February 2017 - Page 5 of 6 - Cyber Security Minute

CrowdStrike Fails In Bid To Stop NSS Labs From Publishing Test Results At RSA

Issued by: Dark Reading

A security vendor’s failed attempt to prevent a report containing details on its product’s capabilities from being released at the RSA conference in San Francisco this week has focused attention on the need for more widely accepted testing and validation services for security technologies. The report is from NSS Labs, a company that bills itself…

Software Security

Salted Hash: RSA Conference 2017 – Live Blog

Issued by: CSO

All this week, Salted Hash will be on location at the RSA Conference in San Francisco. We’ll be updating the blog multiple times a day with news and other content from the show – so check-back often. Yesterday, we mentioned a lawsuit filed by CrowdStrike, which attempted to prevent NSS Labs from releasing test results…

Software Security

‘Shock And Awe’ Ransomware Attacks Multiply

Issued by: Dark Reading

RSA CONFERENCE 2017 – San Francisco – The data-hostage crisis isn’t going away anytime soon: In fact, it’s starting to get a lot scarier and destructive, and with a more unpredictable outcome. Security experts long have warned that ponying up with the ransom fee only plays into the hands of ransomware attackers; it doesn’t necessarily…

Vulnerabilities

IaaS Creating New Variant of Shadow IT

Issued by: Security Week

Organizations cannot rely on commercial off-the-shelf (COTS) software to fulfil all their IT requirements: almost all companies develop their own custom apps. The majority of these apps, whether internal or internet-facing, currently run on datacenters owned or operated locally. By the end of 2017 this will change — the majority of enterprise custom apps will…

Malware & Threats

Simulation Shows Threat of Ransomware Attacks on ICS

Issued by: Security Week

Researchers at the Georgia Institute of Technology have demonstrated the potential impact of ransomware on industrial control systems (ICS) by simulating an attack aimed at a water treatment plant. David Formby, a Ph.D. student in the Georgia Tech School of Electrical and Computer Engineering, and his faculty advisor, Raheem Beyah, identified several commonly used programmable…

Software Security

Privacy groups claim FBI hacking operation went too far

Issued by: CSO

Privacy advocates are claiming in court that an FBI hacking operation to take down a child pornography site was unconstitutional and violated international law. That’s because the operation involved the FBI hacking 8,700 computers in 120 countries, based on a single warrant, they said.

Network Security

Are companies doing enough on the IoT security front?

Issued by: CSO

We continue to hear dire warnings about the inherent security risks of the Internet of Things (IoT), and indeed IoT-related incidents are happening. With many companies beginning to capture IoT data from connected devices, a key question is are they doing enough to ensure that data and networks are secure? If security executives thought they…

Vulnerabilities

Keep Employees Secure, Wherever They Are

Issued by: Dark Reading

As workers grow more dispersed, organizations need to focus on three areas to maintain security. Nearly 80% of professionals work remotely at least one day a week, and 1.55 billion others are expected to work outside the boundaries of the corporate office by 2020, according to Frost & Sullivan research. This shift to a mobile…

Vulnerabilities

Gmail Delivers Spoofed Messages Without Warning, Researchers Find

Issued by: Security Week

Spoofed emails could easily land in user’s Gmail inboxes without even warning them of suspicious activity, security researchers have discovered. While spam is normally used to deliver malicious documents or links to unsuspecting users, spoofed emails have a bigger chance of luring potential victims, because they are likely to click on a link or open…

Malware & Threats

How AI is stopping criminal hacking in real time

Issued by: CIO Security

Almost every day, there’s news about a massive data leak — a breach at Yahoo that reveals millions of user accounts, a compromise involving Gmail phishing scams. Security professionals are constantly moving the chess pieces around, but it can be a losing battle. Yet, there is one ally that has emerged in recent years. Artificial…