Cryptographic security risks are amplified in DevOps settings
Cryptographic security risks are amplified in DevOps settings, where compromises in development or test environments can spread to production systems and applications, …
Shadow Brokers data dump reveals yet another NSA-Stuxnet link
When the Shadow Brokers dumped on Friday another batch of data allegedly stolen from the Equation Group, which has been linked to the NSA, security researchers dove right in. …
BankBot Trojan found lurking on Google Play
As predicted earlier this year, the leaking of the source code and instructions for creating a potent Android banking Trojan has resulted in a surge of malware based on it. …
One in five UK businesses suffered a cyber attack in the past year
One in five businesses have fallen victim to cyber attacks in the past year, according to the British Chambers of Commerce (BCC). The survey of more than 1,200 businesses …
Fake LinkedIn emails phishing job seekers
Fake LinkedIn emails are hitting inboxes, trying to get recipients to hand over their CVs. The scammers are trying to impersonate the popular employment-oriented social …
Threat hunting still maturing and mostly ad-hoc
Threat hunting is becoming an integral part of defensive activities in larger enterprises or those that have been heavily targeted in the past, according to a new SANS survey. …
38% of consumers affected by ransomware pay up
Consumers are increasingly being targeted with ransomware, and many of them are paying up, according to Trustlook. Since the beginning of 2016, ransomware has gone from a …
Photos: HITBSecConf Amsterdam 2017
The always exciting Hack In The Box conference took place last week in Amsterdam. Groundbreaking security research was disclosed during the event, which also featured a free …
Rules for secure coding in the C++ programming language
The Software Engineering Institute (SEI) has released the 2016 edition of the SEI CERT C++ Coding Standard. The standard provides rules for secure coding in the C++ …
Week in review: Leaked Windows exploits, mobile payment card cloning
Here’s an overview of some of last week’s most interesting news and articles: Microsoft patched the flaws allowing leaked Windows exploits to work Microsoft has …
Microsoft patched the flaws allowing leaked Windows exploits to work
Microsoft has patched the vulnerabilities that allowed nine of the exploits released by the Shadow Brokers on Friday to work, and said that of the three remaining exploits, …
Why businesses should care about identity theft
Identity theft is a type of fraud that’s directed squarely against individuals, but to believe that businesses don’t suffer any consequences or costs associated …
Featured news
Resources
Don't miss
- Avoiding vendor lock-in when using managed cloud security services
- The CISO’s dilemma of protecting the enterprise while driving innovation
- PoC exploit for Ivanti Endpoint Manager vulnerabilities released (CVE-2024-13159)
- Account takeover detection: There’s no single tell
- Man vs. machine: Striking the perfect balance in threat intelligence