Latest Blog Posts

Ffc4103a877b409fd8d6da8f854f617e

Google Kills SSLv3, RC4 Support in Gmail IMAP/POP

June 07, 2016 Added by:InfosecIsland News

Google announced that Gmail IMAP/POP mail clients will no longer offer support for SSLv3 and RC4 connections after June 16, 2016.

Comments  (0)

Adc7bc93d49867e98bdd5ec1617f4e32

BadBlock Ransomware Encrypts Windows System Files

June 06, 2016 Added by:Ionut Arghire

Dubbed BadBlock, a new ransomware doesn’t stop at encrypting the user’s photos, videos, and images, but does the same for Windows system files as well, which ultimately results in the computer being no longer usable.

Comments  (0)

3ca92d8c88e202c2d9e483c539e0899b

Why Is There a Shortage of Security Talent?

June 03, 2016 Added by:Ajit Sancheti

Embracing new technologies that help intelligently automate parts of security to provide overwhelmed security teams a hand is a start. But in the long run, bigger changes to security strategies will need to take place. Everyone in a company needs to be responsible for security, not just the CISO.

Comments  (0)

Adc7bc93d49867e98bdd5ec1617f4e32

Backdoor Abuses TeamViewer to Load Malicious Library

May 30, 2016 Added by:Ionut Arghire

Dubbed BackDoor.TeamViewer.49, the new Trojan was discovered by Dr. Web and Yandex earlier this month being distributed via a fake Flash Player update. The bogus update package, however, turns out to be a different malicious application called Trojan.MulDrop6.39120, which acts as a dropper, Dr. Web researchers say.

Comments  (0)

Ffc4103a877b409fd8d6da8f854f617e

2016 SecurityWeek CISO Forum to Take Place on June 1-2 at Half Moon Bay

May 26, 2016 Added by:InfosecIsland News

SecurityWeek’s 2016 CISO Forum will take place on June 1-2, 2016 at the Ritz Carlton, Half Moon Bay.

Comments  (0)

B261bfcc99f93249e275ddd135ffec57

Avoiding Ransomware with Strong Endpoint Security

May 26, 2016 Added by:Dean Dyche

Ransomware attacks are growing in volume and sophistication. To best defend against ransomware, users must ensure that their machines remain up to date with the latest patches and security updates.

Comments  (0)

7a381426c4258d879207e4550cc28f12

Making the Most of User Entity Behavior Analytics: Expectations, Features and Best Practices

May 24, 2016 Added by:Brian Soldato

User Entity Behavior Analytics (UEBA) platforms are very promising. In the near future, expect to see user behavior analytics platforms integrate more directly with infrastructure and with automated response.

Comments  (0)

Ffc4103a877b409fd8d6da8f854f617e

“EITest” Exploit Kit Redirection Campaign Running Strong

May 22, 2016 Added by:InfosecIsland News

A long-lasting website infection campaign meant to redirect users to exploit kits (EKs) such as Angler and Neutrino continues to run strong roughly one year and a half after being originally discovered.

Comments  (0)

A2f01e8907594a5cc33b21086a702036

Baiting the Phishermen: When Companies Strike Back at Scammers (Do Not Try This at Home)

May 16, 2016 Added by:Steven Rogers

It is never too late to remind employees about phishing emails and where to route suspicious finds.

Comments  (0)

B0b557cb2e5eb9c6304d00a8a61a9d34

Cloudflare vs Tor: Is IP Blocking Causing More Harm than Good?

May 10, 2016 Added by:Peter Zavlaris

To some, the Tor network is believed to be a haven for threat actors, as well as a platform for launching web based attacks.

Comments  (0)

Adc7bc93d49867e98bdd5ec1617f4e32

Malvertising Hits Top Celebrity News Site

May 10, 2016 Added by:Ionut Arghire

Malvertising, the malicious activity that involves spreading malware via online advertising, has been trending up over the past few years, and 2016 might become a record-breaking year for it, Cyphort Labs researchers suggest.

Comments  (0)

Adc7bc93d49867e98bdd5ec1617f4e32

Threat Hunting is the New Black in Security: Report

May 09, 2016 Added by:Ionut Arghire

Allowing organizations to identify and mitigate network vulnerabilities as early as possible, threat hunting is a new trend in enterprise security, recently released SANS Institute research reveals.

Comments  (0)

591c39c65cf5c298ccd0f1cd5818e961

Cloud Security Can’t Be Ignored Anymore, Thanks to Millennials

May 09, 2016 Added by:Vanishree Rao

Thanks to digital preferences of millennials, increased digitization and cloudification will drive the demand for cloud security products and services.

Comments  (0)

Adc7bc93d49867e98bdd5ec1617f4e32

Steam Patches Crypto Code to Prevent Padding Oracle Attacks

May 03, 2016 Added by:Ionut Arghire

Steam recently patched security vulnerabilities in its system to prevent attackers from tapping into the data transmitted between a local client and the Steam network to view plain-text passwords or take over accounts.

Comments  (0)

37b77b2d6c99c432123b1b46fa64e566

The Role of CASBs in Protection Against the 2016 “Treacherous 12"

May 03, 2016 Added by:Ganesh Kirti

We looked at how well CASBs would fare in helping enterprises survive the treacherous 12 and guess what? CASBs clearly address nine of the treacherous 12 (along with many other risks not mentioned in the report).

Comments  (0)

Adc7bc93d49867e98bdd5ec1617f4e32

Nemucod Malware Downloader Evolves into Ransomware

April 26, 2016 Added by:Ionut Arghire

Nemucod, a previously known JavaScript malware family designed to download additional malicious software onto the compromised computers, has evolved into ransomware and is now using 7-Zip to encrypt its victims’ files.

Comments  (0)


« First < Previous | 2 - 3 - 4 - 5 - 6 | Next > Last »