security Archives - Page 8 of 29 - Cyber Security Minute

How to Choose the Right Cybersecurity Framework

Issued by: Dark Reading

The dramatic rise in ransomware attacks and the SolarWinds Orion hack have thrust cybersecurity back into the spotlight. With everyone a target, it’s time for organizations to implement cybersecurity frameworks like those provided by the National Institute of Standards and Technology (NIST), which can help you set a bar for measuring your cybersecurity effectiveness. Taking…

Malware & Threats

Microsoft Reports ‘DearCry’ Ransomware Targeting Exchange Servers

Issued by: Dark Reading

Attackers have begun to utilize the recently patched Microsoft Exchange Server vulnerabilities to deploy ransomware onto compromised servers, Microsoft reports. The news emerged late last night. Phillip Misner, a member of Microsoft’s security research team, tweeted about the new ransomware family tracked as Ransom:Win32/DoejoCrypt.A and nicknamed “DearCry,” which is using the Microsoft Exchange vulnerabilities to…

Software Security

How Enterprises are Developing Secure Applications

Issued by: Dark Reading

One of the most common ways cybercriminals breach enterprises is by finding security vulnerabilities in the applications they use. The last year delivered a plethora of security challenges. Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure…

Cloud Security, Software Security

Security Automation: The Future of Enterprise Defense

Issued by: Security Intelligence

When it comes to giving cyber security experts the tools they need to take action, automation and machine learning (ML) can make a big difference. Many companies are working with high volumes of data, and types and variants of attack are always growing and changing. It can become too much for people to process in…

Cloud Security, Network Security, Software Security

Security + Fraud Protection: Your One-Two Punch Against Cyberattacks

Issued by: Dark Reading

Over the past year, the pandemic has accelerated the digital transformation that was already well underway at many organizations. Of course, with more business being conducted online comes the potential for more online fraud — and fraudsters have wasted no time adapting their tactics to maximize their returns. We, as defenders, must adapt as well….

Network Security

Malvuln Project Catalogues Vulnerabilities Found in Malware

Issued by: Security Week

Malvuln is the creation of security researcher John Page (aka hyp3rlinx), who told SecurityWeek that he came up with the idea when he got bored during a COVID-19 lockdown. The Malvuln website currently has 26 entries describing remotely exploitable buffer overflow vulnerabilities and privilege escalation flaws related to insecure permissions. The list of targeted malware…

Vulnerabilities

3 security career lessons from ‘Back to the Future’

Issued by: CSO

The security industry had a terrible year in 2020—some even think the worst ever. You can point to failures in working from home after COVID-19 struck, various election narratives, the SolarWinds breach, foreign nation-state cyberattacks, new ransomware, the global lack of cybertalent, government leader mistakes or a long list of other items. My favorite quote…

Vulnerabilities

6 board of directors security concerns every CISO should be prepared to address

Issued by: CSO

Data breaches, ransomware attacks and concerns over risks tied to the global pandemic have heightened interest in cybersecurity among corporate boards of directors. Security leaders say BoDs have become more engaged in security matters, have a keener understanding of cyber issues, and have begun asking more sophisticated question about risk exposure and ways to manage…

Software Security

How to cyber security: Software security is everyone’s responsibility

Issued by: Black Duck

Remember group projects in school? Teachers love them because they have less grading to do; in a class of 25 students, they might only need to look at 5 projects. For team members, team projects can be difficult, usually when individual motivation levels don’t match up. On the other hand, team projects can be rewarding…

Vulnerabilities

Why Better Password Hygiene Should Be Part of Your New Year’s Resolutions

Issued by: Security Week

The world has been faced with numerous life lessons in 2020, but it’s clear that millions of people still haven’t learned one of the most basic when it comes to security. A new report from NordPass has revealed that millions of people still haven’t broken the habit of using easy-to-remember, but easy-to-hack passwords. Of the…