Security Now - Security challenges come in many forms


ABTV Application Cloud Endpoint Infrastructure IoT/Embedded Mobile Network Operational Security Management
Sign up for our weekly newsletter! REGISTER NOW

News & Views Facebook Revises Data Breach Number Down to 30M Users Scott Ferguson Managing Editor, Light Reading, \| 10/12/2018 Two weeks after Facebook announced a vulnerability in its "View As" feature that exposed users' security tokens, the social media company issued an update, sharing that the data breach impacted 30 million accounts -- not the 50 million users Facebook originally thought. Post a Comment \| READ (3 comments) Latest comment: > "You can be as much in control as you want of the infomation you volunteer... Intel's 9th Gen Processors Offer Protections Against Spectre & Meltdown Larry Loeb Author, \| 10/12/2018 When the Spectre and Meltdown class of vulnerabilities in x86 processors became widely known in March of 2018, the then-CEO of Intel, Brian Krzanich, told the world that its upcoming CPUs would have hardware partitioning enabled for protection. Post a Comment \| READ (5 comments) Latest comment: I suspect that instead of re-designing chips -- that software will be written that... DHS Raps Juniper Over the Knuckles for 40 Junos OS Vulnerabilities Larry Loeb Author, \| 10/12/2018 The Department of Homeland Security took Juniper Networks out to the woodshed this week, and gave the company a couple of major whacks across the knuckles. Post a Comment \| READ (3 comments) Latest comment: If the downtime due to patching is long enough, some customers might even consider... Senators Demand More Information on Google+ Vulnerability Scott Ferguson Managing Editor, Light Reading, \| 10/12/2018 A US Senate committee has sent a letter to Google CEO Sundar Pichai that is demanding more answers about a flaw in the company's Google+ social media platform that could have exposed the personal information of about 500,000 users to third-party developers. Post a Comment \| READ (1 Comment) Latest comment: The bigger problem for Google is that it looks like it wasn't very transparent about... Russian & Chinese Hacking Forums Have Distinct Characteristics Scott Ferguson Managing Editor, Light Reading, \| 10/11/2018 It's thieves versus geeks on Russian and Chinese hacking forums. Post a Comment \| READ (2 comments) Latest comment: I also wonder how these places build trust.. when there's no reason to trust anyone... GAO: Pentagon's New Weapons Systems Vulnerable to Cyber Attacks Scott Ferguson Managing Editor, Light Reading, \| 10/11/2018 With the US Defense Department preparing to buy and develop $1.66 trillion in new weapons over the next several years, a report finds that these next-generation systems are vulnerable to any number of cyber attacks. Post a Comment \| READ (1 Comment) Latest comment: The problem is that the government has been put under "capitalist" pressures. Contractors... Gemalto: 4.5B Records Breached in First Half of 2018 Larry Loeb Author, \| 10/10/2018 Anyone paying attention to headlines in the past several months can see that the number and frequency of data breaches is creeping upwards. Now, Gemalto is putting an actual figure to these security incidents and the result is staggering. Post a Comment \| READ () Magecart Attempted Supply Chain Attack Against Shopper Approved Scott Ferguson Managing Editor, Light Reading, \| 10/10/2018 Magecart, which is suspected of several recent attacks against Ticketmaster, British Airways and other firms, is at it again. This time, the group targeted a site called Shopper Approved, which provides third-party product reviews and other services to larger e-commerce companies. Post a Comment \| READ () Bloomberg: Major Telecom Also Found Hacked Supermicro Servers Scott Ferguson Managing Editor, Light Reading, \| 10/10/2018 A major US telecom company discovered that servers that used its own data center had been hacked, and this manipulated hardware could be used for spying and industrial espionage within the business, according to another report from Bloomberg. Post a Comment \| READ (2 comments) Latest comment: I wonder why Trump hasn't used this as an example for making more tech products... Bloomberg Hardware Hacking Story Faces Fierce Backlash From Apple & DHS Scott Ferguson Managing Editor, Light Reading, \| 10/9/2018 The Bloomberg story that reported on how hackers for China implanted chips in Supermicro motherboards in order to conduct wide-spread industrial espionage is facing an unusually fierce backlash from Apple, Amazon, the US Department of Homeland Security and several other companies and government organizations. Post a Comment \| READ (4 comments) Latest comment: Ooo! Maybe it's a stock shorting scheme. That