Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
A newly discovered piece of malware targeting macOS devices is capable of injecting ads into encrypted web traffic [Read More]
New malware named Chalubo is targeting IoT devices to ensnare them into a DDoS botnet [Read More]
The development of the Triton/Trisis ICS malware was supported by a research institute backed by the Russian government, FireEye says [Read More]
Kaspersky Lab researchers have analyzed DarkPulsar, another exploit supposedly stolen from the NSA-linked Equation Group [Read More]
A China-linked cyber espionage group known as Tick was observed using the Datper malware in a recent campaign [Read More]
A cyber espionage group named GreyEnergy, linked by researchers to Russia's BlackEnergy, has been targeting energy and transportation companies in Ukraine and other countries [Read More]
A newly discovered infection campaign is leveraging malicious RTF files to deliver information-stealing Trojans without being detected [Read More]
A Russia-linked threat group tracked as DustSquad and Nomadic Octopus has been targeting diplomatic entities in Central Asia [Read More]
Cybersecurity agencies in the US, UK, Canada, Australia and New Zealand release joint report on publicly available hacking tools [Read More]
Hackers exploit the Drupal vulnerability known as Drupalgeddon2 to install a backdoor on compromised servers [Read More]
- 1 of 84
- ››
FEATURES, INSIGHTS // Virus & Malware
Today’s email-based attacks don’t occur at a single point in time and use multiple methods to evade detection. To bolster protection, organizations may turn to a set of disparate products that don’t – and can’t – work together.
To limit the risk of having drive-by malware attacks planted on their websites, organizations should monitor the payload of their different Internet properties, which for larger organizations can easily become a huge undertaking.
Malvertising underscores the need for an approach to security that addresses the full attack continuum. With ongoing visibility and control, and intelligent and continuous updates, security professionals can take action to stop the inevitable outbreak.
Just as offices need to detect break-ins to keep criminals from committing industrial espionage, enterprises need to put more focus on detecting APTs and other advanced threats to keep adversaries from their network.
While obscuring website code, server architecture, and security mechanisms doesn’t provide bullet-proof security on its own, it is actually pretty effective.
Even with the basics covered, we also have to be on the lookout for unknown threats and anomalies in our networks that can be an indicator of compromise.
Was the Mayan Apocalypse was a myth? Since I am a security geek, I just happen to talk about security a lot. What are some security myths I have heard in my conversations with some very bright people?
As with most stories Mac-related, the malware-is-finally-coming story attracted a lot of press. But the desktop Mac OS might not be attractive to attackers as you might think.
We still don't know who created Conficker or what that person’s motivations were. What we do know: Conficker could have proved much more damaging than it ultimately did, but the threat has not entirely disappeared.
Enjoy this selection of top picks for 2010, listed in no particular order. Happy New Year!
- 1 of 2
- ››
SecurityWeek Daily Briefing
- Sophisticated Cyberattack Targets Pakistani Military
- What the Onslow Water and Sewer Authority Can Teach About Responsible Disclosure
- APT Simulation Provider XM Cyber Raises $22 Million
- Cloud Security Firm Netskope Raises $168.7 Million
- Samsung Galaxy S9, iPhone X Hacked at Pwn2Own Tokyo
- Google Services Inaccessible Due to BGP Leak
- 51 States Pledge Support for Global Cybersecurity Rules
- Researcher Bypasses Windows UAC by Spoofing Trusted Directory
- New Cloudflare DNS App Brings Increased Privacy for Mobile Devices
- Intel Asks for Comments on Draft Federal Privacy Law
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy