Woodstock Wire: Enterprise Security News

January 17, 2020

Kubernetes gets a bug bounty program

Tech -- TechCrunch - The Cloud Native Computing Foundation (CNCF) today announced its first bug bounty program for Kubernetes, the ubiquitous container...

January 17, 2020 03:40 AM

Hackers Awarded More Than $275,000 for Surfacing Over 145 Security Vulnerabilities in Second 'Hack the Army' Challenge with HackerOne

Business Wire -- Through partnership with the Defense Digital Service, the U.S. Department of Defense (DoD) and HackerOne, the number one hacker-powered pentesting...

January 17, 2020 03:29 AM

New Report from UC Berkeley Center for Long-Term Cybersecurity and Booz Allen Hamilton Highlights Urgent Need for Board Engagement to Manage Cybersecurity Risk

Business Wire -- Rapidly evolving cybersecurity threats are now commanding the attention of senior business leaders and boards of directors and are no longer...

January 17, 2020 03:29 AM

Tripwire Expands Industrial Cybersecurity Capabilities, Launches Tripwire Industrial Appliance Line and Joins ISA Global Security Alliance

Business Wire -- Tripwire has launched Tripwire(r) Industrial Appliance line of hardware and joined ISA Global Security Alliance to advance industrial cybersecurity.

January 17, 2020 03:27 AM

Check Point Software Technologies Receives 2 New Common Criteria Certifications to Meet the Security Needs of 31 Nations

Globe Newswire -- Technology - Check Point achieves common criteria certifications for Protection Profile compliance and EAL4+ Check Point achieves common criteria...

January 17, 2020 03:10 AM

Auth0 Assemble to be The Identity Conference for Application Builders

Globe Newswire -- Technology - Auth0's inaugural user conference will be held August 26-27, 2020 in San Francisco Auth0's inaugural user conference will be held...

January 17, 2020 03:08 AM

Proofpoint Email Protection Wins CRN Product of the Year Award

Globe Newswire -- Technology - CRN editorial board and providers select Proofpoint's innovative solution in web/email security category CRN editorial board and...

January 17, 2020 03:08 AM

When Email Becomes SMBs' Biggest Security Threat

Media -- PYMNTS.com - The business email compromise (BEC) scam is a cybersecurity threat to businesses of all sizes, and the financial and security implications...

January 17, 2020 02:55 AM

How AI Helps Marketplaces Fight Off-Platform Fraud

Media -- PYMNTS.com - Fraudsters are starting off the new decade armed with the stolen data and credentials of millions of global consumers, and they...

January 17, 2020 01:40 AM

Google update turns your iPhone into a physical account security key

Media -- The Next Web - Google today updated its iOS Smart Lock app with a feature that essentially replaces a physical security key with your actual...

January 17, 2020 01:29 AM

NSA Alerts Microsoft To Windows Security Flaw

Media -- PYMNTS.com - In a move designed for public reassurance and transparency, the National Security Agency (NSA) will now be more forthright, sharing...

January 17, 2020 12:47 AM

January 15, 2020

Zscaler Announces Dismissal of Lawsuits

Globe Newswire -- Zscaler, Inc., the leader in cloud security, today announced the dismissal with prejudice of all patent lawsuits filed by Symantec against Zscaler....

January 15, 2020 07:28 PM

January 14, 2020

Cisco addressed a high-severity bug in Webex that could allow Remote Code Execution

Infosec -- Security Affairs - Tech giant Cisco has recently addressed two high-severity vulnerabilities affecting its Webex and IOS XE Software products.

January 14, 2020 08:05 PM

China-linked APT40 group hides behind 13 front companies

Infosec -- Security Affairs - A group of anonymous security researchers that calls itself Intrusion Truth have tracked the activity of a China-linked cyber-espionage...

January 14, 2020 08:05 PM

Is Cybersecurity Getting Too Complex?

Infosec -- Infosec Island - Weighing SMB Security Woes Against the Managed Security Promise



Looking strictly at the numbers, it appears small to mid-sized...

January 14, 2020 08:04 PM

20/20 Vision on 2020's Network Security Challenges

Infosec -- Infosec Island - As the new year starts, it's natural to think about the network security challenges and opportunities that organizations are...

January 14, 2020 08:03 PM

Neustar Delivers UltraThreat Feeds for More Effective Data Security

Business Wire -- Neustar announces UltraThreat Feeds, a new service providing proprietary near real-time threat data to identify and stop bad traffic.

January 14, 2020 07:32 PM

Microsoft CEO says encryption backdoors are a 'terrible idea'

Tech -- The Verge - As Apple squares off for another encryption fight, Microsoft CEO Satya Nadella offered mixed...

January 14, 2020 07:12 PM

RiskIQ Expands Leadership Team with Appointment of Christophe Culine as CRO to Fuel Next Stage of Growth

Globe Newswire -- RiskIQ, the world leader in attack surface management, today announced the appointment of SaaS veteran Christophe Culine to the position of Chief...

January 14, 2020 06:46 PM

European Regulators Expand Scrutiny On Data Practices - And Bots

Media -- PYMNTS.com - It's a new year, and in Europe, an expansion of scrutiny and laws governing data sharing.

The dawn of 2020 brought a spate of new...

January 14, 2020 05:58 PM

January 13, 2020

The B2B Payments Fraud Threat Of Internal Employees

Media -- PYMNTS.com - It was a difficult week for businesses getting hit with cyberattacks, with foreign currency company Travelex among the most high-profile...

January 13, 2020 06:54 PM

Medical practitioners expose 1B+ records via unsecured databases

Enterprise -- SiliconANGLE - More than 1 billion medical images are believed to be exposed online as medical practitioners continue to upload them to unsecured...

