The network is business-critical. Any network security threats that interfere with operations and infrastructure can have a significant effect. According to a recent study by IBM Security and the Ponemon Institute, each data breach typically costs an organization nearly $4 million. As the volume and severity of cyberattacks accelerate, understanding the biggest threats and what
Philip Choo
by Lisa Vaas British food writer and activist Jack Monroe has had her bank account drained by hijackers, despite using two-factor authentication (2FA) to protect accounts. On Friday, Monroe tweeted that her phone number had been SIM-jacked: hit with SIM swap fraud that enabled a hijacker to take over her phone number, intercept the codes
Fellow security experts gathered at MPOWER 2019 to strategize, network, and learn about the newest and most innovative ways to ward off advanced cyberattacks. This year’s attendees had a special opportunity to hear from cybersecurity thought leaders as they shared their insights on our ever-changing industry. The latest applications, workload and infrastructure designed to protect
Do you know what kind of data your streaming device may be collecting while you binge watch? Steadily, we are adopting more and more technology into our households. Our homes are becoming more interconnected, with IoT (Internet of Things) devices becoming regular parts of our lives. One of the devices that is the centerpiece of
No, it’s not a patch Tuesday. It’s the third Tuesday of the month, and as The Hacker News shared an early heads-up late last week on Twitter, Adobe today finally released pre-announced out-of-band security updates to patch a total of 82 security vulnerabilities across its various products. The affected products that received security patches today
Databricks, the big data analytics service founded by the original developers of Apache Spark, today announced that it is bringing its Delta Lake open-source project for building data lakes to the Linux Foundation and under an open governance model. The company announced the launch of Delta Lake earlier this year and even though it’s still
An Erosion trust, and a lack of situational awareness, are continuing to harm advancements in cybersecurity and digital transformation. Speaking at NTT Security’s Information Security World event in London, Thales CTO Jason Hart reflected upon the journey of 50 million users to radio, television, internet and, most recently, the Pokemon Go app. He likened this journey to the transformation of businesses
This is the Pixel 4, the handset that literally everyone saw coming. Even by Google’s standards, the handset leaked like crazy. Some was almost certainly by design as the company looked to hype up its new flagship amid slowing smartphone sales. That said, showing up for preorder on two different sites in the past few
by John E Dunn One of the flaws that Apple patched in last week’s iTunes app for Windows update was a zero-day used to spread the BitPaymer ransomware, security company Morphisec Labs has revealed. This alarming-sounding flaw is only briefly alluded to at the end of Apple’s release notes for iTunes version 12.10.1 as being
You’ve heard it once; you’ve heard it a hundred times – “secure the cloud.” But what does that phrase mean? On the surface, it’s easy to assume this phrase means using cloud-enabled security products. However, it’s much more than that. Cloud security is about securing the cloud itself through a combination of procedures, policies, and technologies
New ESET white paper released describing updates to the malware arsenal and campaigns of this group known for its supply-chain attacks Today, ESET Research releases a white paper updating our understanding of the Winnti Group. Last March, ESET researchers warned about a new supply-chain attack targeting video game developers in Asia. Following that publication, we
Security incidents occur. It’s not a matter of ‘if’ but of ‘when.’ There are security products and procedures that were implemented to optimize the IR process, so from the ‘security-professional’ angle, things are taken care of. However, many security pros who are doing an excellent job in handling incidents find effectively communicating the ongoing process
GoFundMe has made its name primarily as a platform for individuals to create fundraisers for personal causes — a service that has seen hundreds of campaigns go viral through social media to raise collectively well over $5 billion in funding to date. Now, the startup is taking the next step in its ambition to build
Researchers have exposed the underhanded methods of a threat group responsible for unleashing a string of supply-chain attacks. Winnti Group has been targeting the gaming industry for nearly a decade. Their preferred mode of attack is to compromise game developers, insert backdoors into a game’s build environment, and then have their malware distributed as legitimate
Ransomware attacks on hospitals in Alabama forced a healthcare system to turn patients away last week. The data and systems at three hospitals were held hostage until an undisclosed amount of ransom was paid, according to a press release. The hospitals gave into the demands despite another possible solution: reverting to a complete back-up of
