SNMP Authentication Bypass Plagues Numerous Devices

Fri, 28 Apr 2017 06:27:47 +0000

The Simple Network Management Protocol (SNMP) embedded in some Internet connected devices allows an attacker to bypass authentication by simply sending random values in specific requests, security researchers have discovered. read more

FIN7 Hackers Change Phishing Techniques

Fri, 28 Apr 2017 06:24:24 +0000

A recently uncovered threat group referred to as FIN7 has adopted new phishing techniques and is now using hidden shortcut files (LNK files) to compromise targets, FireEye security researchers reveal. read more

Get Your Security in Shape for the Public Cloud

Thu, 27 Apr 2017 14:14:04 +0000

Summer will be here before we know it and for many that means getting off the couch and in shape, but you need a workout program that’s right for you. Boot camp, 20-minute abs, high-intensity interval training, you name it – there are a lot of options. Just make sure you pick one that fits your needs and delivers results or be ready to make a switch.   read more

State-Affiliated Hackers Responsible for Nearly 1 in 5 External Data Breaches: Verizon DBIR

Thu, 27 Apr 2017 13:58:13 +0000

The Verizon Data Breach Investigations Report (DBIR) is industry's go-to analysis of security incidents and successful breaches over the previous year. The latest report was published Thursday. read more

DoD Launches "Hack the Air Force" Bug Bounty Program

Thu, 27 Apr 2017 09:05:43 +0000

Following the success of the “Hack the Pentagon” and “Hack the Army” initiatives, the U.S. Department of Defense announced on Wednesday the launch of the “Hack the Air Force” bug bounty program. read more

New SCADA Flaws Allow Ransomware, Other Attacks

Thu, 27 Apr 2017 08:04:47 +0000

read more

UK Government Complains After Twitter Cuts Data Access

Wed, 26 Apr 2017 21:51:22 +0000

The British government has complained to Twitter over a block on access to data from the social network, which it was reportedly using to track potential terror attacks, officials said Wednesday. read more

Mysterious Hajime Botnet Grows to 300,000 IoT Devices: Kaspersky

Wed, 26 Apr 2017 16:00:30 +0000

Hajime, a piece of Internet of Things (IoT) malware that emerged in October 2016, has already ensnared roughly 300,000 devices in a botnet, Kaspersky Lab researchers say. read more

Expert Discloses Several Flaws Found in Sugar CRM

Wed, 26 Apr 2017 13:29:12 +0000

A researcher has discovered several vulnerabilities in SugarCRM’s popular customer relationship management (CRM) product. While most of the flaws appear to have been patched, the expert’s disclosure suggests that the vendor needs to make some improvements in how it communicates with individuals who report security holes. read more

Organizations Fail to Maintain Principle of Least Privilege

Wed, 26 Apr 2017 12:54:37 +0000

Security requires that confidential commercial data is protected; compliance requires the same for personal information. The difficulty for business is the sheer volume of data generated makes it difficult to know where all the data resides, and who has access to it. A new report shows that 47% of analyzed organizations in 2016 had at least 1,000 sensitive files open to every employee; and 22% had 12,000 or more. read more

If Loose Lips Sink Ships, What do They do to Enterprise Security?

Wed, 26 Apr 2017 12:38:52 +0000

read more

Blueprint for a Modern Enterprise Security Program

Wed, 26 Apr 2017 12:23:10 +0000

There’s no doubt, we’re living in a data and intelligence-driven world when it comes to enterprise security. The volume, velocity, and complexity of information security data that must be processed to detect advanced attacks and, at the same time, support new business initiatives has been growing exponentially. However, data in its raw form is still only a means to an end. read more

HipChat Prompts Password Resets Following Server Hack

Wed, 26 Apr 2017 12:00:33 +0000

Group messaging platform HipChat this week prompted users to reset their passwords following a security incident involving one of its servers. read more

Chipotle Investigating Payment Card Breach

Wed, 26 Apr 2017 05:16:45 +0000

Fast-casual restaurant chain Chipotle Mexican Grill, which has more than 2,000 locations in the United States and other countries, informed customers on Tuesday that its payment processing systems have been breached. read more