28 Oct 2019

Improving Endpoint Security Needs To Be A Top Goal In 2020

A mere 29.6% of enterprises across the world say that endpoint security is a significant part of their cybersecurity program, a recent survey by IDC indicates. However, firms that are considered “leaders” in terms of their cybersecurity posture, are twice as likely to prioritize endpoint security than other firms. About

Read More
28 Oct 2019

Ransomware, Mobile Malware Attacks to Surge in 2020

A recent study by Check Point predicts some of the major cybersecurity trends that will shape 2020. In terms of threats, the firm projects that 5G will play a major role in increasing the attack surface because it is bound to lead to a surge in Internet-of-things devices as well

Read More
28 Oct 2019

Ransomware hackers demand payment for not releasing Johannesburg data

The City of Johannesburg, South Africa suffered a ransomware attack last Thursday that prompted the city to take its call center, website and e-services platform offline. The threat actor, calling themselves the Shadow Kill Hackers, not only encrypted data on infected systems, but also stole unencrypted records. They are threatening

Read More
28 Oct 2019

7.5 Million Adobe Accounts Exposed by Security Blunder

A leaky database belonging to Adobe exposed the private data of 7.5 million customers, a security researcher recently discovered. The information that had been exposed for an unknown period of time, included customer email addresses, countries, member IDs as well as account and subscription information. The information could be used

Read More
28 Oct 2019

IaaS cloud vulnerabilities expected to increase 50% over 2018 figures

New research Skybox shows that vulnerabilities impacting cloud infrastructure as a service (IaaS) solutions are rising rapidly. While the total number of flaws is still quite small, the expected growth rate for 2019 is 50%, while cloud container flaws have already surged by 82% so far this year. The most

Read More
28 Oct 2019

Nasty PHP7 remote code execution bug exploited in the wild

Threat actors have begun exploiting a recently fixed remote code execution (RCE) vulnerability in PHP 7 in order to compromise vulnerable servers, researchers with Bad Packets are warning. The flaw, tracked as CVE-2019-11043, is very easy to exploit using proof-of-concept exploit code that was recently published on GitHub. In order

Read More
28 Oct 2019

Microsoft Office Bug Remains Top Malware Delivery Vector

A recent report by Cofense shows that in the third quarter of this year, the most common technique for distributing malware via phishing campaigns is the exploitation of CVE-2017-11882, a critical flaw in Microsoft Office that was patched in 2017, but has been around for almost two decades. Attackers embed

Read More
25 Oct 2019

House Republicans’ national security-threatening impeachment stunt, explained by an expert

A security expert on Wednesday warned that when two dozen Republican lawmakers stormed the Sensitive Compartmented Information Facility (SCIF) in the Capitol earlier this week because they were unhappy with the Democrat-led impeachment inquiry, they effectively put national security at risk. Mieke Eoyang, who used to work at the SCIF,

Read More
25 Oct 2019

US plans to send tanks to Syria oil fields, reversing Trump troop withdrawal – reports

Various US media outlets are reporting that Washington may soon send tanks and other heavy military hardware to northeastern Syria in order to protect oil fields in the region against attacks from Islamic State fighters and other militant groups. Analysts say the move could effectively reverse US President Trump’s recent

Read More
25 Oct 2019

Three Reasons You Should Never Save Payment Information Online

While a recent survey by Bankrate.com found that 64% of US adults with a credit and/or debit card have saved their payment card data on websites or in mobile apps, there are at least three reasons why it is better to avoid doing this. It greatly increases the chances of

Read More