As you are likely already aware, Epic Games is pulling a massive PR stunt that has shrunk the world’s most popular game down to a single black hole. As part of Fortnite’s Season 10 live event, called “The End”, the entire Battle Royale Island was sucked into a black hole, with every Fortnite social media
by Lisa Vaas A predator has confessed to stalking and attacking a young Japanese pop star by zooming in on the reflections in her eyes from photos she posted on social media. Oriental Daily reports that 21-year-old Japanese idol Matsuoka Nagato was attacked on her way home by someone who covered her head with a
Recently, Billington hosted their 10th annual Cybersecurity Summit, one of the premier cybersecurity conferences where industry leaders and government officials join together to discuss the current state of cybersecurity. Several key themes presented themselves throughout the two-day summit, including cloud, cybersecurity legislation, and DHS’s Continuous Diagnostics and Mitigation program (CDM). Kevin Cox, the program manager
ESET experts describe how they trained a machine-learning model to recognize a handful of unwanted UEFI components within a flood of millions of harmless samples UEFI (Unified Extensible Firmware Interface) security has been a hot topic for the past few years, but, due to various limitations, very little UEFI-based malware has been found in the
Today’s CISOs operate in an overly intensive environment. As the ones who are tasked with the unenviable accountability for failed protection and successful breaches, they must relentlessly strive to improve their defense lines with workforce education, training their security teams and last but definitely not least — looking for products that will upgrade and adjust
Permitting falsehood in political advertising would work if we had a model democracy, but we don’t. Not only are candidates dishonest, but voters aren’t educated, and the media isn’t objective. And now, hyperlinks turn lies into donations and donations into louder lies. The checks don’t balance. What we face is a self-reinforcing disinformation dystopia. That’s
New research has found that only a quarter of Americans know that surfing the internet in private browsing mode only prevents other users of the same computer from seeing what you’ve been up to online. A survey conducted in June by the Pew Research Center asked 4,272 adults living in the United States ten digital knowledge questions. When asked
Part of Samsung’s reboot of the Galaxy Fold was the announcement of a Premiere Service. Along with a reinforced version of the phone and a lot more warning labels, the company announced that it would also be a 24/7 care service…just in case something happened with the device. I had some issues with my in
by John E Dunn Some types of two-factor authentication (2FA) security can no longer be guaranteed to keep the bad guys out, the FBI is reported to have warned US companies in a briefing note circulated last month. FBI reporting identified several methods cyber actors use to circumvent popular multi-factor authentication techniques in order to
Someone recently asked me what I wanted for Christmas this year, and I had to think about it for a few minutes. I certainly don’t need any more stuff. However, if I could name one gift that would make me absolutely giddy, it would be getting a chunk of my privacy back. Like most people,
We sat down with internet pioneer and Farsight Security CEO Dr. Paul Vixie, who co-invented some of the services that are central to the ‘Net’s fabric, to discuss a range of issues affecting security and privacy The contributions that Dr. Paul Vixie has made to some of the foundational technologies underpinning the internet need little
Until now, I’m sure you all might have heard of the SimJacker vulnerability disclosed exactly a month ago that affects a wide range of SIM cards and can remotely be exploited to hack into any mobile phone just by sending a specially crafted binary SMS. If you are unaware, the name “SimJacker” has been given
During an event at the United Nations Delegates Dining Room in New York City, IBM unveiled the winners to its annual Call for Code Global Challenge. The competition, which is targeted at computing solutions for global problems, crowned five winners, ranging from first responders to health care info. Prometeo took the top price for its
An audit of Mississippi government institutions has revealed an alarming lack of compliance with standard cybersecurity practices and with the state’s own enterprise security program. A survey of 125 state agencies, boards, commissions, and universities conducted by the Office of the State Auditor (OSA) revealed that only 53 had a cybersecurity policy in place. Eleven
Hello and welcome back to Startups Weekly, a weekend newsletter that dives into the week’s noteworthy news pertaining to startups and venture capital. Before I jump into today’s topic, let’s catch up a bit. I’ve been on a bit of a startup profile kick as of late. Last week, I was tired from Disrupt. Before