Sign up for our weekly newsletter!
News Analysis
Latest Content
Page 1 / 2   >   >>
Spam Emails Bring Bomb Threats to US Businesses, Schools
News Analysis  
12/14/2018   Post a comment
On Thursday, US businesses and schools began receiving a number of bomb threats that demanded Bitcoin as ransom. All these seem related to a series of spam emails.
China Suspected of Massive Marriott Data Breach Report
News Analysis  
12/13/2018   Post a comment
A New York Times report finds that investigators believe China-backed attackers pulled off the massive data breach at Marriott, exposing the records of 500 million guests. It's a continuation of the tensions between China and the US.
'Operation Sharpshooter': Lazarus Revived or False Flag Operation?
News Analysis  
12/12/2018   Post a comment
McAfee Labs has homed in on a new attack targeting critical infrastructure that they call 'Operation Sharpshooter.' However, while there is technical overlap with the Lazarus Group, there's also the possibility of a false flag operation.
Supermicro: Report Clears Company of Hacking Allegations
News Analysis  
12/12/2018   Post a comment
Following a Bloomberg report that found hackers implanted specialized chips in its motherboards, Supermicro claims an audit has cleared the company of wrongdoing.
New Google+ Bug Affects 52M Users, Accelerating Site's Demise
News Analysis  
12/11/2018   Post a comment
While the latest disclosure does not seem to have leaked any data, it accelerates Google+'s demise.
Cloud, Compliance & the Death of the IT Checklist
News Analysis  
12/7/2018   1 comment
For years, IT could rely on various checklists to ensure that systems and infrastructure were in compliance with various government regulations. The cloud has upended that structure, and a new, more automated approach is now needed.
North Korean-Backed Group Suspected of 'Stolen Pencil' Campaign
News Analysis  
12/6/2018   3 comments
The ASERT Team at NetScout has published a report that details a campaign dubbed "Stolen Pencil," which targeted universities and other academic groups. A North Korean-backed group is suspected of starting it.
Citrix: Password Reset Necessary to Stop Credential Stuffing Attack
News Analysis  
12/6/2018   1 comment
Citrix forced users of its ShareFile tool to reset their passwords this week, following concerns that an attacker may have attempted to use credential stuffing to access accounts.
IoT Botnets Are Increasing Source of Malware on SP Networks
News Analysis  
12/5/2018   1 comment
IoT botnets now make up 78% of the malware found on service provider networks, according to a new analysis by Nokia. These bots are being used for a wide-range of criminal activity, including cryptomining.
Quora Breach Hits 100M User Accounts Containing Highly Personal Data
News Analysis  
12/5/2018   7 comments
The latest mega data breach hit question-and-answer portal Quora, which reported 100 million user accounts were accessed by a malicious third-party. The data also contains highly personal details about customers.
FBI Investigating 'Cyber Intrusion' of NRCC Report
News Analysis  
12/4/2018   1 comment
In an echo of the same cyberattack that hit Democrats two years ago, the FBI is investigating the theft of emails from the National Republican Congressional Committee, according to a public report.
Microsoft, Mastercard Team Up on Identity Management Technology
News Analysis  
12/4/2018   1 comment
While not explicit in their announcement, it seems Microsoft and Mastercard plan to use some form of blockchain to create what they call a 'universally-recognized digital identity.'
Marriott: 500 Million Guest Records Compromised in Data Breach
News Analysis  
11/30/2018   16 comments
Marriott is investigating a possible data breach that may have compromised the personal data of 500 million Starwood guests, including credit card information, names, addresses and more.
Dell: Your Personal Info May, or May Not, Have Been Stolen
News Analysis  
11/29/2018   20 comments
It appears attackers attempted to penetrate Dell's network in early November. While the company does not believe any personal data was taken, Dell cannot guarantee no one was compromised.
