Stack Ranking SSL Vulnerabilities: The ROBOT Attack

Wed, 17 Jan 2018 16:58:52 +0000

At least two additional security vendors, including IBM and Palo Alto Networks, have been added to the list of vendors vulnerable to a variation on the Bleichenbacher attack called the ROBOT attack. read more

Briton Pleads Guilty to Running Malware Services

Wed, 17 Jan 2018 15:59:51 +0000

Goncalo Esteves, a 24-year-old man from the United Kingdom, has pleaded guilty to charges related to creating and running services designed to help cybercriminals develop malware that would not be detected by antivirus products. read more

Threat Actors Quickly Adopt Effective Exploits

Wed, 17 Jan 2018 15:34:41 +0000

Cybercriminals and nation state groups were quick to adopt the most effective exploits last year, a new AlienVault report reveals. read more

Crypto-Mining Attack Targets Web Servers Globally

Wed, 17 Jan 2018 15:16:29 +0000

A new malware family is targeting web servers worldwide in an attempt to ensnare them into a crypto-mining botnet, security researchers have discovered. read more

Threat Intelligence Tech Firm Anomali Raises $40 Million

Wed, 17 Jan 2018 14:46:58 +0000

Anomali, a security technology firm that offers a SaaS-based threat intelligence platform, today announced that it has raised $40 million in series D funding.  The additional funding brings the total amount raised to-date by the company to $96 million. read more

PureSec Emerges From Stealth With Security Product for Serverless Apps

Wed, 17 Jan 2018 14:38:02 +0000

Tel Aviv, Israel-based startup PureSec emerged from stealth mode on Wednesday with a security platform designed for serverless architectures and a guide that describes the top 10 risks for serverless applications. read more

Former CIA Agent Arrested With Top Secret Info

Wed, 17 Jan 2018 13:22:43 +0000

US authorities said Tuesday they had arrested a former CIA agent, Hong Kong resident Jerry Chun Shing Lee, after discovering he had an unauthorized notebook that had the identities of undercover US spies. Lee, a naturalized US citizen also known as Zhen Cheng Li, was arrested late Monday after he arrived at JFK International Airport in New York. read more

Oracle Fixes Spectre, Meltdown Flaws With Critical Patch Update

Wed, 17 Jan 2018 12:32:30 +0000

Oracle on Tuesday released its first Critical Patch Update for 2018 to deliver 237 new security fixes across its product portfolio. Over half of the addressed vulnerabilities could be remotely exploited without authentication. read more

DNS Servers Crash Due to BIND Security Flaw

Wed, 17 Jan 2018 08:25:10 +0000

Updates released by the Internet Systems Consortium (ISC) for BIND patch a remotely exploitable security flaw that has caused some DNS servers to crash. read more

Mirai Variant Targets ARC CPU-Based Devices

Tue, 16 Jan 2018 20:07:05 +0000

A newly discovered variant of the Mirai Internet of Things (IoT) botnet is targeting devices with ARC (Argonaut RISC Core) embedded processors, researchers warn. read more

Code Execution Flaw Found in Transmission BitTorrent App

Tue, 16 Jan 2018 18:58:45 +0000

Google Project Zero researcher Tavis Ormandy has discovered a critical remote code execution vulnerability in the Transmission BitTorrent client. The expert has proposed a fix, but it has yet to be implemented by the application’s developers. read more

North Korean Hackers Prep Attacks Against Cryptocurrency Exchanges: Report

Tue, 16 Jan 2018 18:46:15 +0000

Researchers Say a North Korea-Linked Hacking Campaign is Ready to Go Against South Korean Cryptocurrency Exchanges read more

Assessing Cyber and Physical Risks to Manufacturers

Tue, 16 Jan 2018 16:41:52 +0000

Manufacturers serve as critical building blocks of modern society. They are integral to the existence of the products we consume, the essential services we need, and the infrastructure on which we rely. Our reliance on them also means that, according to the U.S. read more

Preparing for NIS - Europe's First Dedicated Cybersecurity Law

Tue, 16 Jan 2018 16:24:30 +0000

In May of this year, an important new European law will come into force which will affect providers of networking and operational technology (OT) systems in vital sectors such as energy, healthcare and finance across the continent. read more