Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
Discussion Also Tackles Kaseya Ransomware Decryption Key, Raising Enterprise Security PostureFour editors at Information Security Media Group discuss important cybersecurity issues, including the rise of quadruple extortion attacks employed by ransomware gangs, the FBI reportedly withholding the Kaseya ransomware decryption key for weeks, and raising security posture during a pandemic. Source: Bank Info Security
Continue Reading
Jen Easterly Offered Details of Investigation That Led to Joint Security AlertDuring testimony before a U.S. Senate committee hearing Thursday, CISA Director Jen Easterly told lawmakers that a recent joint alert issued by her agency, the FBI and the Coast Guard Cyber Command stemmed from an attempted attack against the Port of Houston in August. […]
Continue ReadingThe attack targets Android devices and starts with a malicious SMS message that aims to bring malware onto compromised devices. Source: Darkreading Attacks Breaches
Continue ReadingThe definitive OWASP Top 10 2021 list is out, and it shows that broken access control is currently the most serious web application security risk. How is the list compiled? “We get data from organizations that are testing vendors by trade, bug bounty vendors, and organizations that contribute internal testing data. Once we have the […]
Continue ReadingNewcomer Wants Journalists to Publicize Victims, to Pressure Them Into Paying RansomA new and still little-known ransomware group called Karma has been pursuing a novel strategy to pressure victims into paying: Get journalists to publicize businesses hit by the ransomware operation, adding pressure on victims to pay the ransom demand. Source: Bank Info Security
Continue ReadingContrast’s platform detects and prevents against OWASP Top Ten risks from development to production with out-of-the-box policy rules and automated compliance reporting. Source: Darkreading Attacks Breaches
Continue ReadingHow unauthorized users can exploit wireless infrastructures for covert communication. Source: Darkreading Attacks Breaches
Continue ReadingA vast majority of security professionals surveyed think any exploit will start with the endpoint. Source: Darkreading Attacks Breaches
Continue ReadingAnother zero-day in Apple’s software (CVE-2021-30869) is being actively exploited by attackers, forcing the company to push out security updates for macOS Catalina and iOS 12. About CVE-2021-30869 Flagged by researchers Erye Hernandez and ClĂ©ment Lecigne of Google’s Threat Analysis Group and Ian Beer of Google Project Zero, the vulnerability is a type confusion issue […]
Continue Reading
Jerome Powell Says Discussion Paper Forthcoming as Fed Weighs CBDCThe U.S. Federal Reserve said Wednesday it is continuing to evaluate the creation of a central bank digital currency, or CBDC, and that it intends to publish research on the subject shortly, according to Chair Jerome Powell. Source: Bank Info Security
Continue Reading