Ransomware, New Privacy Laws Are Top Security Concerns for 2019
News Analysis  
11/29/2018   12 comments
It's never too early for New Year's predictions. The Information Security Forum is focused on four areas for 2019: ransomware; new privacy laws and regulations; IoT; and supply chain.
Iranian Hackers Charged With Creating SamSam Ransomware
News Analysis  
11/29/2018   2 comments
The Justice Department has charged two Iranian hackers with creating the SamSam ransomware that helped them collect about $6 million in Bitcoin ransom and caused about $30 million in damage.
Feds Charge 8 in Large-Scale Ad Fraud & Botnet Scheme
News Analysis  
11/28/2018   9 comments
The Justice Department has charged eight people with operating a large-scale ad fraud scheme that involved a pair of botnets based on malware dubbed Kovter and Boaxxe.
UK & Dutch Authorities Slap Uber With Fines Over 2016 Data Breach
News Analysis  
11/28/2018   3 comments
On the same day, authorities in the UK and the Netherlands each fined Uber for a data breach that occurred in 2016 and affected millions of customers, as well as Uber drivers.
Facebook Documents Could Shed Light on Company's Privacy Policies
News Analysis  
11/27/2018   13 comments
Now that the UK Parliament has seized a cache of Facebook documents and emails, experts foresee a new focus on how the social media giant treats its users' privacy and personal data.
Cross-Functional Communication Can Better Secure Your Enterprise
News Analysis  
11/26/2018   2 comments
Security teams are being asked to not only handle a greater threat landscape, but help the entire enterprise stay secure. Cross-functional communication can help your security work more effectively outside the InfoSec department.
Former FBI Agent James Gagliano: 'Cyber Touches Everything'
News Analysis  
11/20/2018   Post a comment
Former FBI Agent James Gagliano sees the worlds of physical security and cybersecurity increasingly merging in the area of critical infrastructure.
BlackBerry Acquiring Security & AI Firm Cylance for $1.4B
News Analysis  
11/16/2018   1 comment
BlackBerry is continuing to move away from its smartphone legacy with the acquisition of Cylance, a firm that specializes in artificial intelligence and security, in a deal worth $1.4 billion.
Magecart Attacks Proving Persistent Problem for Online Retailers
News Analysis  
11/16/2018   1 comment
A research report shows that one in five sites targeted by a Magecart attack become re-infected, with the average skimming operation lasting nearly 2 weeks.
Mylobot Botnet & Khalesi Malware Deliver One-Two Security Punch
News Analysis  
11/15/2018   Post a comment
The recently discovered Mylobot botnet is now delivering Khalesi information stealer malware as part of its payload, according to new research from CenturyLink.
Kubernetes & Containers Stir Security Concerns in the Cloud
News Analysis  
11/15/2018   1 comment
A study by security startup StackRox finds that in the rush to incorporate Kubernetes and containers into enterprises' cloud plans, security issues are being missed.
WannaCry Continues Rampage 18 Months After First Outbreak
News Analysis  
11/15/2018   Post a comment
A new report from Kaspersky Lab finds that 18 months after WannaCry fist infected Windows machines around the world, the ransomware remain a significant security threat.
Sophos: 'Living off the Land' Is the Law of the Land
News Analysis  
11/14/2018   1 comment
In its annual Threat Report, Sophos Labs researchers find that cybercriminals are using 'living off the Land' techniques more frequently for their attacks. At the same time, the study finds that ransomware is getting more hands-on.
Cyber Attacks Becoming Greater Risk for Businesses Worldwide
News Analysis  
11/13/2018   Post a comment
A new study by the World Economic Forum finds that cyber attacks present the greatest risk to businesses in Europe, North America and eastern Asia.
Cloudflare's DNS Service Lands on Android, iOS
News Analysis  
11/13/2018   1 comment
Following the April announcement of its offering, Cloudflare is bringing its new DNS resolution service to Android and iOS.
