Industrial cybersecurity firm Nozomi Networks has raised $7.5 million in a Series A funding round, the company announced this week at SecurityWeek's 2016 ICS Cyber Security Conference, Atlanta. It separately announced the latest release of its SCADAguardian ICS security product.
read more
Adobe Patches Flash Vulnerability Used in Targeted Attacks
Adobe has released a Flash Player update to patch a critical vulnerability that malicious actors have been exploiting in targeted attacks.
read more
VMware Flaws Allow Security Bypass on Mac OS X
VMware has patched a couple of moderate-severity information disclosure vulnerabilities affecting some of the company’s Mac OS X products.
read more
Collection, Sensing, and Alerting: Yesterday’s News
Security has evolved to the point that I can now say that collection, sensing, and alerting are yesterday’s news. How can I make such a provocative statement? Wikipedia. Confused? That’s certainly understandable. I’ll explain.
read more
Nexus 6P, iPhone 6S Hacked at Mobile Pwn2Own 2016
Researchers who took part in the 2016 Mobile Pwn2Own competition in Tokyo, Japan, earned hundreds of thousands of dollars in rewards after successfully hacking Apple’s iPhone 6S and Google’s Nexus 6P phones.
read more
Passwords are Dead. Long Live Passwords.
Passwords. The favorite topics of security pundits. This fundamental component of security is one of our favorite things to talk about, hypothesize about, and much like the mainframe – proclaim its demise. Sadly, at the rate we’re going passwords (much like roaches) will be around long after many of us have retired and moved on. So there you have it, passwords are the cockroaches of the security industry.
read more
Data Leaked by Pagers Useful for Critical Infrastructure Attacks
Pagers are still used in industrial environments and many organizations don’t realize that the messages sent with these devices can be highly useful to malicious actors looking to launch a targeted attack.
read more
Script Kiddies Likely Behind Dyn DDoS Attacks
There are several theories and claims as to who might be behind the distributed denial-of-service (DDoS) attacks launched last week against DNS provider Dyn, but researchers believe the attacks were actually launched by script kiddies.
read more
Critical Vulnerabilities Patched in Joomla
Two critical account creation vulnerabilities have been addressed on Tuesday in the Joomla content management system (CMS) with the release of version 3.6.4.
read more
ICS Networks at Risk Due to Flaw in Schneider PLC Simulator
read more
Continue reading