Tuesday, September 25, 2018

PCI compliance slipping for first time in 6 years, but IT remains on top

According to Verizon data, only 52.5% of companies maintained full compliance with payment card industry standards in 2017.

Cisco: We’ve killed another critical hard-coded root password bug, patch urgently

This time a 9.8/10-severity hardcoded password has been found in Cisco's video surveillance software.

Will Microsoft finally kill the password with its Authenticator upgrade?

Microsoft has extended its support for passwordless login using the app to the hundreds of thousands of Azure Active Directory-connected apps used by business, one of a series of security improvements announced at Ignite.

ProTip: Automate setting a firmware password on Apple computers

Securing Mac computers means more than just protecting the data. Limiting the ways a user can gain access to a device--including bypassing the existing OS or resetting account passwords is easily enabled with a simple command.

10 signs you aren’t cut out to be a cybersecurity specialist

A career as a cybersecurity specialist requires more than just technical skills. Cybersecurity professionals also tend to have specific personalities. Do you qualify?

You can now trade oil and wheat on the blockchain, as commodities hit the platform

In an effort to increase transparency and prevent fraud, blockchain may be the next platform for trading goods.

Account takeover attacks ramping up, leading to explosion of phishing

ATO attacks steal a person's credentials and use them to send emails from their account, according to a recent Barracuda Networks report.

How credential stuffing contributed to 8.3B malicious botnet logins in early 2018

Malicious login attempts from bots increased by by almost 2 billion from April to May 2018. Here's who is at risk.

The 5 biggest blockchain myths, debunked

Blockchain stands to revolutionize many industries, but many people are still unsure of how the distributed ledger technology underpinning Bitcoin works.

The top 11 phishing email subject lines SMBs should look out for

Phishing is the biggest threat facing SMBs, according to the 2018 Webroot SMB Pulse Report.

Websites are attacked 58 times a day, even when patched properly

More than half (55%) of malware infected sites were running on their latest core versions when they were attacked, according to a recent SiteLock report.

Oops! Google accidentally changed the battery settings for a bunch of Android users

The battery saver feature was turned on as an 'internal experiment,' which Google has since rolled back.

Android Security Bulletin September 2018: What you need to know

Another month where Android finds itself with a mixture of Critical and High vulnerabilities. Jack Wallen offers highlights.

How to use the Android Pie lockdown mode

Jack Wallen walks you activating and enabling Android Pie's new lockdown mode and shows why you should use it.

Top 5 ways to block spam calls

Those annoying spam calls are on the rise, but TechRepublic's Tom Merritt has 5 solutions

Breach at US Retailer SHEIN Hits Over Six Million Users

Breach at US Retailer SHEIN Hits Over Six Million UsersUS fashion retailer SHEIN has admitted suffering a major breach affecting the personal information of over six million customers. The women’s clothing company revealed at the end of last week that...
The Register

Bug? Feature? Power users baffled as BitLocker update switch-off continues

Microsoft claims issue confined to older kit Three months on, users continue to report that Microsoft's BitLocker disk encryption technology turns itself off during security updates.…

UK issues first-ever GDPR notice in connection to Facebook data scandal

Canadian firm AggregateIQ, linked to the Facebook & Cambridge Analytica data scandal, is the first to be put on notice.

Symantec Completes Internal Accounting Investigation

Symantec announced on Monday that it has completed its internal accounting audit, and while some issues have been uncovered, only one customer transaction has an impact on financial statements. read more

Are Colleges Teaching Real-World Cyber Security Skills?

The cybersecurity skill shortage is a well-recognized industry challenge, but the problem isn’t that there are too few people rather that many of them lack suitable skills and experience. Cybersecurity is a fast-growing profession, and talented graduates are in...