Excess privilege in the cloud is a universal problem, IBM says
Excess privilege granted to cloud identities is a key component in 99% of all security tests performed by IBM’s X-Force Red penetration testing team, according...
Say Hello to Crazy Thin ‘Deep Insert’ ATM Skimmers
A number of financial institutions in and around New York City are dealing with a rash of super-thin “deep insert” skimming devices designed to fit...
How to Scale Cybersecurity for Your Business
To scale their cybersecurity programs, organizations should deploy layered security solutions such as those included in a CIS SecureSuite Membership. Read More
Cybersecurity startup launches mobile app to protect against phishing attacks
Cybersecurity startup novoShield has launched an enterprise-grade mobile security application, designed to protect users from mobile phishing threats. Released this week for iPhones via the...
zabbix-6.0.8-1.fc37
FEDORA-2022-0d56cb7ee4 Packages in this update: zabbix-6.0.8-1.fc37 Update description: 6.0.8, fixes CVE-2022-40626 Read More
Fake Security App Found Abuses Japanese Payment System
McAfee’s Mobile Research team recently analyzed new malware targeting NTT DOCOMO users in Japan. The malware which was distributed on the Google Play store pretends...
CVE-2021-38924
IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in...
Upcoming Speaking Engagements
This is a current list of where and when I am scheduled to speak: I’m speaking as part of a Geneva Centre for Security Policy...
Vulnerabilities Found in Airplane WiFi Devices, Passengers’ Data Exposed
The flaws affected the Flexlan FX3000 and FX2000 series wireless LAN devices made by Contec Read More
SparklingGoblin APT Targeted Hong Kong University With New Linux Backdoor
Eset also said the same university was targeted during student protests in May 2020 Read More