DHS SAYS DRONE MAKER DJI HELPING CHINA SPY ON U.S.

A memo from the U.S. Department of Homeland Security (DHS) warns that China-based Da-Jiang Innovations (DJI), one of the world’s largest drone manufacturers, has been providing information on critical infrastructure and law enforcement to the Chinese government....
SECURITY WEEK
READ MORE

WEBROOT REVEALS 2019’S NASTIEST THREATS

From ransomware strains and cryptomining campaigns that delivered the most attack payloads to phishing attacks that wreaked the most havoc, what are 2019's nastiest malware threats, identified by Webroot? Ransomware – Ransomware continued to see success by evolving a more targeted model initially adopted in previous years. SMBs remain a prime target as they struggle with limited security budget and skills. Whether its phishing attacks targeting employees or brute forcing unsecured RDP,...
SECURITY MAGAZINE
READ MORE

SENSITIVE DATA PROTECTION BEDEVILS IT SECURITY PROS

Knowing where sensitive data is located on an organization's computer systems would seem a prerequisite for sound IT security, but the vast majority of IT security practitioners say they can't count even on that fundamental premise, according to a Ponemon Institute study released Tuesday....
INFORMATIONWEEK
READ MORE

TSP BOARD STUDYING THE PRIVATE SECTOR FOR CYBERSECURITY INSIGHT

The Federal Retirement Thrift Investment Board’s Office of Enterprise Risk Management has been busy since it was first born about three years ago. The office is maturing and developing on schedule, said Jay Ahuja, FRTIB chief risk officer.  But it still has at least three more years to go before risk is fully integrated into the board’s culture and strategic decision making....
FEDERAL NEWS RADIO
READ MORE

MICROSOFT TO BUY ISRAEL-BASED CYBER SECURITY FIRM ADALLOM: REPORT

Microsoft Corp plans to acquire Israeli cyber security company Adallom for $320 million, the Calcalist financial newspaper reported on Monday.Adallom, which develops cloud security platforms, is expected to become the centre for Microsoft's cyber security business in Israel, the newspaper said.The US technology company has made several recent acquisitions in Israel, including security software developer Aorato for a reported $200 million. It also bought text analysis firm Equivio and the tec...
IBN LIVE
READ MORE

EQUIFAX BLAMES BREACH ON APACHE STRUTS FLAW

The vulnerability allows remote attackers to execute arbitrary commands via a string in a crafted Content-Type HTTP header, and was patched in March 2017. In an updated statement on its Equifax Security website, it said that it has been “intensely investigating the scope of the intrusion with the assistance of a leading, independent cybersecurity firm to determine what information was accessed and who has been impacted” and the firm determined that the attackers exploited the website...
INFOSECURITY MAGAZINE
READ MORE