Cryptojacking: Why SMBs Need to Stay on High Alert
News Analysis  
11/12/2018   Post a comment
Cryptojacking is one of the biggest threats circulating these days. While all businesses are at risk, SMBs are especially prone to these types of attacks. Here's how smaller firms can protect themselves.
Symantec Offers New Details of North Korean-Backed 'FASTCash' Attack
News Analysis  
11/9/2018   2 comments
"FASTCash" is a cyber attack targeting ATMs around the world with backing from the North Korean government, and now Symantec has new details about how the scheme works.
HSBC Data Breach Shows Failure to Protect Passwords & Access Controls
News Analysis  
11/8/2018   6 comments
This week, HSBC disclosed a data breach to customers that seems to show the bank failed to properly protect passwords and access controls that secured personal data.
New Botnet Infects 100K Routers to Blast Out Spam
News Analysis  
11/8/2018   Post a comment
Qihoo 360's Netlab has found a new botnet dubbed BCMUPnP_Hunter, which can infect 100,000 home routers at a time to blast out spam by connecting to web servers for Outlook, Hotmail and Yahoo.
Enterprises Confronting Increasing Volume of Critical Vulnerabilities Study
News Analysis  
11/7/2018   Post a comment
The number of high-alert and critical vulnerabilities continues to grow, with 2018 shaping up to be a record year for security flaws found within corporate networks, according to new research from Tenable.
Symantec Makes 2 Acquisitions, While Broadcom Dumps CA's Veracode Unit
News Analysis  
11/6/2018   Post a comment
The global cybersecurity market got an early week shakeup as Symantec acquires Javelin Networks and Appthority on the same day. Meanwhile, Broadcom completed its deal for CA Technologies and immediately dumped the company's Veracode security unit.
Cybercrooks Redirect Vote411 Website Searchers to Scareware Page
News Analysis  
11/6/2018   Post a comment
After comedian John Oliver promoted the Vote411 website on his show, cybercrooks started redirecting iOS users to an alternative site that serves up scareware.
Kraken Cryptor Update Points to Rise of Ransomware-as-a-Service
News Analysis  
11/2/2018   1 comment
With the group behind the Fallout Exploit Kit distributing a new version of Kraken Cryptor, a joint investigation by McAfee and Recorded Future finds that ransomware-as-a-service is on the rise.
New 'Sextortion' Schemes Fueled by Stolen Passwords & Credentials
News Analysis  
11/1/2018   9 comments
Cybercriminals are using a cache of old, stolen credentials and passwords to fuel a new spate of 'sextortion' campaigns aimed at embarrassing individual users, according to data compiled by Barracuda Networks.
DoJ Charges 10 Chinese Nationals in Elaborate Cyberespionage Case
News Analysis  
11/1/2018   5 comments
The Justice Department has indicted 10 Chinese nationals as part of an elaborate cyberespionage case that involved stealing plans for a new turbonfan engine and infecting computers with malware.
Carbon Black: 20 Voter Databases for Sale on the Dark Web
News Analysis  
10/31/2018   2 comments
On the eve of the 2018 US election, Carbon Black released its quarterly threat report, which found 20 voter databases for sale on the Dark Web, including ones that contain information on voters in Florida, New York, Colorado and Connecticut.
Satori Botnet Resurfaces & Targets Android Devices
News Analysis  
10/30/2018   2 comments
Despite that fact its author has been sent back to jail, the Satori botnet has recently resurfaced and seems to be targeting Android devices, according to a research note from CenturyLink.
IBM's $34B Bid for Red Hat Will Upend Cloud As We Know It
News Analysis  
10/29/2018   10 comments
Over the weekend, IBM announced that it would acquire Red Hat for $34 billion. The deal will likely upend the cloud computing market for good.
Want a Sustainable Security Workforce? Start Getting Innovative
News Analysis  
10/29/2018   11 comments
Security is a never-ending struggle to keep up. Staffing your team is no exception. However, the old method of finding talented InfoSec people are no longer working. It's time to get innovative.
