February 2020 - Page 4 of 4 - Cyber Security Minute

43% of cloud databases are currently unencrypted

Issued by: Help Net Security

Palo Alto Networks released research showing how vulnerabilities in the development of cloud infrastructure are creating significant security risks. The Unit 42 Cloud Threat Report: Spring 2020 investigates why cloud misconfigurations happen so frequently. It finds that as organizations move to automate more of their cloud infrastructure build processes, they are adopting and creating new…

Malware & Threats

Phishers impersonate WHO, exploit coronavirus-related anxiety

Issued by: Help Net Security

Media outlets are reporting daily on the coronavirus outbreak in Wuhan and the emergency repatriation of foreign citizens that found themselves in the thick of it. As cases of the virus infection keep popping up across the world – demonstrating just how small (i.e., well-connected) our planet is – so do fake news and videos…

Vulnerabilities

Which vulnerabilities were most exploited by cybercriminals in 2019?

Issued by: Help Net Security

Which ten software vulnerabilities should you patch as soon as possible (if you haven’t already)? Recorded Future researchers have analyzed code repositories, underground forum postings, dark web sites, closed source reports and data sets comprising of submissions to popular malware repositories to compile a list of the ten most exploited vulnerabilities by cybercriminals in 2019.

Malware & Threats, Network Security

Emotet can spread to poorly secured Wi-Fi networks and computers on them

Issued by: Help Net Security

Here’s yet another reason to secure Wi-Fi networks and Windows user accounts with a strong enough password: researchers have spotted and analyzed a variant of the Emotet Trojan that is able to spread to nearby wireless networks and compromise computers on them. Emotet: An old threat Emotet is one of the most versatile malware threats…

Network Security

Artificial Intelligence (AI) and Security: A Match Made in the SOC

Issued by: Security Intelligence

Change is constant in cybersecurity — continual, rapid, dynamic change. It’s impossible to maintain an effective defensive posture without constantly evolving. Security measures that worked in the past will not be effective today, and today’s security controls will not be effective tomorrow. Many factors contribute to this rapid pace of change. Attacks are on the…

Cloud Security

Infrastructure-as-code templates are the source of many cloud infrastructure weaknesses

Issued by: CSO

In the age of cloud computing where infrastructure needs to be extended or deployed rapidly to meet ever-changing organizational needs, the configuration of new servers and nodes is completely automated. This is done using machine-readable definition files, or templates, as part of a process known as infrastructure as code (IaC) or continuous configuration automation (CCA)….

Network Security

What makes some organizations more cyber resilient than others?

Issued by: Help Net Security

Despite higher levels of investment in advanced cybersecurity technologies over the past three years, less than one-fifth of organizations are effectively stopping cyberattacks and finding and fixing breaches fast enough to lower the impact, according to a report from Accenture. Based on a survey of more than 4,600 enterprise security practitioners around the globe, the…

Malware & Threats

Wuhan coronavirus exploited to deliver malware, phishing, hoaxes

Issued by: Help Net Security

The Wuhan coronavirus continues to spread and create anxiety across the globe, allowing malicious individuals and groups to exploit the situation to spread fake news, malware and phishing emails. Malicious coronavirus-themed campaings IBM X-Force says that Japanese users have been receiving fake notifications about the coronavirus spreading in several prefectures, purportedly sent by a disability…

Network Security

10 tough security interview questions, and how to answer them

Issued by: CSO

Anyone who’s experienced a job interview knows that one of the keys to landing a position is answering the interview questions effectively and intelligently—without sounding like a robot. It’s no different for high-level security executives. In fact, given the importance of these positions and the need for security executives to think fast on their feet,…