Woodstock Wire: Enterprise Security News

Enterprise -- DevOps.com - Living in a container-native world is not easy. Containers have a reputation for being a point of entry for security vulnerabilities for many organizations. In 2015, according to a research paper, over 40% of Docker images distributed through...

Infosec -- CSO Online - The federal government and private sector are still reeling from the SolarWinds supply chain hack, and Congress is on edge as it begins a new term beset by fears of domestic terrorism. It would seem all bets are off in terms of the previous...

Enterprise -- Palo Alto Networks Blog - For me, the simplest way to summarize 2020 is with one word: unpredictable. Though each year has a level of unpredictability, 2020 was an extreme example. As we look forward into 2021, we hope for positive changes, but 2020 will...

Enterprise -- ZDNet Blogs - In 2021 Trend Micro predicts that cybercriminals will look to home networks as a critical launch pad to compromising corporate IT and IoT networks.

Enterprise -- SiliconANGLE - In the latest twist on the SolarWinds hacking story, a site called SolarLeaks is selling stolen data from the hack, including source code from Microsoft Corp., Cisco Systems Inc., FireEye Inc. and SolarWinds Worldwide LLC. The SolarLeaks...

Enterprise -- ZDNet Blogs - The Linux Foundation, which knows a thing or two about building secure software, has suggestions on how we can avoid SolarWinds type attacks in the future. It won't be easy. But it must be done.

Enterprise -- ZDNet News - Cyber criminals know how many of us are working from home and are looking to exploit that situation with phishing emails designed to copy big brands.

Enterprise -- Cloud Native Computing Foundation - Guest post originally published on InfraCloud's blog by Frederick Fernando As Kubernetes continues to grow in adoption, it is important for us to know how to secure it. In a dynamic infrastructure platform such as Kubernetes,...

Enterprise -- SiliconANGLE - Security intelligence firm LogRhythm Inc. announced today it has acquired threat detection startup MistNet.IO Inc. for an undisclosed price. Founded in 2016, MistNet offers a security threat detection and prevention platform that is designed...

Enterprise -- ZDNet News - The total value of the losses from 122 attacks in 2020 would be worth $3.8 billion today.

Enterprise -- Cisco Blogs - During 2020 we saw a huge expansion and adoption of online services precipitated by a global pandemic. By all accounts, a good proportion of these changes will become permanent, resulting in greater reliance on resilient, secure services...

Enterprise -- The Register - Crowdstrike tech analysts explain how they think it slipped under the radar

The malware that was utilised to hack SolarWinds checked to see whether software used to compile the firm's Orion product was running before deploying its payload,...

Enterprise -- VMblog - Digital Defense, Inc. is now integrated with Palo Alto Networks Cortex XSOAR (previously Demisto), the industry's first extended security...

Enterprise -- ZDNet News - Coronavirus has forced many organisations to force security teams to work remotely - and that's making the job of securing whole businesses against threats much harder.

Enterprise -- ZDNet Blogs - The macOS.OSAMiner has been active since 2015, primarily infecting users in Asia.

Enterprise -- The Register - Brave move for Russian firm to finger its own govt over cyber badness

Kaspersky Lab reckons the SolarWinds hackers may have hailed from the Turla malware group, itself linked to Russia's FSB security service....

Enterprise -- ZDNet News - CrowdStrike, one of the two security firms formally investigating the hack, sheds some light on how hackers compromised the SolarWinds Orion app build process.

Enterprise -- Microsoft IT Showcase - Cybersecurity is a constant challenge at Microsoft.

To protect the connections between computer servers, resources, and their users, the company regularly uses digital certificates signed by trusted authority providers.

Every quarter,...

Enterprise -- Amazon AWS Blog - In this post, I'll provide my tips on how to integrate threat modeling into your organization's application development lifecycle. There are many great guides on how to perform the procedural parts of threat modeling, and I'll briefly...

Enterprise -- IT Business Edge - Check out this list for the best cybersecurity tools for small businesses including endpoint detection and response (EDR) and antivirus software.

Enterprise -- ZDNet News - The company will extend the consultancy's managed cybersecurity and security services.

Enterprise -- IT World Canada - A Canadian expert thinks the cost could be closer to $1 billion. Also, Kaspersky finds similarities between Orion backdoor and another created by a different hacker

Enterprise -- Cisco Blogs - Introduction

Network and security teams seem to have had a love-hate relationship with each other since the early days of IT. Having worked extensively and built expertise with both for the past few decades, we often notice how each have...

Enterprise -- ZDNet News - The January 6 attack on Election Day certification proceedings in the US Capitol Building has deep cybersecurity ramifications.

Aspencore -- EDN - For many development teams, the idea of building cybersecurity into their IoT design can seem daunting. Striking a balance between adding functionality and minimizing implementation cost can quickly lead to confusion and frustration without a systematic...

