ITCurated, Author at Cyber Security Minute

US lawmakers introduce bill to delay enhanced government hacking powers

Issued by: CIO Security

U.S. lawmakers have introduced legislation to delay the coming into force on Dec. 1 of a rule change that aims to expand the government’s ability to search computers and other digital devices across many jurisdictions with a single warrant. The new Review the Rule Act aims to delay for discussion proposed amendments to rule 41…

Network Security

As Deadline Looms, 35 Percent Of Web Sites Still Rely On SHA-1

Issued by: Dark Reading

Over 60 million web sites are relying on a hashing algorithm that will be blocked by major browsers starting Jan 1. A surprising 35 percent of websites around the world are still using SHA-1 though barely 45 days remain before some of the major browsers stop trusting certificates signed with the hash algorithm altogether.

Application Security, Network Security

Firefox Focus: Private iOS browsing made easy

Issued by: Help Net Security

Mozilla has released Firefox Focus, an iOS app that lets you browse the Internet without having to worry who’s tracking your online activity. The app can be used independently, or can be integrated with the existing (installed) Firefox and Safari apps (more details about the usage can be found here).

Malware & Threats

Encryption ransomware hits record levels

Issued by: Help Net Security

The amount of phishing emails containing a form of ransomware grew to 97.25 percent during the third quarter of 2016 up from 92 percent in Q1. PhishMe’s Q3 2016 Malware Review identified three major trends previously recorded throughout 2016, but have come to full fruition in the last few months:

Malware & Threats

Carbanak Hackers Hit Hospitality Firms With New Tactics

Issued by: Security Week

The prolific Carbanak crime group has recently zoned in on the hospitality sector and adopted a new attack methodology, Trustwave security researchers warn. The security firm analyzed three separate attacks, two targeting hospitality clients and one aimed at a restaurant chain, and found that all three featured the modus operandi of the infamous hacking group….

Malware & Threats

Cyber risk in advanced manufacturing: How to be secure and resilient

Issued by: Help Net Security

Nearly half of surveyed manufacturing executives lack confidence their assets are protected from external threats, according to a new study from Deloitte and the Manufacturers Alliance for Productivity and Innovation (MAPI). Study results indicate nearly 40 percent of surveyed manufacturing companies were affected by cyber incidents in the past 12 months, and 38 percent of…

Software Security

Crisis Leadership: The Missing Link in Cyberattack Defense

Issued by: Security Intelligence

You are driving in your car with your 10-year-old son in the passenger’s seat. A ball bounces in front of your car and you hit the brakes hard while simultaneously throwing your arm in front of the child, acting almost automatically. That’s called muscle memory, and it is a big part of what organizations need…

Vulnerabilities

Fake executive social media accounts threaten enterprises

Issued by: Help Net Security

New research has uncovered numerous duplicative Twitter and LinkedIn accounts among Fortune 500 leaders, raising concerns about potential security vulnerabilities. Analysts at BrandProtect reviewed profiles for the 54 CEOs at Fortune 500 companies using Twitter and the 187 CEOs using LinkedIn. Of these CEOs, 19 percent were represented online by multiple Twitter accounts, while 9…

Network Security

Thousands of WordPress sites with malware highlight need for comprehensive security

Issued by: Trend Micro Blog

While everyone was worrying about the holiday influx of POS malware, a cyber criminal group quietly exploited a plug-in vulnerability with the mysterious SoakSoak malware and infected at least 100,000 sites utilizing WordPress’s content management system. Researchers with security firm Sucuri discovered the malware campaign in mid-December, noting that it leveraged a flaw within a…