π Kaspersky: 73% of workers have received no cybersecurity guidance π
π Read
via "Security on TechRepublic".
Millions of employees working remotely have gotten no information about how to keep their devices and home networks safe.π Read
via "Security on TechRepublic".
TechRepublic
Kaspersky: 73% of workers have received no cybersecurity guidance
Millions of employees working remotely have gotten no information about how to keep their devices and home networks safe.
ATENTIONβΌ New - CVE-2018-1285
π Read
via "National Vulnerability Database".
Apache log4net before 2.0.8 does not disable XML external entities when parsing log4net configuration files. This could allow for XXE-based attacks in applications that accept arbitrary configuration files from users.π Read
via "National Vulnerability Database".
π FTC To Review Healthcare Data Breach Notification Rule π
π Read
via "Subscriber Blog RSS Feed ".
The FTC is seeking comment on whether or not it should make changes to its Health Breach Notification Rule, a rule that compels orgs to disclose when health records are breached.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
FTC To Review Healthcare Data Breach Notification Rule
The FTC is seeking comment on whether or not it should make changes to its Health Breach Notification Rule, a rule that compels orgs to disclose when health records are breached.
π΄ Researchers Analyze Oracle WebLogic Flaw Under Attack π΄
π Read
via "Dark Reading: ".
Trend Micro researchers explain how attackers bypassed the patch for a deserialization vulnerability in the Oracle WebLogic Server.π Read
via "Dark Reading: ".
Dark Reading
Researchers Analyze Oracle WebLogic Flaw Under Attack
Trend Micro researchers explain how attackers bypassed the patch for a deserialization vulnerability in the Oracle WebLogic Server.
π At UPS, big data is redefining the supply chain π
π Read
via "Security on TechRepublic".
Billions of data points are gathered throughout the UPS network every week. Find out how the information collected is revolutionizing the logistics giant.π Read
via "Security on TechRepublic".
TechRepublic
At UPS, big data is redefining the supply chain
Billions of data points are gathered throughout the UPS network every week. Find out how the information collected is revolutionizing the logistics giant.
β Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection β
π Read
via "Threatpost".
CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.π Read
via "Threatpost".
Threat Post
Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection
CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.
β Astarothβs New Evasion Tactics Make It βPainful to Analyzeβ β
π Read
via "Threatpost".
The infostealer has gone above and beyond in its new anti-analysis and obfuscation tactics.π Read
via "Threatpost".
Threat Post
Astarothβs New Evasion Tactics Make It βPainful to Analyzeβ
The infostealer has gone above and beyond in its new anti-analysis and obfuscation tactics.
π΄ Thunderbolt Vulnerabilities Could Threaten Millions of PCs π΄
π Read
via "Dark Reading: ".
Attackers with physical access to targeted machines could exploit these flaws to access and copy data within minutes, researchers say.π Read
via "Dark Reading: ".
Dark Reading
Thunderbolt Vulnerabilities Could Threaten Millions of PCs
Attackers with physical access to targeted machines could exploit these flaws to access and copy data within minutes, researchers say.
ATENTIONβΌ New - CVE-2017-14200
π Read
via "National Vulnerability Database".
** REJECT ** Unused CVE for 2017.π Read
via "National Vulnerability Database".
π΄ 6 Free Cybersecurity Training and Awareness Courses π΄
π Read
via "Dark Reading: ".
Most are designed to help organizations address teleworking risks related to COVID-19 scams.π Read
via "Dark Reading: ".
Dark Reading
6 Free Cybersecurity Training and Awareness Courses
Most are designed to help organizations address teleworking risks related to COVID-19 scams.
β Maze ransomware one year on β a SophosLabs report β
π Read
via "Naked Security".
The latest SophosLabs report tells the story of how the infamous "Maze" ransomware has evolved over the past 12 months...π Read
via "Naked Security".
Naked Security
Maze ransomware one year on β a SophosLabs report
The latest SophosLabs report tells the story of how the infamous βMazeβ ransomware has evolved over the past 12 monthsβ¦
β Anubis Malware Upgrade Logs When Victims Look at Their Screens β
π Read
via "Threatpost".
Threat actors are cooking up new features for the sophisticated banking trojan that targets Google Android apps and devices.π Read
via "Threatpost".
