- 49 Million Instagram Influencer Records Exposed in Open Database
An AWS-hosted database was configured with no username or password required for access to personal data.
- To Narrow the Cyber Skills Gap with Attackers, Cut the Red Tape
Attackers are getting further ahead, and entrenched corporate rules shoulder much of the blame.
- KnowBe4 Focuses on Security Culture with CLTRe Acquisition
The acquisition solidifies KnowBe4's European presence and shows a focus on building and measuring security culture.
- Old Threats Are New Again
They may look familiar to you, and that isn't a coincidence. New threats are often just small twists on old ones.
- Data Security: Think Beyond the Endpoint
A strong data protection strategy is essential as data moves across endpoints and in the cloud.
- TeamViewer Admits Breach from 2016
The company says it stopped the attack launched by a Chinese hacking group.
- DHS Warns of Data Theft via Chinese-Made Drones
The drones are reportedly built with parts that can compromise organizations' data and share it on a server accessible to the Chinese government.
- New Trickbot Variant Uses URL Redirection to Spread
Switch in tactic is the latest attempt by operators of the prolific banking Trojan to slip past detection mechanisms.
- 97% of Americans Can't Ace a Basic Security Test
Still, a new Google study uncovers a bit of good news, too.
- Financial Sector Under Siege
The old take-the-money-and-run approach has been replaced by siege tactics such as DDOS attacks and land-and-expand campaigns with multiple points of persistence and increased dwell time.
- Killer SecOps Skills: Soft Is the New Hard
The sooner we give mindsets and tool sets equal bearing, the better. We must put SOC team members through rigorous training for emergency situations.
- 7 Signs of the Rising Threat of Magecart Attacks in 2019
Magecart attacks continue to grow in momentum. Here are the stats and stories that show what's behind the mayhem.
- How a Manufacturing Firm Recovered from a Devastating Ransomware Attack
The infamous Ryuk ransomware slammed a small company that makes heavy-duty vehicle alternators for government and emergency fleet. Here's what happened.
- Black Hat Q&A: Bruce Schneier Calls For Public-Interest Technologists
Ahead of his 2019 Black Hat USA talk, cybersecurity luminary Bruce Schneier explains why it's so important for tech experts to be actively involved in setting public policy.
- Artist Uses Malware in Installation
A piece of 'art' currently up for auction features six separate types of malware running on a vulnerable computer.
- Q1 2019 Smashes Record For Most Reported Vulnerabilities in a Quarter
Once again, a high-proportion of the reported flaws have no current fix, according to Risk Based Security.
- DevOps Repository Firms Establish Shared Analysis Capability
Following an attack on their users, and their shared response, Atlassian, GitHub, and GitLab decide to make the sharing of attack information a permanent facet of their operations.
- When Older Windows Systems Won't Die
Microsoft's decision to patch unsupported machines for the critical CVE-2019-0708 flaw is a reminder that XP, 2003, and other older versions of Windows still run in some enterprises.
- Exposed Elasticsearch Database Compromises Data on 8M People
Personal data exposed includes full names, physical and email addresses, birthdates, phone numbers, and IP addresses.
- A Trustworthy Digital Foundation Is Essential to Digital Government
Agencies must take steps to ensure that citizens trust in the security of government's digital channels.