10 Oct 2019

Twitter Uses Phone Numbers, Emails to Sell Ads

Twitter has admitted that it “inadvertently” used an unknown number of email addresses and phone numbers that had been provided by users solely for the purpose of enabling multi-factor authentication, for targeted advertising. The social media firm assured that “no personal data was ever shared externally with our partners or

Read More
09 Oct 2019

76 percent of US businesses have experienced a cyberattack in the past year

In the past 12 months, two-thirds (66%) of small to mid-sized businesses (SMBs) have suffered a cyberattack, according to a new report by the Ponemon Institute and Keeper Security. The finding underscores a broader trend of growing cyber incidents at SMBs over the last 3 years. Last year, 63% of

Read More
09 Oct 2019

2020 Presidential Candidate Campaign Websites Fail On User Privacy

The websites of many US presidential candidates suffer from security and privacy issues, a recent audit by the Online Trust Alliance (OTA) found. Just 7 out of 23 candidates, including Donald Trump and Bernie Sanders, achieved the “Honor Roll,” meaning that their websites provided sufficient privacy, security and consumer protection

Read More
09 Oct 2019

57% of Businesses Use Multi-Factor Auth (MFA), Says LastPass

A new survey by LastPass shows that a majority (57%) of organizations have adopted multi-factor authentication (MFA), which is  a 12% increase compared to last year. The vast majority (95%) of employees who use MFA, rely on a software-based solution, which typically provides less security than hardware solutions (4%) and

Read More
09 Oct 2019

Only 1 in 5 enterprises have DMARC records set up with an enforcement policy

A new Valimail report shows that while companies are increasingly adopting the Domain-based Message Authentication, Reporting and Conformance (DMARC) protocol for email authentication, which is designed to prevent email spoofing attacks, the vast majority have not configured it properly. In fact, only 17% of email domains using DMARC have an enforcement

Read More
09 Oct 2019

Microsoft Issues 9 Critical Security Patches

As part of this month’s patch Tuesday bulletin, Microsoft has released fixes for 59 security flaws, including 9 critical vulnerabilities. So far the tech giant hasn’t found evidence that any of the patched issues are being exploited in the wild. However, Microsoft warns that one remote code execution (RCE) flaw

Read More
09 Oct 2019

Phishing attempts increase 400%, many malicious URLs found on trusted domains

Between January and July of this year, the number of detected phishing URLs surged by 400%, a recent Webroot study found. Phishing attacks continue to get more sophisticated, with 29% of phishing sites now using HTTPS in order to appear more legitimate, while 24% of malicious URLS are hosted on

Read More
09 Oct 2019

Industry Leaders Throw Weight Behind Interoperability Alliance

In order to promote interoperability and data sharing in the cybersecurity industry, international consortium OASIS has set up the Open Cybersecurity Alliance (OCA). The initiative was led by IBM Security and McAfee and is also supported by the following 16 vendors: Advanced Cyber Security Corp, Corsa, CrowdStrike, CyberArk, Cybereason, DFLabs,

Read More
09 Oct 2019

Google October Android Security Update Fixes Critical RCE Flaws

Google has released patches for 28 security vulnerabilities, 11 of which where critical flaws, affecting the Android operating system. Three of the critical bugs are remote code execution (RCE) flaws that could be exploited by attackers to run arbitrary code on vulnerable devices. The RCE vulnerabilities, tracked as CVE-2019-2184, CVE-2019-2185

Read More
08 Oct 2019

China’s New Cybersecurity Program: NO Place to Hide

The Chinese government is working to make it possible for China’s Ministry of Security to obtain access to virtually all data that is transmitted across networks within the country’s borders or stored on Chinese servers. This aim is part of a national cybersecurity law adopted by Beijing in 2016. According

Read More