Threat Post
Anubis Malware Upgrade Logs When Victims Look at Their Screens
Threat actors are cooking up new features for the sophisticated banking trojan that targets Google Android apps and devices.
β Dating app user logins found on hacking forum β
π Read
via "Naked Security".
3.5 million user logins for the MobiFriends dating app are being offered for free on a popular dark web hackers forum.π Read
via "Naked Security".
Naked Security
Dating app user logins found on hacking forum
3.5 million user logins for the MobiFriends dating app are being offered for free on a popular dark web hackers forum.
π΄ Data Breaches Declined in Q1 2020 Over Q1 2019 -- Or Did They? π΄
π Read
via "Dark Reading: ".
Numbers are down, but that may only be because organizations have been too busy fighting COVID-19-related cyberthreats to notice compromises, Risk Based Security says.π Read
via "Dark Reading: ".
Dark Reading
Data Breaches Declined in Q1 2020 Over Q1 2019 -- Or Did They?
Numbers are down, but that may only be because organizations have been too busy fighting COVID-19-related cyberthreats to notice compromises, Risk Based Security says.
β Chatbooks Confirms Breach After βShiny Huntersβ Sell Data β
π Read
via "Threatpost".
Photo print service Chatbooks has disclosed a data breach after customers' emails, passwords and more were listed for sale on underground forums.π Read
via "Threatpost".
Threat Post
Chatbooks Confirms Breach After βShiny Huntersβ Sell Data
Photo print service Chatbooks has disclosed a data breach after customers' emails, passwords and more were listed for sale on underground forums.
π΄ Coronavirus, Data Privacy & the New Online Social Contract π΄
π Read
via "Dark Reading: ".
How governments can protect personal privacy in contact tracing while saving peoples' livesπ Read
via "Dark Reading: ".
Dark Reading
Coronavirus, Data Privacy & the New Online Social Contract
How governments can protect personal privacy in contact tracing while saving peoples' lives
β Huge toll of ransomware attacks revealed in Sophos report β
π Read
via "Naked Security".
To understand the scope of the ransomware threat, Sophos commissioned a study into the state of ransomware 2020.π Read
via "Naked Security".
Naked Security
Huge toll of ransomware attacks revealed in Sophos report
To understand the scope of the ransomware threat, Sophos commissioned a study into the state of ransomware 2020.
β Thunderspy β why turning your computer off is a cool idea! β
π Read
via "Naked Security".
Thunderbolt ports can provide direct access to the memory in your laptop... just how hard is it for crooks to do so when you aren't looking?π Read
via "Naked Security".
Naked Security
Thunderspy β why turning your computer off is a cool idea!
Thunderbolt ports can provide direct access to the memory in your laptopβ¦ just how hard is it for crooks to do so when you arenβt looking?
π How an MIT spin-off is using contact tracing to fight COVID-19, and so can you π
π Read
via "Security on TechRepublic".
Previously, manual contact tracing was used during pandemics. Now, the MIT Media Lab-hosted Safe Paths Project app can help track the virus and inform people if they've been exposed.π Read
via "Security on TechRepublic".
TechRepublic
How an MIT spin-off is using contact tracing to fight COVID-19, and so can you
Previously, manual contact tracing was used during pandemics. Now, the MIT Media Lab-hosted Safe Paths Project app can help track the virus and inform people if they've been exposed.
π BlackBerry Bootcamp boosts university applied computing with cybersecurity program π
π Read
via "Security on TechRepublic".
Canadian-based BlackBerry partnered with the University of Windsor to create a cybersecurity "camp" for students to matriculate online during the COVID-19 crisis.π Read
via "Security on TechRepublic".
TechRepublic
BlackBerry Bootcamp boosts university applied computing with cybersecurity program
Canadian-based BlackBerry partnered with the University of Windsor to create a cybersecurity "camp" for students to matriculate online during the COVID-19 crisis.
β Adobe Kills 16 Critical Flaws in Acrobat and Reader, Digital Negative SDK β
π Read
via "Threatpost".
Adobe patched 36 flaws, including critical vulnerabilities in Acrobat and Reader and its DNG Software Development Kit.π Read
via "Threatpost".
Threat Post
Adobe Kills 16 Critical Flaws in Acrobat and Reader, Digital Negative SDK
Adobe patched 36 flaws, including critical vulnerabilities in Acrobat and Reader and its DNG Software Development Kit.