Trending Now
LATEST
Top 20 Predictions Of How AI Is Going To Improve Cybersecurity In 2021
What 20 Leading Cybersecurity Experts Are Predicting For 2021
Italy Says Two Arrested for Defense Data Theft
Two people have been arrested for stealing defense data from the Italian aerospace and electronics group Leonardo, the interior ministry said on Saturday.
The company has a wide range of activities from naval electronics, network and protection systems, electronic warfare...
SSL-based threats remain prevalent and are becoming increasingly sophisticated. [Research Saturday]
While SSL/TLS encryption is the industry standard for protecting data in transit from prying eyes, encryption has, itself, become a threat. It is often leveraged by attackers to sneak malware past...
Ransomware hits helicopter maker Kopter
Data from Kopter's internal network has been published on the LockBit gang's blog, hosted on the dark web.
How Reading and Meditation Extend Life
How fiction, biographies, and Vipassana meditation can give you extra time on the planet.
Ransomware gangs are now cold-calling victims if they restore from backups without paying
Tactic used since August by ransomware gangs like Sekhmet, Maze, Conti, and Ryuk.
Episode 230 – Door 05: 5 reasons you need 24/7 robot monitoring
Josh and Kurt talk about why you need 24/7 monitoring of all the things Links Swiss air force office hours DC-10 cargo door
Kmart, a vulnerable target, among those hit in Egregor ransomware attack spree
The fast-moving Egregor ransomware added Kmart to its list of retail targets, one day before the same attack group hit the Vancouver metro.
The fast-moving Egregor ransomware has already hit other recognizable companies, most notably Barnes and Noble. Egregor first...
The Whole Crew's Awesome – PSW #676
This week, Vicarius' very own Roi Cohen and Gilad Lev join us to kick off the show with a technical segment titled "From Chaos to Topia"! Jeff Capone from SecureCircle joins us for an interview on zero trust data...
Friday Squid Blogging: Bigfin Squid Found in Australian Waters
A bigfin squid has been found — and filmed — in Australian waters for the first time.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read my...
Microsoft Cloud Security Exec Talks New Tech, WFH, Gamification
Gunter Ollman explains the benefits of CPSM technology, how IT security teams have evolved, and how the pandemic has shaped security.
Kmart Hit by Egregor Ransomware
Egregor is also behind recent attacks on UbiSoft and Barnes & Noble.
Krebs, UEFI Trickboot, Slack, & Docker Vulns – Wrap Up – SWN #86
This week, Dr. Doug talks Krebs, slack, docker vulnerabilities, Jeff Man finds fake news, a massive IoS article, and UEFI, all this and show wrap ups on the Security Weekly News Wrap Up! Show Notes: https://securityweekly.com/swn86 Visit https://www.securityweekly.com/swn...
Rusty but intact: Nazi Enigma cipher machine found in Baltic Sea
Enlarge / The Enigma cipher machine found in the Baltic Sea is lying on a table in front of the archaeological office of Schleswig-Holstein. After its discovery, the machine was handed over to the office by research diver Huber....
Johnson & Johnson CISO: Healthcare orgs are seeing nation-state attacks every single minute of every single day
Johnson & Johnson is one of six COVID-19 research companies that have been recently targeted by North Korean state-sponsored hackers.
The 2020 Workshop on Economics and Information Security (WEIS)
The workshop on Economics and Information Security is always an interesting conference. This year, it will be online. Here’s the program. Registration is free.
BECs and EACs: What's the Difference?
Email accounts are common targets for attack. Understanding how attack types differ is critical for successful defense.
2021 may look a lot like 2020 in cyberspace, only moreso. Cold chain cyberespionage. Cybercriminals are also interested in COVID-19 vaccines. And beware of online dog fraud.
Predictions for 2021 focus on ransomware: it’ll be better, more aggressive, bigger, and a greater problem in every way. Cyberespionage and the cold chain. Cybercriminal interest in COVID-19 vaccines extends to...
Recently disclosed CVE-2020-4006 VMware zero-day was reported by NSA
VMware addressed CVE-2020-4006 zero-day flaw in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector.
VMware has finally released security updates to fix the CVE-2020-4006 zero-day flaw in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector.
At...
Google discovers exploit devised to steal iPhone data remotely, without user interaction
An Apple Store in London. (Jon Rawlinson, CC BY 2.0 https://creativecommons.org/licenses/by/2.0, via Wikimedia Commons)
Apple last May patched a vulnerability in the Apple Wireless Direct Link (AWDL) protocol that can be remotely exploited to steal data from an iPhone and...
Potential national cybersecurity director inches towards reality
Incoming president Joe Biden will likely have a new post to fill: national cybersecurity director.
The final draft of the National Defense Authorization Act, one of the few true must-pass annual bills, contains a provision calling for a Senate-confirmed position to orchestrate cyber strategy and coordinate incident response. The position would, in...
As Hospitals Cope With a COVID-19 Surge, Cyber Threats Loom
With COVID-19 Infections and Hospitalizations Climbing, Health Care Providers Are Dangerously Vulnerable to Cyberattacks
By late morning on Oct. 28, staff at the University of Vermont Medical Center noticed the hospital’s phone system wasn’t working.
read more
AI Collaborative Research Institute Launched
AI Collaborative Research Institute Launched A trio of companies is launching a new research institute whose intended purpose is to strengthen privacy and trust for decentralized artificial intelligence (AI).
The Private AI Collaborative Research Institute, originally established by Intel's University Research...
VMware Patches Workspace ONE Access Vulnerability Reported by NSA
VMware on Thursday released patches for a Workspace ONE Access security flaw that was identified and reported by the National Security Agency (NSA).
read more
Intel Doubles Down on Emerging Technologies for Sharing and Using Data Securely
Homomorphic encryption and federated learning could allow groups to share data and analysis while protecting the actual information.
LEADERS
Friday Squid Blogging: Bigfin Squid Found in Australian Waters
A bigfin squid has been found — and filmed — in Australian waters for the first time.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read my...
The 2020 Workshop on Economics and Information Security (WEIS)
The workshop on Economics and Information Security is always an interesting conference. This year, it will be online. Here’s the program. Registration is free.
Enigma Machine Recovered from the Baltic Sea
Neat story:
German divers searching the Baltic Sea for discarded fishing nets have stumbled upon a rare Enigma cipher machine used by the Nazi military during World War Two which they believe was thrown overboard from a scuttled submarine.
Thinking they...
IRS to Make ID Protection PIN Open to All
The U.S. Internal Revenue Service (IRS) said this week that beginning in 2021 it will allow all taxpayers to apply for an identity protection personal identification number (IP PIN), a single-use code designed to block identity thieves from falsely...
Metro Vancouver TransLink hit by Egregor ransomware attack, travellers disrupted
Passengers on Vancouver's transit system were unable to use their credit and debit cards for ticket payments after the service was badly hit by a ransomware attack.
TransLink, the public transport operator in Vancouver, Canada, first indicated its IT systems...
