Monday, September 23, 2019
SecurityWeek

Being CISO Is No Longer a Dead-End Job

A decade ago, being named as CISO was considered the highest rung achievable from within the security function. This is changing, driven by increasing cyber awareness in the boardroom, the embedding of cyber risk in every part of the...
SecurityWeek

Use Case-Centric Threat Intelligence Requires a Considered Approach

One of the most promising developments I’ve seen in threat intelligence over the last year or so is a greater emphasis on use cases. read more
SecurityWeek

Wyoming Hospital’s Services Disrupted by Ransomware

Gillette, Wyoming-based Campbell County Memorial Hospital continues to experience service disruptions after a ransomware attack hit Campbell County Health’s computer systems on Friday. read more
SecurityWeek

Flaw Gives Hackers Remote Access to Files Stored on D-Link DNS-320 Devices

D-Link DNS-320 ShareCenter network-attached storage (NAS) devices are affected by a critical vulnerability that can be exploited remotely to take complete control of a device and access the files stored on it. read more
SecurityWeek

Digital Threats Multiply Ahead of 2020 US Elections

It could be a manipulated video embarrassing a candidate. Or a computer voting system locked by ransomware. Or doubts about electronic voting machines with no paper backups. read more
SecurityWeek

Google Awards $40,000 for Chrome Sandbox Escape Vulnerabilities

Google has paid out a total of $40,000 for a couple of vulnerabilities that can be exploited to escape Chrome’s sandbox. read more
SecurityWeek

Mac Malware Poses as Trading App

A Mac Trojan focused on stealing users’ information was found masquerading as a legitimate trading application, Trend Micro’s security researchers report. read more
SecurityWeek

Alleged Hacker Faces 154 Charges in Football Leaks Case

Portuguese prosecutors are bringing 154 charges against an alleged local hacker they believe is linked to the publication of internal documents that embarrassed top European clubs and soccer officials in the Football Leaks case. read more
SecurityWeek

Payouts From Insurance Policies May Fuel Ransomware Attacks

Experts Worry That Cyber Insurance Policies Designed to Limit Damage of Ransomware Attacks Might Actually be Encouraging Hackers read more
SecurityWeek

Iran Denies Successful Cyber Attacks on Oil Sector

Iran denied on Saturday its oil infrastructure had been successfully attacked by a cyber operation, after reports of disruptions to the sector online. read more
SecurityWeek

Facebook Suspends ‘Tens of Thousands’ of Apps in Privacy Review

Facebook said Friday it suspended "tens of thousands" of apps on its platform as a result of its review on privacy practices launched following the scandal involving Cambridge Analytica. read more
SecurityWeek

Eight U.S. Cities Impacted in New Series of Click2Gov Breaches

More than 20,000 records from eight cities across the United States have been compromised in a new wave of Click2Gov breaches, Gemini Advisory reports. Developed by Superion (now CentralSquare Technologies), Click2Gov provides cities with a self-service bill-pay portal for utilities,...
SecurityWeek

200,000 Sign Petition Against Equifax Data Breach Settlement

200,000 Sign Petition to "Force Equifax to Pay for Their Greed" read more
SecurityWeek

Indonesia, Malaysia Probe Lion Air Customer Data Leak

Authorities are probing a customer data leak at Lion Air, Indonesia's communications ministry said Friday, in a breach that reportedly affected millions of the carrier's customers. Two of the airline's subsidiaries, Malaysia-based Malindo Air and Thai Lion Air, acknowledged passenger...
SecurityWeek

Twitter Closes Thousands of Fake News Accounts Worldwide

Twitter said Friday it has closed down thousands of accounts across the world for spreading fake news as well as pro-government propaganda, including in places like the United Arab Emirates, China and Spain. read more
SecurityWeek

Vulnerability Patched in Forcepoint VPN Client for Windows

Researchers at breach and attack simulation firm SafeBreach discovered that the Forcepoint VPN Client for Windows is affected by a vulnerability that can be exploited to escalate privileges and for other purposes. read more
SecurityWeek

France Has ‘Not Changed Mind’ on Rejecting Snowden Asylum

France has not changed its mind on rejecting any asylum request from US surveillance whistleblower Edward Snowden, its foreign minister said Thursday, after the former CIA employee said he would like sanctuary in the country. read more
SecurityWeek

Two Indicted in $10 Million Tech Support Fraud Scheme

The United States Department of Justice this week announced the arrest of two individuals charged for participating in a long-term tech support fraud scheme. read more
SecurityWeek

VMware Patches Six Vulnerabilities in Various Products

VMware this week patched code execution, command injection, information disclosure and denial-of-service (DoS) vulnerabilities in its ESXi, vCenter Server, Workstation, Fusion, VMRC and Horizon Client products. read more
SecurityWeek

HP Acquires Endpoint Security Company Bromium

HP on Thursday announced the acquisition of California-based endpoint security solutions provider Bromium. Financial terms of the deal have not been disclosed. read more
SC Magazine

Ning Wang – Offensive Security

Ning WangCEO Offensive Security Why Nominated: Ning Wang is a rising star has worked to break the boundaries in the security industry, so that people can see that anyone is capable of starting a career in cybersecurity and advancing it –...
SC Magazine

Dani Martínez – IOActive

Dani MartínezSecurity ConsultantIOActive Why nominated: Dani Martínez proved to be a self-starter, beginning his career in IT he soon developed an interest in cybersecurity and began taking online courses in his spare time. Martínez also dove write in and began a cybersecurity blog...
SC Magazine

Maurice Stebila – Harman, a Samsung Company

Maurice StebilaDigital Security,Compliance and Privacy OfficerHarman, a Samsung Company Why nominated: Maurice Stebila has spent more than 30 years in the automotive, manufacturing and financial services industry supporting two of the world’s largest companies – EDS/General Motors and Harman by Samsung...
SC Magazine

Ed Adams – Security Innovation

Ed AdamsPresident and CEOSecurity Innovation Why Nominated: A highly respected veteran of the cybersecurity industry, Security Innovation CEO Ed Adams has taken on several new leadership roles in the year or so. Last April, he was named to board of directors of...
SC Magazine

David Archer – Galois

David ArcherPrincipal scientistGalois Why Nominated: Archer, an advocate for preserving privacy of data even when it’s used in decision-making both within the U.S. at all levels of government as well as internationally, directs research in privacy-preserving information technologies. Profile:  David Archer is all...