Here’s a look at the six most critical application security risks that anyone could encounter today, in the age of aggressive cyber threats, malware attacks, virus protection tool etc… Let’s begin with security configuration related issues… Well, this is important, critically important. If there is a security misconfiguration, that is, if your security configuration is… Continue reading Discussing Six Most Critical Application Security Risks

10th April 2017  By Mark Wilson                                                   The CIA’s range of hacking tools revealed as part of WikiLeaks’ Vault 7 series of leaks have been used to conduct 40 cyberattacks in 16 countries, says Symantec. The security firm alleges that a group known as Longhorn has… Continue reading Vault 7: Symantec says CIA hacking tools revealed by WikiLeaks were used in 40 'Longhorn' cyberattac

10th April 2017 By Roland Cloutier   Security leaders need to show they provide more than stop-the-bad guys services. Here’s how.   At the beginning of March 2017, a third-party platform launched that promises to be a bidirectional clearinghouse to improve the security industry’s approach to third-party risk management. Called CyberGRX, the company says it… Continue reading Setting Up Security as a Business: 3 Best Practices for Security Execs

April 10, 2017 by Adam McNeil   We’ve detected an uptick in USPS-themed malspam walloping users with a 1-2-3 knock-out of nasty malware designed to infiltrate your system and steal all your most valuable information. This malware-laced email is actively being distributed with various Subject and Body messages containing references to missing and/or late USPS… Continue reading USPS-themed malspam now delivering 1-2-3 Knock-out

By Eduard Kovacs on April 10, 2017   Researchers at vulnerability management services provider Digital Defense have identified four security holes in Riverbed SteelCentral, a popular application and network performance monitoring product. The flaws affect the SteelCentral Portal application and they can be exploited by unauthenticated attackers for remote command execution and to obtain user… Continue reading Serious Vulnerabilities Found in Riverbed SteelCentral Portal

Published April 10, 2017 Industries Dow Jones Newswires                                                        Hackers are targeting the growing population of third-party sellers on Amazon.com, using stolen credentials to post fake deals and steal cash.    In recent weeks, attackers have changed the bank-deposit information on… Continue reading Amazon.com's Third-Party Sellers Hit By Hackers

9th April 2017   By Mark Wilson                                                  Wonga.com — the payday loan website — is investigating a security breach which exposed the personal details of tens of thousands of customers. Up to 270,000 customers in the UK and Poland are believed to have been affected by the… Continue reading Payday loan site Wonga hit by security breach affecting 270,000 in UK and Poland

Non-malware attacks, artificial intelligence (AI), and machine learning (ML) have emerged as the topics of the day in cybersecurity. AI and ML’s roles in preventing cyberattacks have been met with both hope and skepticism. They have been marketed as game-changing technologies though doubts still persist, especially when used in siloes. Their emergence is due largely… Continue reading beyond the hype

There’s currently no patch for the bug, which affects most or all versions of Word.                  Dan Goodin – 4/8/2017   There’s a new zeroday attack in the wild that’s surreptitiously installing malware on fully-patched computers. It does so by exploiting a vulnerability in most or all versions of Microsoft Word.   The… Continue reading Booby-trapped Word documents in the wild exploit critical Microsoft 0day

8th April 2017 By Jonathan Vanian   If you’re a Mac user, you might want to look out for an increase of unwanted advertisements popping out from your web browsers.   Security firm McAfee released a report this week that showed a big jump in 2016 regarding malware hitting the Mac operating system. The McAfee report… Continue reading Apple Malware Appears to Be Skyrocketing