Cyberattacks on Texas Cities Put Other Governments on Guard

Fri, 23 Aug 2019 18:07:25 +0000

Cyberattacks that recently crippled nearly two dozen Texas cities have put other local governments on guard, offering the latest evidence that hackers can halt routine operations by locking up computers and public records and demanding steep ransoms. read more

Kubernetes Patches Recent HTTP/2 Vulnerabilities

Fri, 23 Aug 2019 17:48:51 +0000

Software updates released by Kubernetes this week address HTTP/2 implementation vulnerabilities that were disclosed earlier this month.  read more

US Wants Woman Accused in Capital One Hack to Stay Locked Up

Fri, 23 Aug 2019 17:36:06 +0000

A woman accused of hacking Capital One and at least 30 other organizations is a flight risk, a threat and should be kept locked up until her trial, U.S. prosecutors said in court documents filed ahead of a Friday detention hearing in Seattle. read more

Asruex Malware Exploits Old vulnerabilities to Infect PDF, Word Docs

Fri, 23 Aug 2019 17:23:56 +0000

A recently observed variant of the Asruex backdoor acts as an infector by targeting old vulnerabilities in Microsoft Office and Adobe Reader and Acrobat 9.x, Trend Micro reports.  read more

New Tool From Cisco Hunts Flaws in Automotive Computers

Fri, 23 Aug 2019 16:49:45 +0000

Cisco has released a new hardware tool designed to help researchers, developers and automakers discover vulnerabilities in automobile computers.  read more

U.S. Charges 80 in Massive Online Fraud Scheme

Fri, 23 Aug 2019 15:52:51 +0000

The United States Department of Justice this week unsealed an indictment that charges 80 defendants, most of them Nigerians, for their roles in a massive fraud and money laundering scheme.  read more

Black Hat 2019: Bounties, Breaches and Deepfakes, Oh My!

Fri, 23 Aug 2019 15:31:41 +0000

Black Hat 2019 recently wrapped in Las Vegas, where somewhere between 15,000 and 20,000 experts descended to experience the latest developments in the world of cybersecurity. While we saw the expected releases of new threat research, vulnerabilities and breakdowns on nation-state level attacks, the reason I, and many others, attend this annual conference is to see what trends are emerging, and be surprised by the unexpected. read more

Classification Concerns Over FISMA Report on Improving Agency Cybersecurity

Fri, 23 Aug 2019 15:02:40 +0000

The Federal Information Security Modernization Act (FISMA) annual report to Congress for full year 2018 indicates considerable success in improving the cybersecurity of federal agencies. read more

VMWare to Acquire Endpoint Security Firm Carbon Black

Fri, 23 Aug 2019 13:19:45 +0000

Virtualization and cloud infrastructure giant VMWare (NYSE: VMW) announced on Thursday that it has agreed to acquire endpoint security firm Carbon Black (NASDAQ: CBLK) in a deal representing an enterprise value of $2.1 billion. read more

Illegal Cryptocurrency Mining at Ukraine Nuclear Plant Exposed Sensitive Data

Fri, 23 Aug 2019 12:17:07 +0000

Sensitive information from a nuclear power plant in Ukraine was exposed due to an illegal cryptocurrency mining operation run by workers, according to several media reports. read more

Microsoft Offers Up to $30,000 for Flaws in Chromium-Based Edge

Fri, 23 Aug 2019 09:41:18 +0000

Microsoft is offering up to $30,000 for vulnerabilities found in the new version of its Edge browser. read more

Claroty Releases Free Diagnostic Tool for Urgent/11 Vulnerabilities

Fri, 23 Aug 2019 07:31:30 +0000

Industrial cybersecurity firm Claroty this week released a free and open source tool designed to help organizations check whether their operational technology (OT) devices are vulnerable to Urgent/11 attacks. read more

Hackers Target Vulnerabilities in Fortinet, Pulse Secure Products

Thu, 22 Aug 2019 19:17:07 +0000

Recently disclosed vulnerabilities affecting enterprise virtual private network (VPN) products from Fortinet and Pulse Secure have been exploited in the wild, a researcher reported on Thursday. read more

Majority of Malicious Job Attacks on Microsoft SQL Server Target Asia

Thu, 22 Aug 2019 18:20:10 +0000

Vietnam emerges as the country affected the most by Microsoft SQL Server attacks that leverage malicious jobs, a new report from Kaspersky reveals. read more

Remote Code Execution Flaws Impact Aspose APIs

Thu, 22 Aug 2019 17:53:18 +0000

Vulnerabilities that Cisco Talos security researchers have discovered in various Aspose APIs could allow a remote attacker to execute code on affected machines. read more

DLL Hijacking Flaw Found in Bitdefender Antivirus Free 2020

Thu, 22 Aug 2019 14:59:24 +0000

A DLL hijacking vulnerability affecting Bitdefender Antivirus Free 2020 could have been exploited for privilege escalation and other malicious purposes, SafeBreach researchers revealed on Wednesday. read more

Privileged Access Management Provider Remediant Raises $15 Million

Thu, 22 Aug 2019 13:02:11 +0000

San Francisco, CA-based privileged access management (PAM) solution provider Remediant has closed a $15 million Series A funding round co-led by Dell Technologies Capital and ForgePoint Capital. The money will be used to expand Remediant's marketing and field operations, product engineering, channel and customer success programs, following quintupled sales revenue between 2017 and 2018. read more

Attackers Demand Millions in Texas Ransomware Incident

Thu, 22 Aug 2019 12:46:13 +0000

The cybercriminals behind the recent ransomware incident that impacted over 20 local governments in Texas are apparently demanding $2.5 million in exchange for access to encrypted data. read more

Tech Giants Join Forces on Confidential Computing

Thu, 22 Aug 2019 12:07:49 +0000

The Linux Foundation this week announced an industry-wide effort aimed at accelerating the adoption of confidential computing. read more