home.aspx

. home.aspx home.aspx

ARCHIVED NEWS

GREYENERGY POTENTIAL SUCCESSOR OF BLACKENERGY

Oct 19, 2018

GreyEnergy, a subgroup of the advanced persistent threat (APT) group known as BlackEnergy, has been attacking the energy sector for the past three years, according to ESET. Back in December of 2015, when approximately 230,000 people suffered a blackout after the APT group BlackEnergy attacked a powe...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54945494

FIN FIRMS: LOOK TO MOBILE, SOCIAL FOR COMMS RISKS

Oct 19, 2018

A survey of nearly 200 financial services compliance individuals conducted throughout February and March 2018 found that organizations are struggling to keep pace with evolving technologies and have fallen behind when it comes to oversight of electronic communications, according to Smarsh. Results o...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54955495

HOW FACEBOOK IS USING WAR ROOM TO FIGHT ELECTION INTERFERENCE

Oct 19, 2018

Facebook announced Oct. 18 that the company has set up a war room at its offices in Menlo Park, Calif., to monitor efforts to interfere with national elections in the United States and Brazil. According to the announcement, the war room is staffed by more than two dozen experts from throughout the c...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54965496

ORACLE PATCHES 301 VULNERABILITIES IN OCTOBER UPDATE

Oct 18, 2018

Oracle's final Critical Patch Update (CPU) for 2018 is now available, patching 301 vulnerabilities spread across Oracle's product portfolio. Of the 301 vulnerabilities, 49 are rated with a CVSS (Common Vulnerabilities Security Scoring) score of 9.0 or higher, with only a single issue garneri...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54935493

SHIELDX INTEGRATES INTENTION ENGINE INTO ELASTIC SECURITY PLATFORM

Oct 17, 2018

ShieldX announced its new Elastic Security Platform on Oct. 17 providing organizations with Docker container-based data center security, that uses advanced machine learning to determine intent. At the core of the Elastic Security Platform is a technology that ShieldX calls the Adaptive Intention Eng...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54895489

MCAFEE EXTENDS MVISION SECURITY PLATFORM WITH EDR, CLOUD PROTECTION

Oct 17, 2018

McAfee kicked off its annual MPOWER conference on Oct. 17 announcing new updates to its Mvision cyber-security product portfolio, The new updates include the Mvision EDR (Endpoint Detection and Response) offering that provides new endpoint security capabilities. The new Mvision Cloud service brings ...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54905490

FBI INVESTIGATES ATTACK ON CRITICAL WATER UTILITY

Oct 17, 2018

According to a media release from Onslow Water and Sewer Authority (ONWASA) issued on October 15, 2018, a critical water utility in North Carolina was targeted in a cyber-attack. Federal and state officials are now working with the water utility as part of the investigation into the attack on some o...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54915491

APPLE ROLLS OUT GDPR-LIKE FEATURES FOR U.S. USERS

Oct 17, 2018

New privacy rules allow U.S. customers to download all information Apple has on them, plus it adopts new transparency practices, essentially mirroring practices in the EU. When Europe’s GDPR (General Data Privacy Regulation) took effect in May 2018, Apple promised its users in other areas, not...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54925492

GITHUB RELEASES NEW WORKFLOW TOOLS, 'OCTOVERSE' REPORT

Oct 16, 2018

The global open source code repository also released new security tools with the GitHub Security Advisory API, new ways to learn across teams with GitHub Learning Lab for organizations, and other items. Oh yes, it also released the annual "State of the Octoverse" report. GitHub held its Un...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54845484

INSURER ANTHEM WILL PAY RECORD $16M FOR MASSIVE DATA BREACH

Oct 16, 2018

The nation's second-largest health insurer has agreed to pay the government a record $16 million to settle potential privacy violations in the biggest known health care hack in U.S. history, officials said Monday. The personal information of nearly 79 million people — including names, birt...

SECURITYWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54855485

BUG IN NEW IOS LETS ATTACKER ACCESS IPHONE PICS

Oct 16, 2018

A new vulnerability discovered in Apple’s latest iOS, 12.0.1, released last week, allows an attacker with physical access to an iPhone entry into photos on a locked phone, according to Jose Rodriguez, a Spanish security researcher. While the bypass bug, reported by The Hacker News, does requir...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54865486

EXECS FEAR ORGS UNPREPARED FOR INCIDENT RESPONSE

Oct 16, 2018

Executive-level security professionals fear their organizations are not well positioned to respond to a cyber-attack, according to the results of a new poll from Deloitte. In a poll of more than 3,150 security professionals across all industries and sectors taken during a webcast on cyber preparedne...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=54885488

TRENDING NEWS

DRIDEX/LOCKY OPERATORS UNLEASH NEW MALWARE IN RECENT ATTACK

Nov 16, 2018

The threat actor(s) behind many Dridex and Locky campaigns have been using a new Remote Access Trojan (RAT), Proofpoint security researchers warn. Known as TA505, the attackers have been using malware dubbed tRat, which was written in Delphi and is modular in nature. The new piece of malware was fir...

SECURITYWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55575557

INFOSECNA18: NSA WEIGHS IN ON SOC DEFENSE

Nov 15, 2018

In his opening keynote presentation kicking off the second day of this year’s Infosecurity North America conference in New York, the technical director of cybersecurity threat operations center for the NSA, Dave Hogue, talked about how innovations in policy, technology, and people can lead to ...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55585558

FIREFOX ALERTS USERS WHEN VISITING BREACHED SITES

Nov 15, 2018

Mozilla has added a new feature to Firefox to alert users when they visit a website that has been part of a data breach in the past. Earlier this year, the Internet organization launched Firefox Monitor, a service to inform users if their accounts have been part of data breaches. Enjoying support fo...

SECURITYWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55595559

REPORT SHOWS INCREASE IN EMAIL ATTACKS USING .COM FILE EXTENSIONS

Nov 15, 2018

Leesburg, VA-based anti-phishing firm Cofense (formerly PhishMe) has discovered an uptick in the use of .com file extensions in phishing emails. The .com file extension designated executable files in DOS and Windows 95, 98 and Me. It has been replaced by .exe in later versions of the operating syste...

SECURITYWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55605560

TEXT MESSAGE DATABASE REPORTEDLY LEAKED PASSWORD RESETS

Nov 15, 2018

A massive database managing millions of text messages was reportedly discovered unsecured, exposing sensitive information such as password resets and two-factor security codes. Vovox, a San Diego-based communications company maintained the server, which was left unprotected by password, offering any...

CNET
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55615561

NEARLY 70 PERCENT OF SMBS EXPERIENCE CYBER ATTACKS

Nov 14, 2018

The 2018 State of Cybersecurity in Small and Medium Size Businesses study, conducted by the Ponemon Institute, sponsored by Keeper Security, revealed that small businesses increasingly face the same cybersecurity risks as larger companies, but only 28 percent rate their ability to mitigate threats, ...

SECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55505550

INFOSECNA18: BUILDING A SECURITY AWARENESS PROGRAM

Nov 14, 2018

At the second annual Infosecurity North America conference at the Jacob Javits Convention Center in New York, Tom Brennan, US chairman, CREST International, moderated a panel called Securing the Workforce: Building, Maintaining and Measuring an Effective Security Awareness Program to Drive a Company...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55535553

APPLE IPHONE HACKED AT MOBILE PWN2OWN 2018

Nov 14, 2018

Once again, security researchers have demonstrated at a Pwn2Own event that fully patched mobile devices are at risk from zero-day vulnerabilities. At Mobile Pwn2Own 2018, held in Tokyo Nov 13-14, sponsor Trend Micro's Zero Day Initiative (ZDI) awarded a total of $325,000 to security researchers....

