CISO October 6, 2017 Sink or Swim: Uniting the C-Suite, Sales and Security to Fight Advanced Cyberattacks 3 min read - An advanced cyberattack can sink an entire company if it doesn't put the proper lifeboats in place and foster collaboration between disparate departments.
October 5, 2017 IoT Security Has a Growing Effect on Public Key Infrastructure, Survey Says 2 min read - According to a recent survey by the Ponemon Institute, IoT security needs will drive increased use of public key infrastructure over the next two years.
October 2, 2017 Malware Mines Monero on Vulnerable Servers 2 min read - Security researchers reported that threat actors have been targeting vulnerable servers to mine for cryptocurrency since about May 2017.
September 28, 2017 Mobile Stock Trading Apps Vulnerable to Attack 2 min read - Over 20 mobile apps commonly used for stock trading are not very secure, according to recent security research.
September 25, 2017 ISPs May Be Colluding With FinFisher Surveillance, According to Researchers 2 min read - FinFisher campaigns may be using ISPs to infect users' machines. This is the first time that ISPs have been detected as an infection mechanism.
September 19, 2017 Security Utility Abuses Supply Chain for a Malware Attack 2 min read - CCleaner was compromised at the main distribution site to include a malware attack. The Floxif attack is a downloader that breached the app supply chain.
September 15, 2017 Content Delivery Networks Offer More Bandwidth, but Can Hide Malware 2 min read - Cybercriminals are using content delivery networks to spread malware. This vector is especially effective because it is difficult to block CDN IPs.
September 12, 2017 Facebook’s CDN Enables Security Breaches Targeting Brazilian Users 2 min read - A malware group is using Facebook's CDN servers to store malicious files that it later uses as a vehicle for security breaches targeting Brazilian users.
September 8, 2017 IBM and MIT Announce New AI Lab 2 min read - IBM and MIT have announced the foundation of a new AI lab. Its research will focus on developing four key areas, including advancing core AI algorithms.
September 6, 2017 Resurgent Malware Attack Targets MongoDB 2 min read - Security researchers uncovered a concentrated malware attack against MongoDB servers that is reminiscent of previous attacks from earlier this year.
Risk Management September 1, 2017 Poor Management of Security Certificates and Keys Leads to Preventable Outages 2 min read - Despite significant progress in the area of security certificates, many organizations still suffer preventable outages, according to a recent study.
August 31, 2017 Defray Ransomware Tries Going Vertical 2 min read - A new Defray ransomware variant attacks specific verticals in two separate campaigns: health care and education, and manufacturing and technology.