Saturday, July 20, 2019

How to reverse the cybersecurity staffing shortage: 5 tips

CISOs must change the ways they recruit, train, and retain cybersecurity professionals, according to Forrester.

How businesses could be exposed to security risks from employees using FaceApp

The seemingly harmless fun of AI-based apps such as FaceApp can actually subject individuals and businesses to security breaches.

Why 72% of people still recycle passwords

Users recycle the same password an average of four times, according to a report.

Lateral phishing: Hackers are taking over business accounts to send malicious emails

The use of compromised accounts to send phishing emails to contacts inside and outside an organization is an increasing security threat.

Tech news roundup: Amazon Prime Day and the highest-rated workplaces of 2019

This week's TechRepublic and ZDNet stories include a breach of Sprint customers' data, notes from the Duo Security 2019 access report, and how execs are taking charge of digital transformation plans.

Top 5 blockchain challenges businesses face

While blockchain technology can offer great opportunities, the hype surrounding it often leads to unrealistic expectations, according to the World Economic Forum.

Malicious libraries in package repositories reveal a fundamental security flaw

The proliferation of malicious packages in repositories for software developers that rely on typosquatting points to a problem: A reliance on flat namespaces.

Why 70% of healthcare orgs have suffered data breaches

Digital transformation initiatives bring a slew of data privacy concerns to US health organizations, according to a Thales report.

Top 5 things to consider for your disaster recovery plan

You never know when disaster might strike, and being prepared can make all the difference. Tom Merritt suggests five tips for your disaster recovery plan.

Phishing alert: 80% of companies lack DMARC policies to protect against spoofing

Despite being the industry standard for email authentication to prevent cyberattacks, DMARC policies aren't implemented by most companies , according to 250ok.

How to solve the dreaded WordPress site maintenance error

If your Wordpress site is stuck in maintenance mode, there's a simple fix.

Infographic: Why email is your weakest security link

Employees receive nearly five phishing emails per work week, according to Avanan.

Top 5 cybersecurity challenges for CISOs

CISOs must drive business strategy amid an expanded attack surface and increasing security complexity, according to Fortinet.

How will Wi-Fi 5 and WPA2 coexist with Wi-Fi 6 and WPA3?

The migration to Wi-Fi 6 is the most complex in roughly a decade, as a new authentication standard is necessary to ensure security integrity. How will the two standards coexist?

How will Wi-Fi 5 & WPA2 coexist with Wi-Fi 6 and WPA3?

The migration to Wi-Fi 6 is the most complex in roughly a decade, as a new authentication standard is necessary to ensure security integrity. How will the two standards coexist?

Cisco Patches Critical Flaw in Vision Dynamic Signage Director

Cisco this week released a security patch for the Vision Dynamic Signage Director, to address a Critical vulnerability that could allow attackers to execute arbitrary actions on the local system.  Tracked as CVE-2019-1917, the vulnerability was found in the REST...

The Great Hack: the film that goes behind the scenes of the Facebook data scandal

This week, a Netflix documentary on Cambridge Analytica sheds light on one of the most complex scandals of our time. Carole Cadwalladr, who broke the story and appears in the film, looks at the fallout – and finds ‘surveillance...

Scotland Yard Twitter and Emails Hacked

London's Metropolitan Police apologised Saturday after its Twitter, emails and news pages were targeted by hackers and began pumping out a series of bizarre messages. read more

Browser Extensions Scraped Data From Millions of People

Slack passwords, NSO spyware, and more of the week's top security news.

Hackers breach FSB contractor, expose Tor deanonymization project and more

SyTech, the hacked company, was working on research projects for the FSB, Russia's intelligence service.