Ransomware has become a formidable enterprise threat, and researchers suggest that it could allow malicious actors to leverage the growing ransomware-as-a-service (RaaS) to cause irreparable damage to organizations.
read more
HP Patches Critical Vulnerabilities in Data Protector
HP has released security updates for various HP Data Protector iterations, in an attempt to patch a series of critical vulnerabilities that could result in remote code execution or disclosure of information.
read more
Custom Malware Used in $81 Million Bangladesh Bank Heist
Custom Malware Prevented Bangladesh Bank From Detecting Fraudulent Transfers
Researchers at British multinational defense, security and aerospace company BAE Systems believe they have found the pieces of malware used by cybercriminals to steal $81 million from Bangladesh’s central bank earlier this year.
read more
Healthcare Was Most Attacked Industry in 2015: IBM
Shellshock Vulnerability Played a Major Role in Many Attacks in 2015
read more
MIT Launches Bug Bounty Program
The Massachusetts Institute of Technology (MIT) has launched a bug bounty program to encourage responsible disclosure of vulnerabilities found on its websites.
read more
No Exit: The Case for Moving Security Information Front and Center
The Open Web Application Security Project (OWASP) was founded in 2001. This non-profit organization seeks to educate and inform developers on secure development practices, and provides developers with tools to create web applications securely.
read more
93 Million Mexican Voter Records Leaked Online
Authorities in Mexico have launched an investigation after a researcher discovered a publicly accessible database containing the personal details of tens of millions of Mexican registered voters.
read more
Windows AppLocker Bypassed to Execute Remote Scripts
Microsoft’s Windows AppLocker, a feature introduced in Windows 7 to specify which users can run apps within an organization, can be bypassed to execute remote scripts on a machine, a researcher says.
read more
Why You Need Visibility of Your Supply Chain Cyber Risks
When it comes to cybersecurity, the common tact is to build out your network defenses and then extend to endpoints. But as business becomes more connected and as data moves further outside the organizational walls, enterprises must look at weaknesses across each area that depends on technology – and a good place to focus is on the supply chain.
read more
Attacker Friendly Hosting Firm Leveraged by Pawn Storm Hackers
A Small VPS Provider Registered in the United Arab Emirates Has Been Providing Services to Pawn Storm Attackers and Other Cybercriminal Operations
read more
