September 2020 - Page 2 of 5 - Cyber Security Minute

Preventing insider threats: What to watch (and watch out) for

Issued by: CSO

September is officially National Insider Threat Awareness Month (NIATM) and the theme of this year’s NIATM is resilience. Of all the digital threats facing organizations, the insider threat can be the most vexing to tackle given how uncomfortable it can feel to suspect one’s own colleagues of wrongdoing. It’s challenging to set up systems and…

Vulnerabilities

GCA releases new version of the GCA Cybersecurity Toolkit for SMBs

Issued by: Help Net Security

The Global Cyber Alliance (GCA) announced the release of an updated version of its Cybersecurity Toolkit for Small Business. This new edition builds on the original toolkit, released in February 2019, with an improved user experience and expanded educational resources. The GCA Cybersecurity Toolkit for Small Business, sponsored by Mastercard, offers free effective tools to…

Malware & Threats

High volumes of attacks keep targeting video game companies and players

Issued by: Help Net Security

High volumes of attacks were used to target video game companies and players between 2018 and 2020, an Akamai report reveals. It also notes an uptick in attack traffic that correlates with COVID-19-related lockdowns. In addition, the report examines motivations driving the attacks and steps gamers can take to help protect their personal information, accounts,…

Malware & Threats

Bit-and-piece DDoS attacks increased 570% in Q2 2020

Issued by: Help Net Security

Attackers shifted tactics in Q2 2020, with a 570% increase in bit-and-piece DDoS attacks compared to the same period last year, according to Nexusguard. Perpetrators used bit-and-piece attacks to launch various amplification and elaborate UDP-based attacks to flood target networks with traffic. Analysts witnessed attacks using much smaller sizes—more than 51% of bit-and-piece attacks were…

Network Security

Your best defense against ransomware: Find the early warning signs

Issued by: Help Net Security

scariest things for security pros is how quickly it can paralyze an organization. Just look at Honda, which was forced to shut down all global operations in June, and Garmin, which had its services knocked offline for days in July. Ransomware isn’t hard to detect but identifying it when the encryption and exfiltration are rampant…

Application Security

Pradeo Security In-App Protection: Neutralizing clones and fake apps to prevent fraud

Issued by: Help Net Security

Despite being built with various shielding techniques, mobile apps are easily cloned or mimicked. As a result, fraud figures have kept growing since the advent of mobile banking and payments, and counterfeit apps infiltrating stores generates serious reputation and trust issues. On these statements, Pradeo R&D team focused on the issue and came up with…

Network Security

9 top anti-phishing tools and services

Issued by: CSO

Phishing ranks low on the list of cyberattacks in terms of technological sophistication. Even more sophisticated phishing variants like spear phishing (focused and often personalized phishing attacks) and whaling (phishing attacks focused on high-profile or high-dollar targets) are focused more on social engineering than on technology. Yet phishing remains one of the most effective types…

Software Security

Offensive Security releases Win-KeX 2.0, packed with new features

Issued by: Help Net Security

Win-KeX provides a Kali Desktop Experience for Windows Subsystem for Linux (WSL 2), and version 2.0 comes with useful features. Win-KeX 2.0 features Win-KeX SL (Seamless Edition) – no more borders Sound support Multi-session support KeX sessions can be run as root Able to launch “kex” from anywhere – no more cd-ing into the Kali…

Network Security

A look at the top threats inside malicious emails

Issued by: Help Net Security

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic: it accounted for 46 percent of the total number of fake web pages, Group-IB reveals. Ransomware, the headliner of the previous half-year, walked off stage: only 1 percent of emails analyzed contained this kind of malware. Every third email, meanwhile, contained spyware, which is…

Network Security

Improving privacy of a global genomic data sharing network

Issued by: Help Net Security

A Case Western Reserve University computer and data sciences researcher is working to shore up privacy protections for people whose genomic information is stored in a vast global collection of vital, personal data. Erman Ayday pursued novel methods for identifying and analyzing privacy vulnerabilities in the genomic data sharing network known commonly as “the Beacons.”…