too belongs in a movie, or maybe on... Google+ Bug Exposed Personal Data of 500K Users – Report Scott Ferguson Managing Editor, Light Reading, \| 10/9/2018 A software bug in the Google+ social media platform exposed thousands of users' personal information to third-party developers, according to a report in the Wall Street Journal. The company discovered the flaw in March, but kept quiet about it until news broke this week. Post a Comment \| READ (6 comments) Latest comment: I wonder the same. Maybe they did have a team and the security problems were actually... Rotten Fruit: 4 Insider Threats to Watch Out For Alan Zeichick Principal Analyst, Camden Associates, \| 10/8/2018 That woman who sits across the hall from you? Don't trust her. The young man in the cubicle near the IT department's break room? Don't trust him. The gray-haired woman who runs the quarterly sales meetings? Don't trust. That really, really tall bald guy in HR? Don't trust. Post a Comment \| READ (2 comments) Latest comment: There are probably a few more threat vectors, too... Trust no one.. Load More Articles + All Articles All Video All Slide Shows All Articles discussion board pariah1031, 10/15/2018 5:45:19 AM Dao tao SEO Uy Tin Toan Quoc Re: Dao tao SEO Uy Tin Toan Quoc Đào Tạo SEO Uy Tín Toàn Quốc Hôm nay, tôi sẽ "bật mí" cho các bạn một phương pháp để có thể giúp cho việc... Post Your Reply markgrogan, 10/15/2018 5:30:20 AM Data Breach Increase Shows Endpoints Are Under Attack Re: Re: Always close the door I'm not sure why any hacker would want to target the middle points when it's obviously easier to target the information where it came from and where it's coming out of! I would think that it would be a lot more technical and full of effort... Post Your Reply elly.mast, 10/15/2018 4:32:53 AM 4 Steps to Make Your Website GDPR Compliant Re: Re: First minute printable calendar Companies will need to learn to strike a balance between clear and concise privacy policy language and legally protecting themselves. Post Your Reply MarkSindone, 10/15/2018 4:16:30 AM DDoS Today: No Safety Inside the Perimeter Re: hi It is not surprising to know that connectivity has its pros and cons. We have so far been utilizing technology in so many different ways to better our lifestyles. However, we cannot deny the fact that we have indeed suffered several glitches... Post Your Reply ThomasMaloney, 10/15/2018 1:45:32 AM 4 Steps to Make Your Website GDPR Compliant Re: Re: First minute it's good to see that there are a lot more standards in place to protect the privacy of people but I'm sure that there will still be some who flout the rules and don't put the necessary measures in place. I bet that a lot of those people won't... Post Your Reply Michelle, 10/14/2018 9:14:44 PM Bloomberg Hardware Hacking Story Faces Fierce Backlash From Apple & DHS Re: Re: Trilling Theory Ooo! Maybe it's a stock shorting scheme. That too belongs in a movie, or maybe on an episode of Billions. Post Your Reply Michelle, 10/14/2018 9:13:17 PM Google+ Bug Exposed Personal Data of 500K Users – Report Re: Re: Glass half full I wonder the same. Maybe they did have a team and the security problems were actually much bigger than they expected. I'm really curious about the insider details of the G+ closure. Post Your Reply Michelle, 10/14/2018 9:06:56 PM Google+ Bug Exposed Personal Data of 500K Users – Report Re: Re: Glass half full I still use G+ sometimes. I am a member of a fantastic group dedicated to sharing interesting non-fiction writing (mostly long reads). It's the only thing that really kept me going back. Post Your Reply Michelle, 10/14/2018 9:04:57 PM Uber Settles With California Authorities Over 2016 Data Breach Re: Re: Will they ever learn? It's sad, but true. There are many dollars going to places they should not when there are better options. I often wonder how true to life House of Cards is... Post Your Reply mhhfive, 10/14/2018 5:31:37 PM US Voting Machines Riddled With Vulnerabilities & Security Flaws Re: Re: Awesome! I vaguely recall that San Francisco was looking into an open source voting booth -- and that it would be the first city to do so, if the city implemented it. Post Your Reply batye, 10/14/2018 1:57:34 PM US Voting Machines Riddled With Vulnerabilities & Security Flaws Re: Re: Awesome! @mhhfive I hope you are wrong but this days no one seems to care... only about themself... sad reality... Post Your Reply LarryLoeb, 10/14/2018 10:43:47 AM US Voting Machines Riddled With Vulnerabilities & Security Flaws Re: Re: Awesome! @mhhfive Facile, but may not be the problem here. There are major disruptions right now due to a nuber of factors. Huge legacy effect is present along with a lack of standards, for example. Post Your Reply Next 5 messages + All