Information Security Wire

Woodstock Wire: Information Security Wire

Anonymous, aiming for relevance, spins old data as new hacks

Infosec - CyberScoop - Anonymous, the once-formidable hacking collective, continued its transformation into a cohort of social media opportunists over...
Thu, 04 Jun 2020 12:14:15 - #ddos #cybersecurity #security

26 IoT Flaws Enable Denial-of-Service Attacks, Privilege Escalation

Infosec - Dark Reading - Research details vulnerabilities in the Zephyr Real Time Operating Systems and MCUboot, both used in IoT devices and sensors.
Thu, 04 Jun 2020 12:14:14 - #iot #security

The Ultimate Job for a Network Defender

Infosec - Recorded Future - Our guest this week is Rick Howard, chief analyst and chief security officer at the CyberWire. Rick's career included stops...
Thu, 04 Jun 2020 12:14:13 - #usarmy #paloaltonetworks #threatintelligence #security

How AI and Automation Can Help Bridge the Cybersecurity Talent Gap

Infosec - Dark Reading - Without the right tools and with not enough cybersecurity pros to fill the void, the talent gap will continue to widen.
Thu, 04 Jun 2020 12:14:12 - #cybersecurity #ai #security

How to Create a Culture of Kick-Ass DevSecOps Engineers

Infosec - The Hacker News - Much like technology itself, the tools, techniques, and optimum processes for developing code evolve quickly. We humans have...
Thu, 04 Jun 2020 12:14:10 - #security

VMware addresses Fusion flaw introduced in the attempt to fix CVE-2020-3950 issue

Infosec - Security Affairs - VMware has released an update to address a privilege escalation flaw in VMware for the macOS version of Fusion that was introduced...
Thu, 04 Jun 2020 12:14:08 - #vmware #security

8 ways to get more life out of an old SIEM

Infosec - CSO Online - As the COVID-19 pandemic drags global economies to a halt, enterprises are having to tighten their belts across the board, including...
Thu, 04 Jun 2020 12:14:07 - #cybersecurity #coronavirus #security

The team behind the Joomla CMS discloses a data breach

Infosec - Security Affairs - Maintainers at the Joomla open-source content management system (CMS) announced a security breach that took place last week.
Thu, 04 Jun 2020 12:14:06 - #cloud #aws #databreach #security

Tripwire Patch Priority Index for May 2020

Infosec - TripWire - The State of Security - Tripwire's May 2020 Patch Priority Index (PPI) brings together important vulnerabilities from Microsoft, Adobe,...
Thu, 04 Jun 2020 12:14:04 - #microsoft #vmware #tripwire #saltstack #security

Phishing Attacks Continue To Find Fuel In A Global Pandemic

Media - - Google issued a stark warning last week about the state of cybersecurity: Phishing attacks are on the rise and continue to take...
Thu, 04 Jun 2020 11:34:53 - #cybersecurity #phishing #coronavirus #ventilator #security

Over 100K+ WordPress sites using PageLayer plugin exposed to hack

Infosec - Security Affairs - Two security flaws in the PageLayer WordPress plugin can be exploited to potentially wipe the contents or take over WordPress...
Thu, 04 Jun 2020 00:13:27 - #wordpress #threatintelligence #security

API Security and Hackers: What's the Need?

Infosec - Security Affairs - API Security - There is a considerable demand for data-centric projects, that is why companies have quickly opened their data...
Thu, 04 Jun 2020 00:13:26 - #ddos #antivirus #firewall #security

AWS Shield Threat Landscape report is now available

Enterprise - Amazon AWS Blog - AWS Shield is a managed threat protection service that safeguards applications running on AWS against exploitation of application...
Wed, 03 Jun 2020 23:13:03 - #ddos #hadoop #cloud #aws #threatprotection #threatintelligence #security

Okta Launches New Native Identity Integration with Amazon Web Services

Enterprise - VMblog - Okta, Inc. announced a new native integration with Amazon Web Services Single Sign-On (AWS SSO), providing Okta customers with improved...
Wed, 03 Jun 2020 20:13:05 - #cloud #aws #okta #security

Israeli researchers helped thwart potentially massive cyberattack, study shows

Media - Fox - Tech - Israeli researchers have helped thwart a potentially massive cyberattack, a study showed.
Wed, 03 Jun 2020 17:36:16 - #security

Career Choice Tip: Cybercrime is Mostly Boring

Infosec - Krebs on Security - When law enforcement agencies tout their latest cybercriminal arrest, the defendant is often cast as a bravado outlaw engaged...
Wed, 03 Jun 2020 16:35:45 - #cybersecurity #botnet #domains #security

How GitHub untangled itself from the 'Octopus' malware that infected 26 software projects

Infosec - CyberScoop - For GitHub, not all reports about malicious software on its platform are of equal importance.
The company behind the popular software...
Wed, 03 Jun 2020 16:35:44 - #supplychain #cybersecurity #security

Cisco Announces Patches to SaltStack

Infosec - Dark Reading - The patches came after Cisco was notified by the Salt Open Core team that the vulnerabilities and updates were available.
Wed, 03 Jun 2020 16:35:43 - #cisco #security

Study: Pandemic Boosts Cybersecurity Demand

Infosec - ISC2 Blog - Demand is up for cybersecurity solutions and services as businesses try to cope with the effects of the COVID-19 pandemic. In a survey...
Wed, 03 Jun 2020 16:35:42 - #cybersecurity #coronavirus #security

Facebook Announces Messenger Security Features that Don't Compromise Privacy

Infosec - Schneier on Security - Note that this is "announced," so we don't know when it's actually going to be implemented.

