Software Security

Issued by: CSO

Obama orders review of election hacks as Trump doubts Russia’s role

President Barack Obama has ordered U.S. intelligence agencies to conduct a full review of the cyberattacks that allegedly tried to disrupt this year’s election, as his successor Donald Trump casts doubt over Russia’s possible involvement. Obama’s homeland security advisor Lisa Monaco first mentioned the need for the review while speaking to reporters on Friday morning, according…

Network Security

Issued by: CIO Security

Cisco dents Arista again with patent infringement ruling

A US trade judge ruled today that Arista Networks infringed on two Cisco switch patents – the second important victory the networking giant has won against Arista in their ongoing legal confrontation since it began in 2014. U.S. International Trade Commission Judge MaryJoan McNamara issued the so-called “initial determination” on the case which now must…

Malware & Threats

Issued by: Dark Reading

Only 25% Companies Equipped To Handle Data Breaches

Research by Tripwire on cybersecurity challenges reveals only 3% organizations outsource security issues to experts. A survey by Tripwire has revealed that despite a hike in IT budgets, companies continue to struggle with cyber-security: just one quarter of respondents say they have the ability to handle data breaches.

Vulnerabilities

Issued by: Security Week

Yahoo Pays Out $10,000 Bounty for Critical Mail Flaw

A researcher has earned $10,000 for finding a critical Yahoo! Mail vulnerability that could have been exploited simply by getting the targeted user to open a specially crafted email. Nearly one year ago, Jouko Pynnönen of Finland-based software company Klikki Oy discovered a stored cross-site scripting (XSS) vulnerability in the web version of the Yahoo!…

Vulnerabilities

Issued by: Security Intelligence

How to Find and Remediate Vulnerabilities in Real Time

Every business, large or small, must be able to remediate vulnerabilities that can threaten to undermine all its hard work and success. The security analysts and IT operators at these organizations have surely heard of household-name vulnerabilities like Heartbleed and Shellshock. But do they have all the knowledge and tools they need to track and…

Malware & Threats

Issued by: Security Week

Locky Variant Osiris Distributed via Excel Documents

The infamous Locky ransomware has once again switched to a new extension to append to encrypted files, but reverted to malicious Office documents for distribution, security researchers have discovered. The latest Locky variant is appending the .osiris extension to encrypted files, marking a switch from the Norse mythology to Egyptian mythology. The change comes only…

Malware & Threats

Issued by: Help Net Security

Top 4 global security threats businesses will face in 2017

While the political, social and economic implications are not fully clear, gigabit connectivity represents a significant overnight leap forward. This will enable the IoT and a new class of applications to emerge that will “exploit the combination of big data, GPS location, weather, personal-health monitoring devices, industrial production and much more. Connectivity is now so…

Cloud Security

Issued by: Help Net Security

Governments are behind on data encryption in the public cloud

A HyTrust survey of 59 government and military organizations found that nearly 20 percent of those respondents do not implement data security or encryption solutions in the public cloud. Government agencies today are facing budget constraints and increasingly strict regulations. The latest cloud first policy now requires these organizations to consider cloud-based technology options, which…