Multiple Phishing Attacks Target Top Universities
News Analysis  
10/26/2018   6 comments
Kaspersky Labs sent out a warning this week that multiple phishing campaigns have targeted more than 100 universities and schools over the past year, including the University of Washington, Cornell University and others.
Check Point, Fortinet Add Cloud Security Depth With Acquisitions
News Analysis  
10/26/2018   2 comments
This week, Check Point announced a deal to acquire Dome9, and Fortinet is buying ZoneFox. The two agreements look to strengthen the companies' cloud security portfolios.
Trump's Numerous iPhones Creating Security Headache Report
News Analysis  
10/25/2018   4 comments
The New York Times reports that President Donald Trump uses up to three different iPhones and that his habits have left his calls open to spying from China and Russia.
Security Researcher Finds Second Zero-Day Exploit in Windows 10
News Analysis  
10/25/2018   1 comment
For the second time, an independent security researcher has found a zero-day exploit in Windows 10 that can also affect some of the newer versions of Window Server.
Apple's Tim Cook: Privacy Is a Fundamental Human Right
News Analysis  
10/25/2018   Post a comment
Apple CEO Tim Cook addressed the ICDPPC conference in Europe this week, offered praise for GDPR and spoke about how consumer privacy is a fundamental human right.
FireEye Links Triton Malware to Russian Research Institute
News Analysis  
10/24/2018   1 comment
Triton appeared in late 2017, designed to target industrial control systems. Now, FireEye has linked the malware to a Russian research facility.
Biometrics: How to Balance Security, Privacy & Data Protection
News Analysis  
10/23/2018   4 comments
Biometrics is a way to strengthen security within the enterprise, while doing away with older methods such as passwords. However, collecting this highly personal data has its own security risk.
Page 1 / 2   >   >>

Latest Articles
Palo Alto Networks' Unit 42 has documented two months of attacks from the Sofacy group, which also goes by Fancy Bear and APT28. Researchers found the attackers deployed a new Trojan called Cannon.
A significant bug in SQLite could allow for remote code execution, leaks of memory and program crashes within thousands of apps, according to new research.
Researchers at Comodo Cybersecurity found that phishing emails continued to proliferate in the third quarter of this year, with PayPal as a major target. Malware, such as Trojans, also remain a top security issue.
A report from NetScout's ASERT Team finds that IoT devices are vulnerable to exploits for long periods of time and can be attacked within minutes after coming online.
Trend Micro has picked up on a new exploit dubbed 'Novidade,' which targets small business and home routers and changes their DNS settings to redirect the traffic as part of an attack.
Flash Poll
In a wide-ranging interview, Cisco security boss Gee Rittenhouse talks about how machine learning, AI, blockchain and other emerging technologies ...
CloudPassage's new technology, called Container Secure, involves a five-step process to ensure seamless security in container deployments from the ...
You can't so much as go to a coffee shop today without hearing the word 'blockchain.' Hearing about a useful blockchain is less common, but ...
Last year, 60 million companies changed owners worldwide. That turnover makes it incredibly difficult to avoid doing business with entities (e.g., ...
Keith Furst of Data Derivatives interviews Daniel Wagner, author of a new book, Virtual Terror: 21st Century Cyber Warfare. They discuss the ways ...
All Videos
Sponsored Video
Sage Wagner, senior security pre-sales engineer with RiskSense, provides a demo of the company's latest technology 'RiskSense Solution,' a ...
Janus Technologies is launching a line of products that protect against the many threats to enterprises' sensitive data. David Schultz, vice ...
This new video will inspire companies to reimagine their business for success in a world where connectivity is more than a commodity. Sponsored Video
All Videos
Radio Shows
like us on facebook
Security Now
About Us     Contact Us     Help     Register     Events     Supporting Partners     Twitter     Facebook     RSS
Copyright © 2018 Light Reading - an Informa business, trading within KNect365 US, Inc. All rights reserved. Privacy Policy | Cookie Policy | Terms of Use
in partnership with