messages All messages Chat 8/31/2017 3:54:21 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thank you! klogan453 Keeper 8/31/2017 3:51:19 PM Voice of Security Radio: A Security Partnership with Machine Learning: Well, it seems like Steve and I managed to answer everyone's questions in our conversation. So I'll say thanks once again to Steve Grobman, CTO of McAfee, for being such a wonderful guest here on Voice of Security Radio! Curt Franklin Keeper 8/31/2017 3:47:35 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thanks. Sr.Contr61262 Keeper 8/31/2017 3:47:19 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thanks for helping out, Daren! Curt Franklin Keeper 8/31/2017 3:45:59 PM Voice of Security Radio: A Security Partnership with Machine Learning: (On behalf of Steve Grobman) - Data science and computer science expertise is definately in high demand by the cyber security technology industry as well as many other industries that are using similar capabilities daren Keeper 8/31/2017 3:44:38 PM Voice of Security Radio: A Security Partnership with Machine Learning: (On behalf of Steve Grobman) - There is not a formal certificatio process.. most users don't need to understand the nuance of the technology which is generally built by technology product providers daren Keeper 8/31/2017 3:42:40 PM Voice of Security Radio: A Security Partnership with Machine Learning: And how are mainline security pros/machine learning pros certified, i.e. how do you lknow that the person you're hiring to help you knows what they're dcoing? Sr.Contr61262 Keeper 8/31/2017 3:39:20 PM Voice of Security Radio: A Security Partnership with Machine Learning: Steve, one question we didn't get to is that of skilled practitioners. I know that mainline security pros are in short supply and high demand: Is it even worse when it comes to machine learning pros in the security space? Curt Franklin Keeper 8/31/2017 3:37:01 PM Voice of Security Radio: A Security Partnership with Machine Learning: Since I was late - and again - really sorry, I don't even know what to ask. Feel free to ask a question or my behalf. Sr.Contr61262 Keeper 8/31/2017 3:33:59 PM Voice of Security Radio: A Security Partnership with Machine Learning: Well folks, now's the time to ask any questions we didn't get to in the audio interview. Steve will be here in just a moment -- what would you like to know? Curt Franklin Keeper Next 5 chats +		Information Resources • Futuriom SD-WAN Growth Report 2018 • Versa Networks Enterprise Solution Brief • Protect Your Branch Office Network from Cyber-Criminals • Top 10 Ransomware • Security Now Special Report: Endpoint Ecosystems – Collaborating to Conquer Security Threats • You Cannot Secure What You Cannot See: How to make your hybrid cloud environment visible and secure • Security Now Special Report – Security Automation: Risks & Rewards for Your Security Program • Security Now Special Report – Backup & Recovery • Cisco Umbrella + Cloudlock: Simple, effective cloud security • MSSP Data Sheet All resources Analysts Corner Ovum Resources • Ovum 2018 Trends to Watch: IT & Cybersecurity • Ovum IoT Security: Technology Strategies & Vendor Profiles • Ovum 2018 Trends to Watch: Managed Security Services • Ovum's Mini-Guide to GDPR Analysts Corner archive Flash Poll All polls Video CloudPassage's new technology, called Container Secure, involves a five-step process to ensure seamless security in container deployments from the ... You can't so much as go to a coffee shop today without hearing the word 'blockchain.' Hearing about a useful blockchain is less common, but ... Last year, 60 million companies changed owners worldwide. That turnover makes it incredibly difficult to avoid doing business with entities (e.g., ... Keith Furst of Data Derivatives interviews Daniel Wagner, author of a new book, Virtual Terror: 21st Century Cyber Warfare. They discuss the ways ... Facebook has introduced new measures that will enable users to secure access to their accounts using a physical 'key' application. All Videos Sponsored Video Sage Wagner, senior security pre-sales engineer with RiskSense, provides a demo of the company's latest technology 'RiskSense Solution,' a ... Janus Technologies is launching a line of products that protect against the many threats to enterprises' sensitive data. David Schultz, vice ... This new video will inspire companies to reimagine their business for success in a world where connectivity is more than a commodity. Sponsored Video All Videos Radio Shows ARCHIVED \| August 31, 2017, 3pm EDT Voice of Security Radio: A Security Partnership with Machine Learning An interview with Steve Grobman, CTO of McAfee ARCHIVED SHOWS DOWNLOAD TO CALENDAR Twitter Feed Tweets by Security_Now_ like us on facebook