Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Prominent law firm Campbell Conroy & O'Neil said it fell victim to a ransomware attack five months ago that resulted in systems holding sensitive information being compromised. [Read More]
Ireland dramatically loosened international travel restrictions on Monday, joining an EU-wide pandemic passport scheme weeks later than the rest of the bloc after a ransomware attack hobbled healthcare IT systems. [Read More]
Virginia Tech says it was targeted in two recent cyberattacks but feels confident no data was stolen. [Read More]
Microsoft's security response team late Thursday acknowledged a new, unpatched bug that exposes Windows users to privilege escalation attacks. [Read More]
Microsoft partners with Citizen Lab to identify a mysterious commercial surveillance company in Israel selling zero-days and high-end spyware to government hackers. [Read More]
Facebook's security team issues a warning about Tortoiseshell, an Iranian hacking group targeting military personnel and defense organizations in the United States. [Read More]
Hackers gained access to the Social Security numbers of more than two dozen people during a ransomware attack that forced the city of Tulsa to shut down parts of its computer network for months, officials said. [Read More]
A new Emergency Directive from CISA gives federal agencies one week to patch the vulnerability (CVE-2021-34527) [Read More]
Adobe urged Windows and macOS users to treat the PDF Reader patch with the utmost priority, because the flaws expose machines to remote code execution and privilege escalation attacks. [Read More]
Kaseya has released patches for the vulnerabilities exploited in the recent ransomware attack, and it has started restoring SaaS services. [Read More]
- 1 of 162
- ››
FEATURES, INSIGHTS // Incident Response
The more you identify within your threat hunting program, the more opportunity you may have at expanding with additional budget. Never let an incident go to waste.
We are a community with grand ideas around the concept of crowdsourced threat intel (CTI), but with little history or previous successes that show CTI as a viable idea.
For efficiency and effectiveness, automation must take a data-driven approach and encompass how we initiate and learn from the response, not just how we execute the process.
In response to a specific attack, it’s important to do external threat monitoring and threat actor engagement to determine if the actors are attempting to exploit or monetize the security event.
As Security Operations Centers (SOCs) mature and transition to become detection and response organizations, they need to tackle some tough challenges with respect to data, systems and people.
Once live stomping around vendor-packed expo halls at security conferences returns, it is highly probable that “Virtual Analyst” will play a starring role in buzzword bingo.
To gain a comprehensive understanding of the threats you are facing and what you must defend, you need to start by aggregating internal data from across the entire ecosystem
The center of gravity of the Security Operations Center (SOC) used to be the SIEM, but this is shifting as the mission of the SOC shifts to become a detection and response organization.
The pandemic has resulted in security team members and teams working better together, as well as more closely with other departments and with industry sharing groups.
For companies trying to build new or mature existing intelligence programs, the Age of COVID has been an excellent time to capture 30-60 minutes with that hard-to-find manager
- 1 of 28
- ››
Get the Daily Briefing
- CODESYS Patches Dozen Vulnerabilities in Industrial Automation Products
- Google Paid Over $29 Million in Bug Bounty Rewards in 10 Years
- Vulnerabilities Allow Hacking of Zimbra Webmail Servers With Single Email
- 1Password Raises $100 Million at $2 Billion Valuation
- Critical Vulnerability Found in Sunhillo Aerial Surveillance Product
- Kaseya Denies Paying Cybercriminals Who Launched Ransomware Attack
- Vulnerability in Popular Survey Tool Exploited in Possible Chinese Attacks on U.S.
- S.Africa's Port Terminals Still Disrupted Days After Cyber-Attack
- Why Are Users Ignoring Multi-Factor Authentication?
- Creating an Effective Threat Hunting Program with Limited Resources
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy