Woodstock Wire: Enterprise Security News

February 18, 2018

Learn Ethical Hacking Online - 9 Courses At Lowest Price Ever

Infosec -- The Hacker News - How to become a Professional Hacker? This is one of the most frequently asked queries we came across on a daily basis.



Do...

February 18, 2018 03:43 AM

Update on Colorado's Proposed Privacy and Cybersecurity Legislation

Infosec -- Office of Inadequate Security - David M. Stauss and Gregory Szewczyk of Ballard Spahr LLP write: As we first reported in our January 22, 2018,...

February 18, 2018 03:43 AM

Effective Tips for Internet Safety for Kids You Must Read

Infosec -- Security Affairs - Online safety for your kids is very important. However, that doesn't necessarily mean that it needs to be hard work.

The...

February 18, 2018 03:43 AM

Rise of the 'Hivenet': Botnets That Think for Themselves

Infosec -- Dark Reading - These intelligent botnet clusters swarm compromised devices to identify and assault different attack vectors all at once.

February 18, 2018 03:37 AM

What's on CISOs Minds in 2018?

Infosec -- CSO Online - I've just begun a research project on CISO priorities in 2018. What I'm finding so far is that CISOs are increasing their focus...

February 18, 2018 03:37 AM

February 16, 2018

Many popular ID theft protection services fail to offer basic security features

BGR -- It's difficult not to be concerned about identity theft in the modern era. Individuals, businesses and even governments are being hacked with...

February 16, 2018 07:35 PM

Protecting Mac Endpoints From Cyber Attacks

Enterprise -- Palo Alto Networks Blog - With 91% of enterprises now using Mac computers, Mac devices have become a growing target for cyberattacks. Successful...

February 16, 2018 06:41 PM

New EU Privacy Law May Weaken Security

Infosec -- Krebs on Security - Companies around the globe are scrambling to comply with new European privacy regulations that take effect a little more...

February 16, 2018 06:28 PM

From DevOps to DevSecOps: Structuring Communication for Better Security

Infosec -- Dark Reading - A solid approach to change management can help prevent problems downstream.

February 16, 2018 06:26 PM

Vulnerabilities in Apache CouchDB Open the Door to Monero Miners

Infosec -- TrendLabs Security Intelligence Blog - by Hubert Lin

Attacks abusing cryptocurrency miners have been on an upswing - in large part due to the...

February 16, 2018 06:24 PM

Pen Testing, Attack Simulation & Red Teaming...Oh My!

Infosec -- SecurityInnovation.com - There are several approaches that organizations can take to better understand where their Software Systems are most...

February 16, 2018 06:23 PM

Barracuda Launches Free Threat Intelligence Service

Enterprise -- The ChannelPro Network - Called Barracuda Security Insight, the new offering draws on data collected from Barracuda endpoints all over the globe...

February 16, 2018 05:58 PM

Box intros new services to help customers prepare for GDPR requirements

Enterprise -- ZDNet News - GDPR requires companies to protect EU citizens' personal information and know where data flows at any time.

February 16, 2018 05:26 PM

Visa's chief risk officer shares the company's four pillars of payment security

Enterprise -- ITBusiness.ca - As the chief risk offer at Visa Inc., Ellen Richey knows a thing or two about data security. After all, the criminals who make...

February 16, 2018 05:25 PM

Palo Alto Networks to enhance full range of protection for full range of public clouds

Enterprise -- ChannelBuzz.ca - Improvements to Palo Alto Networks' Next-Generation Security Platform will extend inline, API-based and host based are protections...

February 16, 2018 05:23 PM

SentinelOne Debuts Unified OS Threat Protection

Enterprise -- LinuxInsider - SentinelOne this week announced a partnership with Microsoft to bolster threat protection for mixed platform users, making...

February 16, 2018 05:19 PM

Unsecured server exposed thousands of FedEx customer records

Enterprise -- ZDNet Blogs - Another day, another exposed Amazon S3 server.

February 16, 2018 05:17 PM

Hack the Air Force 2.0 uncovers over 100 vulnerabilities

Enterprise -- ZDNet Blogs - Participants managed to secure themselves over $103,000 in rewards.

February 16, 2018 05:16 PM

IoT Security: Joining Forces

Electronics -- NXP Blog - Human interaction with smart devices and services is fast becoming an integral part of daily life. From home automation to manufacturing,...

February 16, 2018 05:10 PM

Research: A Strong Privacy Policy Can Save Your Company Millions

Think -- HBR.org - Cyberattacks are on the rise, with over 1,000 data breaches occurring at U.S. organizations...

February 16, 2018 05:03 PM

February 15, 2018

7 threat modeling mistakes you're probably making

Infosec -- CSO Online - The Open Web Application Security Project (OWASP) describes threat modeling as a structured approach for identifying, quantifying...

February 15, 2018 06:47 PM

Don't Get BuckHacked: What Are You Doing to Keep Your AWS S3 Data Private?

Infosec -- TripWire - The State of Security - Leaky AWS S3 buckets have been spilling confidential information onto the public internet for years, and now...

February 15, 2018 06:47 PM

Top 10 Mobile App Security Best Practices for Developers

Infosec -- TripWire - The State of Security - App security isn't a feature or a benefit. It is a bare necessity. One breach could cost your company not...

February 15, 2018 06:46 PM

Dell EMC Patches Critical Flaws in VMAX Enterprise Storage Systems

Infosec -- Threatpost - Attacks include a hard-coded password vulnerability that could give attackers unauthorized access to systems.

February 15, 2018 06:37 PM

Windows 10 Critical Vulnerability Reports Grew 64% in 2017

Infosec -- Dark Reading - The launch and growth of new operating systems is mirrored by an increase in reported vulnerabilities.

February 15, 2018 06:37 PM

Windows Analytics now includes Meltdown and Spectre detector

Infosec -- Security Affairs - Good news for administrators of Windows systems, Microsoft has added a Meltdown-and-Spectre detector to its telemetry analysis...

February 15, 2018 06:37 PM

Let's Encrypt Hits 50 Million Active Certificates and Counting

Infosec -- EFF Deeplinks - In yet another milestone on the path to encrypting the web, Let's Encrypt has now issued over 50 million active certificates....

February 15, 2018 06:35 PM

3 Tips to Keep Cybersecurity Front & Center

Infosec -- Dark Reading - In today's environment, a focus on cybersecurity isn't a luxury. It's a necessity, and making sure that focus is achieved starts...

February 15, 2018 06:35 PM

Fileless Malware: Not Just a Threat, but a Super-Threat

Infosec -- Dark Reading - Exploits are getting more sophisticated by the day, and cybersecurity technology just isn't keeping up.

February 15, 2018 06:34 PM

Encrypted Attacks Continue to Dog Perimeter Defenses

Infosec -- Dark Reading - Attacks using SSL to obfuscate malicious traffic finding fertile ground for growth.

February 15, 2018 06:32 PM

Patch now! Microsoft fixes over 50 serious security flaws

Infosec -- WeLiveSecurity - This week saw the second Tuesday of the month, and everyone who is responsible for protecting Windows computers knows what that...

February 15, 2018 06:32 PM

PCI Council and X9 Committee to combine PIN security standards

Enterprise -- The Register - One PIN to rule them all, one PIN to find them, one PIN to rule them all and in the darkness bind them

The PCI Security Standards...

February 15, 2018 06:03 PM

How Palo Alto Networks Scales Next-Gen Security on AWS

Enterprise -- Palo Alto Networks Blog - One of three articles in a series about security for the three major public cloud environments: AWS, Azure and Google.

In...

February 15, 2018 05:54 PM

How to Use Your Own Identity and Access Management Systems to Control Access to AWS IoT Resources

Enterprise -- Amazon AWS Blog - AWS IoT is a managed cloud platform that lets connected devices easily and securely interact with cloud applications and other...

