HOW ENTERPRISES CAN AVOID THE RYUK RANSOMWARE WITH RIGHT STRATEGY

During the holiday period between Christmas and New Year’s in 2018, workers at a Tribune Co. newspaper location in South Florida found out that they couldn’t upload late-breaking sports scores to the portion of their CMS that handles printing and distribution. Later, other newspapers in the Tribune chain discovered other problems related to the printing and distribution of their papers, as did the Los Angeles Times, which used to be part of the Tribune group but still uses the printi...
EWEEK
READ MORE

75 PERCENT OF HOSPITALS AND CLINICS ARE WORRIED ABOUT HEALTHCARE.GOV HACKS

A major concern about Obamacare is that the online swap of patient information between providers and the federal government's data hub will jeopardize consumers' privacy and security, according to a new study by the Ponemon Institute....
NEXTGOV
READ MORE

HACKERS CAN EXECUTE CODE ON WINDOWS VIA DNS RESPONSES

One of the 62 vulnerabilities patched by Microsoft with the October security updates is a critical Windows flaw that allows remote attackers to execute arbitrary code on a targeted machine via specially crafted DNS responses....
SECURITY WEEK
READ MORE

ENERGY, UTILITIES ATTACKS INSIDE IT NETWORKS RISE

According to a new report published by Vectra, there is a key distinction between attacks that probe IT networks for information about critical infrastructure and those attacks that actually target industrial control systems (ICSs). The 2018 Spotlight Report on Energy and Utilities found that most cyber-attacks against energy and utilities firms occur and succeed inside enterprise IT networks, not in the critical infrastructure. Given these findings, detecting hidden threat behaviors inside ente...
INFOSECURITY MAGAZINE
READ MORE

FINNISH R&D AND UTILITIES IN LINE OF CYBER ESPIONAGE FIRE, SAY SECURITY POLICE

Finnish research and development, as well as critical infrastructure, are being targeted by state-backed cyber espionage attacks, says report. Foreign states are attempting to steal information about Finland’s critical infrastructure and product development, Finnish security intelligence service Supo warned in its annual report for 2017. Furthermore, the report revealed that in 2017 it saw several cases where it was obvious that an intrusion had the systematic backing of a foreign power. &...
COMPUTER WEEKLY
READ MORE

HOW TO SOLVE INFOSEC PROBLEMS WITH CREATIVE SOLUTIONS

Speaking at BSides San Francisco today Katie Ledoux, manager of trust and security governance at Rapid7, presented a session exploring some creative solutions to infosec problems. Ledoux said that when fixing problems “managing little fires without losing sight of long-term goals is an issue that anyone who has a job needs to deal with” but in infosec, she says it is particularly challenging as “much of our work is reactive and time-sensitive.” In Ledoux's experience,...
INFOSECURITY MAGAZINE
READ MORE