Facebook today announced...
Wed, 03 Jun 2020 14:13:03 - #android #machinelearning #security

Cybersecurity: Half of employees admit they are cutting corners when working from home

Enterprise - ZDNet News - Distractions while working from home, pressure to hit deadlines and using personal devices are all creating additional security...
Tue, 02 Jun 2020 12:08:12 - #cybersecurity #security

How Okta + AWS SSO Simplifies Admin and Adds CLI Support

Infosec - Okta Blog - Millions of users across an array of enterprises depend on the cloud infrastructure of Amazon Web Services (AWS) and the seamless...
Mon, 01 Jun 2020 14:36:13 - #cloud #aws #devops #okta #security

Hackers Compromise Cisco Servers Via SaltStack Flaws

Infosec - Threatpost - Attackers compromised six Cisco VIRL-PE servers that are affected by critical SaltStack vulnerabilities.
Mon, 01 Jun 2020 14:36:11 - #cisco #saltstack #security

Do you have an acceptable use policy for your VPN?

Infosec - Barracuda - Remote work is not new, but no one can deny that it has expanded significantly over the past few months. An April CNBC/Change Research...
Mon, 01 Jun 2020 14:36:10 - #cybersecurity #firewall #security

Cloud-based cyber-attacks flaring up during coronavirus pandemic

Infosec - The Daily Swig - Cybercriminals shift focus in an attempt to capitalize on home-working trend
Mon, 01 Jun 2020 14:36:08 - #cybersecurity #coronavirus #security

A New Free Monitoring Tool to Measure Your Dark Web Exposure

Infosec - The Hacker News - Last week, application security company ImmuniWeb released a new free tool to monitor and measure an organization's exposure...
Mon, 01 Jun 2020 14:36:07 - #cybersecurity #security

Business Continuity Requires Infrastructure Continuity in Times of Remote Working

Infosec - TripWire - The State of Security - Over the last few weeks, most organisations have had to transition to enable their employees to work remotely....
Mon, 01 Jun 2020 14:36:06 - #tripwire #security

Microsoft 365 Security Add-on Now Available for Blackpoint Cyber's 24/7 Managed Detection and Response Service

Globe Newswire - Technology - New service adds monitoring, detection and security policy enforcement to highly targeted Microsoft 365 environments New service...
Mon, 01 Jun 2020 14:36:04 - #microsoft #security

RiskIQ Creates Complimentary COVID-19 Internet Intelligence Gateway to Fight Pandemic of Cybercrime

Globe Newswire - Technology - Microsite to enable the security community during crisis Microsite to enable the security community during crisis
Mon, 01 Jun 2020 14:36:01 - #cybersecurity #riskiq #coronavirus #security

Okta Announces Strong First Quarter Results

Business Wire - Okta, Inc. (NASDAQ: OKTA), the leading independent provider of identity for the enterprise, today announced financial results for its first quarter...
Mon, 01 Jun 2020 14:35:59 - #okta #security

FedEx Rapidly Deploys the Okta Identity Cloud to Secure its Remote and Essential Workforce

Business Wire - Okta, Inc. (NASDAQ:OKTA), the leading independent provider of identity for the enterprise, today announced FedEx (NYSE: FDX) has successfully...
Mon, 01 Jun 2020 14:35:58 - #coronavirus #okta #security

Okta Launches New Native Identity Integration with Amazon Web Services to Improve Security, Simplify User Experience, and Expand Automation Capabilities for Large, Complex Organizations

Business Wire - Okta, Inc. (NASDAQ:OKTA), the leading independent provider of identity for the enterprise, today announced a new native integration with Amazon...
Mon, 01 Jun 2020 13:13:50 - #cloud #aws #okta #security

Gartner Names CloudKnox Security a 2020 Cool Vendor in IAM and Fraud Detection

Business Wire - CloudKnox Security, provider of the only cloud permissions management platform for hybrid and multi-cloud environments, today announced it has...
Mon, 01 Jun 2020 13:13:48 - #iaas #security

Google Reports Resurgence In Pandemic Hacking, Phishing

Media - - Google's security experts had their hands full in April, as its Threat Analysis Group (TAG) emailed 1,755 warnings to users whose...
Sun, 31 May 2020 21:34:48 - #cybersecurity #phishing #coronavirus #security

