of 127 million records appears in the dark web, this time the huge trove of data appears to be originated from...
Sun, 17 Feb 2019 22:40:00 - #cybersecurity #security

IBM sets forth with a strong cybersecurity message

Infosec - CSO Online - I just got back from attending IBM Think in San Francisco. Though it was a quick trip across the country, I was inundated with IBM's...
Sun, 17 Feb 2019 22:39:59 - #ibm #redhat #cybersecurity #ai #acquisition #hybridcloud #security

How to Build Comprehensive Security Processes With Threat Intelligence

Infosec - Recorded Future - As children, many of us played with the classic assortment of blocks, columns, and other shapes known as Lincoln Logs. I spent...
Sun, 17 Feb 2019 22:39:58 - #ibm #cybersecurity #phishing #threatintelligence #security

IBM has a strong cybersecurity message, but few know what it is

Infosec - CSO Online - I just got back from attending IBM Think in San Francisco. Though it was a quick trip across the country, I was inundated with IBM's...
Sun, 17 Feb 2019 22:39:57 - #ibm #redhat #cybersecurity #ai #acquisition #hybridcloud #security

US healthcare data breach settlements topped $28m in 2018

Infosec - The Daily Swig - HHS announces 'record year for HIPAA enforcement'
Sun, 17 Feb 2019 22:39:56 - #cybersecurity #security

Identity is Security: Hacking is in the Air

Infosec - The Identity Quotient Blog - Love may have been in the air this week, but hackers managed to find a way to hack that this Valentine's Day. In...
Sun, 17 Feb 2019 22:39:55 - #android #cybersecurity #gdpr #security

Data breaches exposed 5 billion records in 2018.

Infosec - CSO Online - The number of publicly known data breaches decreased last year compared to 2017, despite harsher breach notification rules going...
Sun, 17 Feb 2019 22:39:54 - #cybersecurity #security

Five emerging cybersecurity threats you should take very seriously in 2019

Enterprise - ZDNet News - Ransomware isn't the only cyberthreat your business will face this year. Here are five emerging threats that leaders need to know...
Sun, 17 Feb 2019 22:39:49 - #cybersecurity #security

New DNS security service a major highlight of PAN-OS 9.0 release

Enterprise - ChannelBuzz.ca - Another key software addition is a new Policy Optimizer, that uses network intelligence to find and remove legacy firewall rules...
Fri, 15 Feb 2019 15:13:07 - #oracle #cisco #paloaltonetworks #cybersecurity #cloud #azure #firewall #aws #machinelearning #nutanix #security

CyberArk Announces Record Fourth Quarter and Full Year 2018 Results

Business Wire - CyberArk, (NASDAQ: CYBR), the global leader in privileged access security, today announced record financial results for the fourth quarter and...
Fri, 15 Feb 2019 13:41:53 - #cyberark #security

10 essential steps to improve your security posture

Infosec - CSO Online - It has never been easier for cybercriminals to infect your business with malware or ransomware. A vast array of malware tools can...
Fri, 15 Feb 2019 13:41:44 - #cybersecurity #security

New Professional Development Institute Aims to Combat Cybersecurity Skills Shortage

Infosec - Dark Reading - The (ISC)2 announces a new institute for working cybersecurity professionals to continue their education.
Fri, 15 Feb 2019 13:41:42 - #cybersecurity #security

How to Create a Dream Team for the New Age of Cybersecurity

Infosec - Dark Reading - When each member of your security team is focused on one narrow slice of the pie, it's easy for adversaries to enter through the...
Fri, 15 Feb 2019 13:41:41 - #cybersecurity #security

Focus on Security First, Before Coding the Next Feature Set

Enterprise - Palo Alto Networks Blog - Before you start working on the next set of product features, I implore you to do a security assessment.
As we were...
Fri, 15 Feb 2019 13:13:56 - #microsoft #cloud #aws #devops #paloaltonetworks #azure #googlecloud #security

Hacker who stole 620 million records strikes again, stealing 127 million more

Tech - TechCrunch - A hacker who stole close to 620 million user records from 16 websites has stolen another 127 million records from 8 more websites,...
Fri, 15 Feb 2019 12:40:03 - #cybersecurity #security

GDPR Is Tough and Set to Get Even Tougher

Web Marketing - CMS Wire - Many enterprises don't believe they have a GDPR problem. Most enterprises think they have it under control. However, figures in the...
Thu, 14 Feb 2019 16:13:13 - #cybersecurity #gdpr #security

What CEOs Need to Know About the Future of Cybersecurity

Infosec - Infosec Island - Until recently, Chief Executive Officers (CEOs) received information and reports encouraging them to consider information...
Thu, 14 Feb 2019 15:44:22 - #supplychain #cybersecurity #security

Adventures of Cyber Security Monitoring During 2018 U.S. Midterm Elections

Infosec - TripWire - The State of Security - With all the Russian election hacking scandals in the news during and after the 2016 Presidential election,...
Thu, 14 Feb 2019 15:44:21 - #tripwire #cybersecurity #security

2018 Was Second-Most Active Year for Data Breaches

Infosec -
Thu, 14 Feb 2019 15:44:20 - #cybersecurity #security