February 15, 2018 05:43 PM

Why People Are Concerned About Singapore's New Cybersecurity Bill

Enterprise -- VMblog - On February 5, Singapore's legislators passed a cybersecurity bill into law. It focuses on numerous sectors that provide services and...

February 15, 2018 05:37 PM

76% of organizations struck by phishing attacks in 2017

Enterprise -- IT Manager Daily - Phishing attacks remain one of the most common security risks for IT professionals and organizations, according to a new...

February 15, 2018 05:36 PM

GDPR: Fall back in love with your data

SupplyChain -- Software AG - Today, 15 February, marks the final countdown for businesses to get serious about their data compliance.

February 15, 2018 05:34 PM

Gartner Provides Seven Steps Security Leaders Can Take to Deal With Spectre and Meltdown

Think -- Gartner - Security and risk management leaders must take a pragmatic and risk-based approach to the ongoing threats posed by an entirely new...

February 15, 2018 05:28 PM

BAS and Red Teams Will Kill The Pentest

Think -- Gartner Blog Network - With our research on testing security methods and Breach and Attack Simulation tools (BAS), we ended up with an interesting...

February 15, 2018 05:26 PM

Our Team Is Hiring Again: A New Position Open - Threat/Vulnerability/Detection in US/North America

Think -- Gartner Blog Network - This new open position on our team is really exciting!!! Think of this as "joining the triumvirate of Augusto Barros and...

February 15, 2018 05:25 PM

IoT Security | NISTIR 8200 in Draft - Act NOW!

Think -- Gartner Blog Network - We knew this was coming, and this is a big day in IoT security and risk management.Let's explore why it is important for...

February 15, 2018 05:25 PM

February 14, 2018

Secure Innovation: A Byproduct of a Well-Crafted Patching Strategy

Web Marketing -- CMS Wire - In July 2017, PayPal purchased a payment processing company called TIO Networks for $238 million. However, a data breach forced PayPal...

February 14, 2018 08:35 PM

The GDPR Clock Is Running Out. Now What?

Infosec -- Dark Reading - Many organizations impacted by new European Union data privacy rules that go into effect May 25 are still blind to some of the...

February 14, 2018 08:24 PM

Mastering email security with DMARC, SPF and DKIM

Infosec -- CSO Online - Phishing and email spam are the biggest opportunities for hackers to enter the network. If a single user clicks on some malicious...

February 14, 2018 08:24 PM

Microsoft Won't Patch a Severe Skype Vulnerability Anytime Soon

Infosec -- The Hacker News - A serious vulnerability has been discovered in Microsoft-owned most popular free web messaging and voice calling service Skype...

February 14, 2018 08:24 PM

6 Top Cloud Security Threats in 2018

Infosec -- TripWire - The State of Security - 2018 is set to be a very exciting year for cloud computing. In the fourth financial quarter of 2017, Amazon,...

February 14, 2018 08:23 PM

Making Threat Intelligence Less Like Manual Labor

Infosec -- Recorded Future - Key Takeaways

Many organizations continue to rely on manual processes to collect and make sense of threat intelligence, but...

February 14, 2018 08:22 PM

Microsoft Patch Tuesday, February 2018 Edition

Infosec -- Krebs on Security - Microsoft today released a bevy of security updates to tackle more than 50 serious weaknesses in Windows, Internet Explorer/Edge,...

February 14, 2018 08:22 PM

Two Nasty Outlook Bugs Fixed in Microsoft's Feb. Patch Tuesday Update

Infosec -- Threatpost - One of the bugs could allow a successful attack simply by a user viewing an email in Outlook's Preview pane.

February 14, 2018 08:20 PM

Palo Alto Networks extends security to the big 3 public clouds

Infosec -- CSO Online - Over the past five years, the cloud has gone from being something that augments a business's IT strategy to being the core of it....

February 14, 2018 08:19 PM