Automated Threat Remediation in AWS with Stealthwatch Cloud

Enterprise - Cisco Blogs - Stealthwatch Cloud is first and foremost known for its overall visibility and high fidelity security threat detection. These detections...
Sun, 31 May 2020 20:36:06 - #cisco #cloud #aws #threatdetection #security

How NDR protects your network from cyberthreats

Enterprise - Network World News - Three steps to finding a network detection and response product that prevents, detects, investigates, identifies, responds...
Sun, 31 May 2020 20:35:50 - #cybersecurity #security

Microsoft warns about ongoing PonyFinal ransomware attacks

Infosec - Security Affairs - Microsoft is warning organizations to deploy protections against a new strain of PonyFinal ransomware that has been in the...
Sun, 31 May 2020 19:35:57 - #microsoft #cybersecurity #coronavirus #security

Moving to the Cloud? Okta Gets You There Quickly and Safely

Infosec - Okta Blog - According to IDC, cloud spend is out-pacing non-cloud spend by 8x. The same report estimates that half a trillion dollars will be...
Sun, 31 May 2020 19:35:56 - #atlassian #okta #security

Cloud Security Architect Proves Hardest Infosec Role to Fill

Infosec - Dark Reading - Nearly 70% of businesses struggle to recruit, hire, and retain cybersecurity talent, and many link security incidents to lack...
Sun, 31 May 2020 19:35:55 - #cybersecurity #security

Email scam aims to drop Dridex on machines by impersonating FedEx, UPS

Infosec - CyberScoop - As more Americans rely on package deliveries during the coronavirus pandemic, scammers are trying to capitalize on the tracking...
Sun, 31 May 2020 19:35:54 - #microsoft #datacenter #cybersecurity #threatintelligence #coronavirus #security

Adjusting to the new security realities of a remote workforce

Infosec - CyberScoop - CIOs and CISOs have been under intense pressure to meet the needs of homebound workers, while simultaneously needing to take added...
Sun, 31 May 2020 19:35:52 - #cybersecurity #coronavirus #security

GDPR Enforcement Loosens Amid Pandemic

Infosec - Dark Reading - The European Union has given some organizations more breathing room to remedy violations, yet no one should think regulators are...
Sun, 31 May 2020 19:35:51 - #gdpr #coronavirus #security

Microsoft Shares PonyFinal Threat Data, Warns of Delivery Tactics

Infosec - Dark Reading - PonyFinal is deployed in human-operated ransomware attacks, in which adversaries tailor their techniques based on knowledge of...
Sun, 31 May 2020 19:35:50 - #microsoft #cybersecurity #security

How to Pay a Ransom: A Step-By-Step Guide for Something You'd Never Do

Infosec - Dark Reading - Even prior to the COVID-19 pandemic, ransomware attacks were on the rise and becoming more expensive. Now your, um, friend's organization...
Sun, 31 May 2020 19:35:49 - #cybersecurity #coronavirus #security

What the World's Elite Protectors Teach Us about Cybersecurity

Infosec - Dark Reading - How to protect anyone and anything, from the perspective of a career Secret Service agent and former special operations marine.
Sun, 31 May 2020 19:35:48 - #cybersecurity #security

Accurately Calculate Cyber Risk With the Threat Category Risk Framework

Infosec - Recorded Future - Risk is a fundamental concept in cybersecurity. Unfortunately, the most commonly used cybersecurity frameworks - the Diamond...
Sun, 31 May 2020 19:35:47 - #cybersecurity #lockheedmartin #databreach #threatintelligence #security

Shodan founder John Matherly on IoT security, dual-purpose hacking tools, and information overload

Infosec - The Daily Swig - Once described as one of the most dangerous sites on the internet, Shodan is now a staple in the security professional's toolkit
Sun, 31 May 2020 19:14:14 - #iot #security

Check Point Software Technologies Appoints New Board Chairman and Lead Independent Director

Globe Newswire - Check Point(r) Software Technologies Ltd. (NASDAQ: CHKP), a leading provider of cyber security solutions globally, today announced that Vice...
Sun, 31 May 2020 19:14:12 - #cybersecurity #security

"Father of SSL" and Public-Key Cryptography Co-Inventor Headline Beyond Identity's Technical Advisory Board

Globe Newswire - Technology - CISOs of Koch Industries and Aflac Round Out All-Star Team of Advisers for Passwordless Identity Management Pioneer CISOs of Koch...
Sun, 31 May 2020 19:14:06 - #identity #security

Black Hat USA Announces Briefings for 2020 Virtual Event Featuring New Mobile Research, Election Security and Healthcare Vulnerabilities

Globe Newswire - Black Hat, the world's leading producer of information security events, has revealed its Briefings lineup for the 2020 virtual conference and...
Sun, 31 May 2020 19:14:05 - #android #security