- Go Medieval to Keep OT Safe
When it comes to operational technology and industrial control systems, make sure you're the lord of all you survey.
- Security Vulns in Microsoft Products Continue to Increase
The good news: Removing admin privileges can mitigate most of them, a new study by BeyondTrust shows.
- Cyberattackers Focus on More Subtle Techniques
Spam has given way to spear phishing, cryptojacking remains popular, and credential spraying is on the rise.
- New EternalBlue Family Member Takes Aim at Asian Web Servers
Beapy is a new malware variant that's storming across China, leaving cryptominers in its wake.
- UVA Wins Second Consecutive National Collegiate Cyber Defense Championship
The Wahoos came out on top among 235 colleges and universities that took part in the 15-year-old competition.
- 55% of SMBs Would Pay Up Post-Ransomware Attack
The number gets even higher among larger SMBs.
- How a Nigerian ISP Accidentally Hijacked the Internet
For 74 minutes, traffic destined for Google and Cloudflare services was routed through Russia and into the largest system of censorship in the world, China's Great Firewall.
- Enterprise Trojan Detections Spike 200% in Q1 2019
Cybercriminals see greater ROI targeting businesses, which have been slammed with ransomware attacks and Trojans.
- Sensitive Data Lingers on Used Storage Drives Sold Online
Four in 10 used hard drives sold on eBay found to contain sensitive information.
- Regulations, Insider Threat Handicap Healthcare IT Security
Healthcare IoT is expanding opportunities for hackers as the sector struggles to keep up security-wise.
- Ramblings of a Recovering Academic on the So-Called Lack of Security Talent
Hiring for security is difficult, as many surveys show. But what the research doesn't explain is the "why" – and a lack of talent may not be the sole reason.
- Indeed.com: Slight Dip in Clicks on US Cybersecurity Job Listings
Meanwhile, most of the highest-paying positions pay more than $100K, according to new analysis from the job posting site.
- TA505 Abusing Legit Remote Admin Tool in String of Attacks
Russian-speaking threat group has been targeting retailers and financial institutions in the US and abroad via a spear-phishing campaign.
- 5 Security Challenges to API Protection
Today's application programming interfaces are no longer simple or front-facing, creating new risks for both security and DevOps.
- Survey Shows a Security Conundrum
A new report examines and quantifies the conflicts and challenges faced by business security leaders.
- Two Charged with Economic Espionage, GE Trade Secret Theft
A US national and Chinese national have been charged with conspiring to steal General Electric's trade secrets surrounding turbine technologies.
- Attackers Aren't Invincible & We Must Use That to Our Advantage
The bad guys only seem infallible. Use their weaknesses to beat them.
- New Twist in the Stuxnet Story
What a newly discovered missing link to Stuxnet and the now-revived Flame cyber espionage malware add to the narrative of the epic cyber-physical attack.
- Google File Cabinet Plays Host to Malware Payloads
Researchers detect a new drive-by download attack in which Google Sites' file cabinet template is a delivery vehicle for malware.
- Demonstration Showcase Brings DevOps to Interop19
Attendees will learn how orchestration and automation can be a part of network operations and security, even at smaller companies.