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55545554

APPLE'S SAFARI TESTS 'NOT SECURE' WARNING FOR UNENCRYPTED WEBSITES

Nov 14, 2018

Apple's Safari team, following Chrome's lead, has begun warning people when they're visiting websites that aren't protected by HTTPS encryption. The feature for now is only in Safari Technology Preview 70, a version of the web browser Apple uses to test technology it typically brings...

CNET
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55555555

DESPITE RAISED AWARENESS, WORKER CYBER SECURITY PRACTICES AREN'T IMPROVING

Nov 13, 2018

Even though there has lately been a lot of talk about cybersecurity awareness amongst employees, their habits aren’t getting any better. As a matter of fact, SailPoint Technologies’ new report says they are actually getting worse. The enterprise identity governance company issued a repor...

ITPROPORTAL
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55445544

SAP PATCHES CRITICAL VULNERABILITY IN HANA STREAMING ANALYTICS

Nov 13, 2018

SAP this week published its November 2018 set of security patches, which include 11 new Security Patch Day Notes, along with 3 updates for previously released notes. This month’s Security Notes include a Hot News note, five notes rated High, and eight notes considered Medium risk. The most imp...

SECURITYWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55455545

TWISTLOCK IMPROVES CLOUD-NATIVE SECURITY WITH DISCOVERY TOOL

Nov 13, 2018

There is a simple truism in much of IT, and that is that organizations can't manage what they're not aware of. As organizations increasingly make use of distributed teams that use cloud-native services, there is a nontrivial risk of application sprawl. On Nov. 13, container security vendor T...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=55465546

SPOTLIGHT

Global cybersecurity in 2017: What’s next

Join Passcode on Dec. 14, 8 - 9:30 a.m. to explore the best ideas for how nations can effectively work together to improve cybersecurity, hear about emerging threats that demand the world's attention, and discover the latest approaches for outsmarting criminal hackers.

RESOURCES

Faster and Smarter Incident Response with Artificial Intelligence

video

Overwhelming amounts of data is one of the major challenges incident response teams battle daily. Artificial intelligence can help – analyzing incident details, threat intelligence, historical c...
READ MORE

FireEye Endpoint Security Achieves Highest Testing Results Amongst NGAV Products

blog article

In the most recent AV-Comparatives Real-World Protection Test results, FireEye Endpoint Security achieved the highest detection rate among next-gen anti-virus vendors with zero false positives. FireEy...
READ MORE

Events

2018 BLACK HAT HACKER SURVEY REPORT: WHAT HACKERS REALLY THINK ABOUT YOUR CYBER DEFENSES

November 27-27, 2018

Curious about what hackers really think of your cyber defenses? Thycotic’s new 2018 Black Hat Conference survey conducted in Las Vegas in August reveals some disturbing answers. 75% hackers say companies fail at applying the principle of least privilege. 50% of hackers say they easily compromi...

DESTRUCTIVE CYBERATTACKS ARE ON THE RISE

November 27-27, 2018

According to the world’s top incident response (IR) professionals, politically motivated cyberattacks from nation-state actors have contributed to an ominous increase in destructive attacks: attacks that are tailored to specific targets, cause system outages, and destroy data in ways designed ...

ENTERPRISE SECURITY & RISK MANAGEMENT SUMMIT 2018

November 21-21, 2018

Cyber security is fast becoming one of the most critical issues in the IT world. As an increasing number of businesses are going digital and with cyber criminals becoming far more prolific and dangerous, the need for steadfast cyber security solutions has never been so important.

AINS 2018 IEEE CONFERENCE ON APPLICATIONS, INFORMATION & NETWORK SECURITY

November 21-22, 2018

5G promises to deliver enhanced mobile broadband (eMBB), massive machine type communication (mMTC), and ultra-reliable low latency communication (URLLC). To support mMTC and URLLC, 5G needs to carry out computations closer to subscribers at the “edge” instead of the cloud. This turns 5G ...