-
New in Cybersecurity – Insights, threat trends, & RSA learnings
PRIVACY PRIVACY AT&T Business’ most recently #BizTalks Twitter Chat—What’s New in Cybersecurity—Insights, Threat Trends, & RSA Learnings—explored many emerging concepts in the cybersecurity industry. [Optional sentence: Our very own Tawnya Lancaster, AT&T Cybersecurity’s threat intelligence and trends Research lead, did a takeover of the @ATTBusiness Twitter handle to provide her point of view.] Head to the @ATTBusiness…
-
Ransomware could target OneDrive and SharePoint files by abusing versioning configurations
PRIVACY PRIVACY Researchers warn that documents hosted in the cloud might not be out of reach for ransomware actors and that while they’re harder to permanently encrypt due to the automated backup features of cloud service, there are still ways to make life hard for organizations. Researchers from Proofpoint have devised a proof-of-concept attack scenario…
-
Cybersecurity Researchers Find Several Google Play Store Apps Stealing Users Data
PRIVACY PRIVACY Most dangerous are spyware tools capable of stealing information from other apps’ notifications Read More
-
Cloud-native TACACS+ access solution launched by Portnox
PRIVACY PRIVACY Most organizations know an extra measure of access management is needed for IT staff who run their networks. The problem is one of the best solutions for achieving that—Terminal Access Controller Access Control Server (TACACS+)—can be both complicated and costly to implement. That’s why a company called Portnox announced Wednesday a cloud-native TACACS+…
-
NakedPages Phishing Toolkit is Now Available on Cybercrime Forums
PRIVACY PRIVACY The toolkit is reportedly fully automated and comes preloaded with more than 50 phishing templates and site projects Read More
-
Office 365 Functionality Could Allow Ransomware to Hold Files Stored on SharePoint and OneDrive
PRIVACY PRIVACY Malicious actors could reduce versioning limit of files to a low number and encrypt them more times than versioning limit Read More
-
Interpol arrests thousands of scammers in operation “First Light 2022”
PRIVACY PRIVACY Law enforcement agencies around the world appear to have scored a major victory in the fight against fraudsters, in an operation which has seized tens of millions of dollars and seen more than 2000 people arrested. Read more in my article on the Tripwire State of Security blog. Read More
-
Want to block two billion known breached passwords from being used at your company? It’s easy with Specops Password Policy tools
PRIVACY PRIVACY Graham Cluley Security News is sponsored this week by the folks at Specops. Thanks to the great team there for their support! With the help of live attack data, Specops Software’s Breached Password Protection can detect over 2 billion known breached passwords in your Active Directory. Using the Specops database, you can block…
-
Tenable Capture the Flag 2022: The Results Are In!
PRIVACY PRIVACY It’s time to crown the winners of this year’s Capture the Flag Event! This event presented a series of security-related challenges in a Jeopardy-style format. Challenges ranged in difficulty and topics including Web App, Reverse Engineering, Crypto, Stego, OSINT, Forensics, Code and more. There was stiff competition but the following teams captured the…
-
Attacking the Performance of Machine Learning Systems
PRIVACY PRIVACY Interesting research: “Sponge Examples: Energy-Latency Attacks on Neural Networks“: Abstract: The high energy costs of neural network training and inference led to the use of acceleration hardware such as GPUs and TPUs. While such devices enable us to train large-scale neural networks in datacenters and deploy them on edge devices, their designers’ focus…