Security Experts:

WRITE FOR US

IT Security News Headlines

rss icon

EA Games Login Flaw Exposed Accounts of 300 Million Gamers
AWS Launches Mirroring Feature for Inspecting Network Traffic
Senate Report Shows Decade-Long Failure of Gov Agencies to Protect Personal Data
Instagram Chief Insists It Doesn't Spy on Users
AWS Announces General Availability of Security Hub
long dotted

More Security Headlines

Hackers Favoring Shimmers Over Skimmers for ATM Attacks
Cybercriminals are increasingly using shimmers instead of skimmers in attacks targeting automated teller machines, Flashpoint reports. [Read More]
Telcos Pwned: Multi-Wave Attacks Stealing 'Obscene Amount of Data' From Providers
Nation State Hackers, likely connected to China, have hacked multiple telecommunications companies around the world and are completely controlling the networks. [Read More]
ABB Patches Many Vulnerabilities in HMI Products
Swiss industrial tech company ABB has patched a dozen vulnerabilities, including serious issues, in some of its HMI products. [Read More]
LokiBot and NanoCore Malware Distributed in ISO Image Files
LokiBot and NanoCore malware are again being distributed in a malspam campaign using attached ISO image file attachments. [Read More]
Flaws in Phoenix Contact Automationworx Allow Code Execution via Malicious Files
Several vulnerabilities affecting the Phoenix Contact Automationworx automation software suite can be exploited for remote code execution using specially crafted project files. [Read More]
VideoLAN Patches Critical Vulnerability in VLC Media Player
VideoLAN has addressed a critical double-free vulnerability in the VLC media player that could allow an attacker to execute arbitrary code on target systems. [Read More]
Protection Against Side-Channel Attacks Added to OpenSSH
Protection against Spectre, Meltdown, RAMBleed, Rowhammer and other memory side-channel attacks has been added to OpenSSH. [Read More]
TrueFort Secures $13.7 Million in Series A Funding
Real-time application behavior analytics, control, and protection provider TrueFort has raised $13.7 million in a Series A funding round. [Read More]
New Attack Delivers FlawedAmmyy RAT Directly in Memory
A recently discovered malicious campaign is aiming at infecting victim machines by delivering the notorious FlawedAmmyy RAT directly in memory, Microsoft warns. [Read More]
Iran Denies Being Hit by US Cyber Attack
Iran claims no cyber attack against the Islamic republic has ever succeeded, after American media reported the US launched one last week amid a standoff between the two countries. [Read More]

ICS Cyber Security Conference

SecurityWeek Experts

rss icon

Devon Kerr's picture
Tales From the SOC: Healthcare Edition
Devon Kerr - Incident Response
How healthcare organizations used a trail of digital evidence to identify the type of attack they were experiencing and developed a remediation strategy.
Read full story
Barak Perelman's picture
Mission Possible: ICS Attacks On Buildings Are a Reality
Barak Perelman - SCADA / ICS
Since Building Management Systems (BMS) are integrated with and interconnected to both hardwired and cloud based solutions, as well as third party applications, their attack surface is large and getting larger.
Read full story
Alastair Paterson's picture
Why Diversity of Thought in the Workplace Matters
Alastair Paterson - Management & Strategy
Diversity of thought fosters psychological safety, which is a shared belief among teams that they perceive they are safe to take risks, and is one of the core indicators of highly effective teams.
Read full story
Jim Gordon's picture
Security Doesn't Have to be a Losing Battle
Jim Gordon - Management & Strategy
While I have blogged pretty frequently in the past, this is my first official column for any sort of major publication, and I am grateful for the opportunity from SecurityWeek.
Read full story
Marc Solomon's picture
Investigation and Response is a Team Sport
Marc Solomon - Incident Response
Security teams should be able to detect threats faster and use that knowledge to pivot and accelerate parallel investigations that are separate but related.
Read full story
Torsten George's picture
Another World Password Day Has Passed and Little Has Changed
Torsten George - Identity & Access
Companies should consider moving to a Zero Trust approach, powered by additional security measures such as multi-factor authentication, to stay ahead of the security curve and leave passwords behind for good.
Read full story
Ashley Arbuckle's picture
Converging on a Better Approach to Security
Ashley Arbuckle - Risk Management
The convergence of security products and services is a welcomed development and will lead to improved security.
Read full story
Laurence Pitt's picture
Security First in the Cloud Wars
Laurence Pitt - Cloud Security
“The Cloud Wars” may be dominating IT news headlines, but what does this phrase actually mean? And is it something that an enterprise needs to be concerned with?
Read full story
Joshua Goldfarb's picture
How Insecurity Can Bolster Your Security Program
Joshua Goldfarb - Management & Strategy
Five examples of how insecurity can actually help bolster a security program by allowing an organization to continually learn and make changes, thus improving.
Read full story
Gunter Ollmann's picture
The Symbiosis Between Public Cloud and MSSPs
Gunter Ollmann - Cloud Security
To the surprise of many, public cloud appears to be driving a renaissance in adoption and advancement of managed security service providers (MSSP).
Read full story