(InfosecIsland) – Given the unforeseen results of the 2016 US Presidential election, it is hard to predict the future, particularly in sorting out campaign promises from policy intent.
read more
HDDCryptor Ransomware Variant Used in San Francisco Rail System Attack
News broke last week of a ransomware attack targeting the San Francisco Municipal Transport Authority (SFMTA, or 'Muni'), and security researchers have now taken a closer look at the malware used.
read more
Industry Reactions to Presidential Commission’s Cybersecurity Report
The Presidential Commission on Enhancing National Cybersecurity last week published a set of recommendations aimed at strengthening cybersecurity across the public and private sectors.
read more
Don’t Get Caught in the Noise, Focus Your Security on What You can Control
Trying to Focus on Everything at Once is the Same as Focusing on Nothing at All…
read more
100,000 UK Routers Likely Affected by Mirai Variant
Approximately 100,000 UK TalkTalk and Post Office ISP users were affected by the recent Mirai attack that severely affected nearly a million Deutsche Telekom customers in Germany in late November. It was assumed that the UK victims were the outer ripples of the primary attack; and this was confirmed by a subsequent report that quoted the Mirai developer as apologizing for the effect on the Post Office.
read more
Experts Hopeful as Confidence in Risk Assessment Falls
The 2017 Global Cybersecurity Assurance Report Card shows a six point fall from last year's rating — down from 76% to 70% (marked as C-). Although organizations' confidence in mitigating threats is constant at 79% (C+), confidence in the ability to assess risks has tumbled 12 points from 73% to 61% (D-).
read more
Flash Player Remains Main Target of Exploit Kits: Report
The most common vulnerabilities used by exploit kits in the past year affect Flash Player, Windows, Internet Explorer and Silverlight, according to a report published on Tuesday by threat intelligence firm Recorded Future.
read more
‘Spy’ Toys Face Complaints From EU, US Watchdogs
EU and US consumer watchdogs announced Tuesday they are filing complaints against a clutch of smart toys that can "spy" on children and their homes, for allegedly breaching privacy and data protection laws.
read more
Optiv Security to Be Acquired By Private Equity Firm KKR
Optiv Security, the cyber security company formed as a result of the merger of Accuvant and FishNet Security, today announced that private equity giant Kohlberg Kravis Roberts & Co. (KKR) will acquire a majority stake in the security firm.
read more
The Importance of Security Frameworks
I’m often asked why I run a team entirely dedicated to researching, developing and implementing various program frameworks – when so many security organizations get by just fine without them. However, the phrase “get by just fine without them” is part of the answer. The challenge with helping security leaders and professionals understand why what they’re doing requires a model to follow when there are few visible consequences to simply winging it.
read more
