News
-
Facebook is vile, but banning it in Russia is wrong
Yes, having access to Facebook would leave ordinary Russians open to crazy QAnon theories, anti-vax propaganda, and a myriad of narrow echo chambers. But it would also give them a chance to seek out independent reporting on the horrific invasion of Ukraine by Russia. Read More
-
Facebook and Microsoft are the most impersonated brands in phishing
Facebook jumped to the top spot in the 20 most impersonated brands by phishers in 2021, representing 14% of phishing pages, according to Vade’s annual Phishers’ Favorites report. Microsoft, with 13%, placed second, according to the report, which analyzed full-year phishing data captured by Vade, a company that offers an email filtering service for phishing,…
-
Senate Passes Strengthening American Cybersecurity Act
Legislation requiring critical infrastructure operators to report cyber-attacks within 72 hours goes to House Read More
-
Cyber-Criminals Exploit Invasion of Ukraine
Rise in malspam campaigns exploiting attack on Ukraine by Russia Read More
-
Vulnerabilities in Over 100k Medical Infusion Pumps
Security researchers find 75% of smart infusion pumps are susceptible to known vulnerabilities Read More
-
Samsung Encryption Flaw
Researchers have found a major encryption flaw in 100 million Samsung Galaxy phones. From the abstract: In this work, we expose the cryptographic design and implementation of Android’s Hardware-Backed Keystore in Samsung’s Galaxy S8, S9, S10, S20, and S21 flagship devices. We reversed-engineered and provide a detailed description of the cryptographic design and code structure,…
-
Attivo Networks expands Active Directory protection
A popular target of attackers, Microsoft Active Directory will receive an extra measure of protection under a new offering announced Thursday by Attivo Networks. The company’s ADSecure-DC solution expands its Active Directory protection to non-Windows endpoints. About a year ago Attivo introduced an endpoint product that could detect suspicious attempts to query Active Directory, intercept…
-
CIS Benchmarks March 2022 Update
The following CIS Benchmarks have been updated or released for March 2022. We’ve highlighted the major updates below. Each Benchmark includes a full changelog that can be referenced to see all changes made. Read More
-
Nearly All Cybersecurity Companies Expose AWS Assets – Report
Study uncovers 200,000 such assets across 35 vendors Read More
-
Over 60% of SOC Analysts Are Planning to Quit Next Year
Report reveals SecOps teams are overworked and understaffed Read More