News

Cloud Data Storage Encryption and Data Protection Best Practices

• September 18, 2019 18 Sep'19

  Global cryptomining attacks use NSA exploits to earn Monero

  Security researchers tracked a very active threat group launching cryptomining attacks around the world against organizations in banking, IT services, healthcare and more.

• September 17, 2019 17 Sep'19

  Researcher finds digital certificate fraud used to spread malware

  A new certificate fraud scheme involves a threat actor impersonating company execs to purchase certs which are then resold to those looking to spread malware.

• September 16, 2019 16 Sep'19

  DerbyCon attendees and co-founder reflect on the end

  DerbyCon attendees and co-founder Dave Kennedy reflect on the legacy and future of the conference following its final event, which took place in Louisville, Ky.

• September 12, 2019 12 Sep'19

  DerbyCon panel discusses IT mistakes that need to stop

  Common security risks can be mitigated or prevented, according to a panel at DerbyCon. But users need to feel empowered to speak up, and education needs to be better.

• September 11, 2019 11 Sep'19

  FBI says $26B lost to business email compromise over last 3 years

  On the same day that 281 suspects were arrested in business email compromise stings, the FBI said worldwide losses from BEC attacks reached $26 billion over the last three years.

• September 10, 2019 10 Sep'19

  DerbyCon session tackles cyber attribution, false flag attacks

  One expert showed the crowd at DerbyCon that proper attribution of a cyberattack requires multiple indicators in order to avoid being fooled by a false flag attempt.

• September 10, 2019 10 Sep'19

  Gigamon launches platform to improve application visibility

  Application Metadata Intelligence identifies network performance, application performance, operational technology communications and security and threat detection.

• September 06, 2019 06 Sep'19

  Trustwave security platform provides visibility, control

  Trustwave Fusion is a cloud-based cybersecurity platform designed with the goal of giving users better insight into how security resources are provided and monitored.

• September 05, 2019 05 Sep'19

  Insecure Android provisioning could lead to phishing attacks

  Researchers say many -- if not most -- Android smartphones are at risk of SMS-based phishing attacks that trick users into installing malicious OTA provisioning settings.

• September 05, 2019 05 Sep'19

  Chronicle: Crimeware group takedowns 'increasingly ineffectual'

  Law enforcement takedowns of cybercrime operations may not be producing the desired results, according to an extensive, five-year study from Alphabet Inc.'s Chronicle.

• September 05, 2019 05 Sep'19

  Hackers earn nearly $2M in HackerOne's hacking event

  One hundred hackers and 75 hackers in training gathered in Las Vegas for HackerOne's hacking event to find security flaws in organizations, including Verizon Media and GitHub.

• September 05, 2019 05 Sep'19

  Awake Security adds adversarial model to security platform

  The new feature is meant to enable companies to identify attackers faster. Other updates to the security system include extending cloud capabilities to Amazon Web Services.

• September 04, 2019 04 Sep'19

  USBAnywhere vulnerabilities put Supermicro servers at risk

  Security researchers discovered BMC vulnerabilities -- dubbed USBAnywhere -- in Supermicro servers that could put systems at risk of remote attacks via virtualized USB drives.

• August 29, 2019 29 Aug'19

  Suspect in Capital One breach indicted for additional intrusions

  The alleged Capital One hacker, Paige Thompson, was charged with additional counts of fraud and abuse for stealing data from more than 30 other organizations.

• August 28, 2019 28 Aug'19

  Imperva security incident exposes cloud WAF customer data

  Imperva told its cloud WAF customers to change passwords and SSL certificates after a security incident exposed data and potentially put customers at risk for further attacks.