endpoint security

WSF attachments are the latest malware delivery vehicle

October 13, 2016

Most users have by now learned not to open executable (.EXE), various MS Office, RTF and PDF files delivered via unsolicited emails, but malware peddlers are always trying out …

Does your organization have an endpoint security strategy?

October 11, 2016

Only thirty-three percent of IT security professionals have security strategies in place to protect the growing number of endpoints on their networks, according to a recent …

OS analysis tool osquery finally available for Windows

September 28, 2016

Nearly two years after Facebook open sourced osquery, the social networking giant has made available an osquery developer kit for Windows, allowing security teams to build …

Spam is once again on the rise

September 22, 2016

Spam volume is back to mid-2010 heights, and Cisco Talos researchers say that the Necurs botnet is partly to blame. “Many of the host IPs sending Necurs’ spam have …

Macro-based malware evolves to bypass traditional defenses

September 12, 2016

Macro-based malware is growing into full-featured malware capable of detecting and bypassing traditional security tools, Barkly researchers have discovered. Macro-based …

Researchers pinpoint best times for delivering security messages

August 19, 2016

When is the best time to deliver a security message? A group of researchers from Brigham Young University has been tracking users’ neural activity while they are using a …

USBFILTER: Packet-level firewall for blocking USB-based threats

August 12, 2016

The problem of planted malicious USB devices is compounded by the fact that, no matter what, users will rarely stop to think and ultimately choose not to insert them because …

Worldwide infosec spending to reach $81.6 billion in 2016

August 10, 2016

Worldwide spending on information security products and services will reach $81.6 billion in 2016, an increase of 7.9 percent over 2015, according to the latest forecast from …

Malware hidden in digitally signed executables can bypass AV protection

August 8, 2016

Researchers have shown that it’s possible to hide malicious code in digitally signed executables without invalidating the certificate, and execute this code – all …

To stop ransomware, opt for app graylisting and admin rights removal

August 3, 2016

CyberArk Labs tested over 23,000 ransomware samples from more than 30 prevalent malware families, including Cryptolocker, Petya and Locky, in order to better understand common …

Businesses need to protect data, not just devices

July 29, 2016

As organizations embrace the digital transformation of their business, they are increasingly facing new security concerns. More companies are moving away from device-centric, …

Government IT pros overconfident in insider threat detection

July 7, 2016

An extensive study conducted by Dimensional Research evaluated the confidence of IT professionals regarding the efficacy of seven key security controls, which must be in place …