Tech -- TechCrunch - In mid-October, a little-known but critically important domain name for one country's internet space began to expire.

The domain - scpt-network.com - was one of two nameservers for the .cd country code top-level domain, assigned to the Democratic...

Infosec -- Security Affairs - The development team behind the Linux Mint distro has fixed a security flaw that could have allowed users to bypass the OS screensaver.



The maintainers of the Linux Mint project have addressed a security bug that could have allowed...

Infosec -- Security Affairs - Joker's Stash to shut down on February 15, 2021.



Joker's Stash, the largest carding marketplace online announced that it was shutting down its operations on February 15, 2021.

Infosec -- The Hacker News - The U.S. National Security Agency (NSA) on Friday said DNS over HTTPS (DoH) - if configured appropriately in enterprise environments - can help prevent "numerous" initial access, command-and-control, and exfiltration techniques used...

Infosec -- Threatpost - Starting Feb. 9, Microsoft will enable Domain Controller "enforcement mode" by default to address CVE-2020-1472.

Infosec -- CyberScoop - Rob Joyce, the National Security Agency's special U.S. liaison officer at the U.S. Embassy in London, will replace Anne Neuberger as director in the agency's Cybersecurity Directorate, the NSA announced Friday.

Business Wire -- CyberArk (NASDAQ: CYBR), today announced that CyberArk Core Privileged Access Security has received a Cyber CatalystSM designation. Created by Marsh, a global leader in insurance broking and risk management, the Cyber Catalyst program...

Infosec -- Threatpost - Security researchers lambasted the controversial macOS Big Sur feature for exposing users' sensitive data.

Infosec -- Verisign - A name collision occurs when a user attempts to resolve a domain in one namespace, but it unexpectedly resolves in a different namespace. Name collision issues in the public global Domain Name System (DNS) cause billions of unnecessary and...

Globe Newswire -- Sophos, a global leader in next-generation cybersecurity, today announced that it has been named a Common Vulnerabilities and Exposures (CVE) Numbering Authority (CNA) in the CVE program, a recognized international standard for identifying and naming...

Business Wire -- Dynatrace announced today that its Application Security Module now directly links the vulnerabilities it identifies to the Snyk Intel database

Business Wire -- LogRhythm announces it has acquired MistNet, a cloud-based analytics platform that delivers vast network visibility and accurate threat detection.

Infosec -- Barracuda - Life-saving vaccines may be on the way, but for many of us 2021 will be a lot like the past 12 months, at least until the latter part of the year. That means remote working in large numbers. It means growing use of online services and applications...

Infosec -- CyberScoop - The U.S. Cybersecurity and Infrastructure Security Agency urged federal agencies on Thursday to deploy ad-blocking software and standardize web browser usage across their workforces in order to fend off advertisements implanted with malware.

Infosec -- Dark Reading - Researchers find organizations struggle with availability for cloud applications as government officials warn of cloud-focused cyberattacks.

Infosec -- Security Affairs - A security researcher discovered a flaw in the F5 BIG-IP product that can be exploited to conduct denial-of-service (DoS) attacks.



The security expert Nikita Abramov from Positive Technologies discovered a DoS vulnerability, tracked...

Infosec -- RiskIQ - RiskIQ's recent analysis of Magecart infrastructure has shown its massive scale and put its interconnectivity into focus. Our most recent research takes two email addresses evoking the name of one of the most prominent bulletproof hosting providers...

Infosec -- SecurityInnovation.com - Advice for Executives to Watch Next Year

2020 completely changed the way workforces operate. Digital transformation went from an emerging trend to a necessity for survival. Certain industries were brought to their...

Infosec -- TripWire - The State of Security - The US Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to companies to better protect their cloud-based accounts after several recent successful attacks....

Media -- ELE Times - The Year 2020 brought a historic pandemic and bad actors leveraging COVID-19-themed threats to test our security operations and our unprecedented shift to remote work life. As we enter 2021, these concerns are still at the forefront, but we...

Infosec -- CSO Online - Computer Trojans received their name from the infamous mythological horse. The Trojan's basic mission is to mislead people of its real goal. A Trojan is malicious software that usually needs to be launched by the user or another malicious...

Infosec -- Security Affairs - The US CISA revealed that several recent successful cyberattacks against various organizations' cloud services.



The Cybersecurity and Infrastructure Security Agency (CISA) announced that several recent successful cyberattacks hit...

Infosec -- Okta Blog - What is Decentralized Identity?



Decentralized identity, often used interchangeably with "self-sovereign identity" (SSI), is gaining ground as an alternative to today's centralized...

Infosec -- Dark Reading - Mimecast no longer uses the SolarWinds Orion network management software that served as an attack vector for thousands of organizations.

Infosec -- CyberScoop - While dealing with a massive cyber-espionage campaign against the U.S. government, the FBI is trying to quietly implement a new strategy aimed at better tracking foreign hackers.



FBI officials last spring gave the head of the National...