BRONZE PRESIDENT Targets NGOs | Secureworks

Summary The activities of some non-governmental organizations (NGOs) challenge governments on politically sensitive issues such as social, humanitarian, and environmental policies. As a result, these organizations are often exposed to increased government-directed threats aimed at monitoring their activities, discrediting their work, or stealing their intellectual property. BRONZE PRESIDENT is a likely People’s Republic of China
Read more
11 Comments

How Far We’ve Come, How Far We Have to Go

As organizations fear the proliferations of connected devices on enterprise networks, the private and public sector come together to address IoT vulnerabilities. The Internet of Things is bringing every aspect of our lives online. Phones, watches, printers, thermostats, lightbulbs, cameras, and refrigerators are only a handful of devices connecting to home and enterprise networks. This
Read more
2 Comments

Mastercard Announces Plan to Purchase RiskRecon

The acquisition is expected to close in the first quarter of 2020.
Read more
2 Comments

20 Vulnerabilities to Prioritize Patching Before 2020

Researchers list the top 20 vulnerabilities currently exploited by attack groups around the world. It’s an ongoing challenge for security practitioners: You want to keep all systems up-to-date and secure, but limited resources, legacy systems, and slow patching processes hold you back. To aid in patch management strategy, researchers with Verint’s Cyber Threat Intelligence (CTI)
Read more
3 Comments

Worried About Magecart? Here’s How to Check for It

Researchers share how everyday users can check for malicious code on e-commerce websites. Magecart mayhem has compromised online shoppers for years, and its activity has ramped up with attacks against Smith & Wesson, Macy’s, and, most recently, Rooster Teeth. In a nutshell, attackers inject malicious code onto the checkout page of e-commerce platforms to lift payment
Read more
21 Comments

‘Password’ Falls in the Ranks of Favorite Bad Passwords

Facebook, Google named worst password breach offenders. What do President Donald Trump, the word “password,” and string “12345678” have in common? All fell in the ranks of SplashData’s annual Worst Passwords of the Year list, published today. After making an appearance in the 2018 list, “donald” is not among this year’s top 25 most dangerous
Read more
15 Comments

7 Tips to Keep Your Family Safe Online Over the Holidays

7 Tips to Keep Your Family Safe Online Over the Holidays
Read more
2 Comments

Higher Degree, Higher Salary? Not for Some Security …

Turns out, skill beats experience and an academic degree doesn’t guarantee higher compensation for five security positions. In the rapidly growing cybersecurity industry, some positions don’t offer a clear-cut path to a higher salary. An academic degree and years of experience, considered a promising combination in traditional industries, don’t guarantee security employees a bigger paycheck.
Read more
2 Comments

Ransomware ‘Crisis’ in US Schools: More Than 1,000 …

Meanwhile, the mayor of the city of New Orleans says no ransom money demands were made as her city struggles to recover from a major ransomware attack launched last week. Ransomware attacks have continued pummeling US schools, with 11 new school districts — 226 schools — hit since October, while major US cities such as
Read more
18 Comments

SQL Server 2019 Tool Tells Attackers Which Data Is …

The design of SQL Data Discovery & Classification could let attackers pinpoint sensitive information while flying under organizations’ radars. SQL Data Discovery & Classification, a tool within Microsoft’s SQL Server 2019, could inform attackers which data within a database is labeled sensitive, and which isn’t, researchers report. Imperva security research engineer Avidan Reich emphasizes this
Read more
21 Comments