January 13, 2020 06:15 PM

Remote Work Has a Hidden Challenge: Data Security. Here's How Experts Overcome It

Girl Power: Female CEOs - Inc.com -- These best practices can make a huge difference for any startup with remote employees.

January 13, 2020 06:12 PM

Vulnerability Scanning vs. Penetration Testing

Infosec -- TripWire - The State of Security - It amazes me how many people confuse the importance of vulnerability scanning with penetration testing. Vulnerability...

January 13, 2020 06:01 PM

Wells Growth Hampered By Outdated Systems, Tech Failures

Media -- PYMNTS.com - Wells Fargo is striving to revamp its approach to technology to ensure systems stay online, satisfy regulators and block cybercriminals,...

January 13, 2020 05:43 PM

Security Group Warns Iranian Hackers Could Target US Electric Utilities

Media -- PYMNTS.com - Iranian hacking groups are targeting U.S. electric systems, and intelligence officials worry that escalating tensions between the...

January 13, 2020 05:42 PM

Update servers and applications to TLS 1.2 by March 13, 2020

Enterprise -- Azure service updates - Update your servers and applications that communicate with Azure Container Registry to use transport layer security (TLS)...

January 13, 2020 06:24 AM

Office 365 hackers use side-loaded malicious app to gain access to user accounts

Enterprise -- SiliconANGLE - Hackers have been found using a malicious Microsoft Office 365 app to gain access to user accounts in the latest campaign targeting...

January 13, 2020 06:18 AM

An Overview of Zero Trust Architecture, According to NIST

Enterprise -- Cisco Blogs - NIST recently released a draft publication, SP 800-207: Zero Trust Architecture (ZTA), an overview of a new approach to network...

January 13, 2020 05:57 AM

Insight Partners acquires enterprise security firm Armis in $1.1 billion deal

Enterprise -- ZDNet Blogs - Insight Partners says the deal addresses a global enterprise endpoint security need.

January 13, 2020 05:53 AM

This password-stealing malware just got updated with new tactics to help it hide better

Enterprise -- ZDNet News - Predator the Thief provided updated again; make sure your systems are patched and staff are alert to the risks of phishing.

January 13, 2020 05:53 AM

Accenture to snap up Symantec unit from Broadcom

Enterprise -- ChannelPro - Broadcom is letting the Cyber Security Services business go just months...

January 13, 2020 05:51 AM

The Six Pillars of Effective Security Operations

Enterprise -- Palo Alto Networks Blog - In our extensive work with security teams around the world, we've seen the best and the worst security operations...

January 13, 2020 05:50 AM

Cyber-warnings, cyber-speculation over cyber-Iran's cyber-retaliation cyber-plans post-Soleimani assassination

Enterprise -- The Register - Experts reckon regional infrastructure is in the cross-hairs

With tensions soaring between America and Iran following the drone...

January 13, 2020 05:44 AM

Vigilance and expectation

Enterprise -- TechCentral.ie - Entirely unsurprisingly, the US Department of Homeland Security has used its National Terrorism Advisory Unit to issue a security...

January 13, 2020 05:42 AM

API Security Weekly: Issue #64

Enterprise -- Architects Zone - It is all about vulnerable APIs this week. We are looking at the ones in the Plenty of Fish dating app, Sony's SonyLIV services,...

January 13, 2020 05:41 AM

Zero Trust Network Access: Build Your SASE on a Solid Foundation

Enterprise -- Palo Alto Networks Blog - By Jason Georgi, Field CTO, Prisma

Applications moving to the cloud and increased user mobility are changing the way...

January 13, 2020 02:25 AM

The World's Leading Organizations Are Leaving Legacy Technology in the Past

Infosec -- Okta Blog - When Charles Darwin researched evolution in the mid-1800s, he realized that the species who survive longest are those most adaptable...

January 13, 2020 12:47 AM

Synopsys Buys Tinfoil

Infosec -- Dark Reading - Tinfoil Security's dynamic application and API security testing capabilities will be added to Synopsys Software Integrity Group.

January 13, 2020 12:46 AM

FBI says Iranian hackers have done reconnaissance since Soleimani killing

Infosec -- CyberScoop - The FBI has told U.S. companies that Iranian hackers have stepped up their probing and reconnaissance activity in the days since...

January 13, 2020 12:46 AM

January 12, 2020

The Looming Long Fizzle Of Cyberattacks

Media -- PYMNTS.com - The new year is still new, and those on the front lines battling cybercrimes and the hackers who work from the shadows might be...

January 12, 2020 11:07 PM

January 10, 2020

How to Improve Security Visibility and Detection-Response Operations in AWS

Electronics -- IEEE Spectrum - Security teams often handle a large stream of alerts, creating noise and impairing their ability to determine which...

January 10, 2020 11:47 PM

5 Tips on How to Build a Strong Security Metrics Framework

Infosec -- Dark Reading - The carpentry maxim "measure twice, cut once" underscores the importance of timely, accurate, and regular metrics to inform security...

January 10, 2020 11:37 PM

5 ways to improve your security posture in 2020

Infosec -- CSO Online - Billions of records were exposed through thousands of data breaches in 2019. Ransomware continues to loom large as a threat, with...

January 10, 2020 11:36 PM

Ten Questions-And Answers-About the California Consumer Privacy Act

Infosec -- EFF Deeplinks - You may have heard from a lot of businesses telling you that they've updated their privacy policies because of a new law called...

January 10, 2020 11:36 PM

Are We More Secure In 2020 Than In 2010? Summarizing a Decade of Cybersecurity

Infosec -- Tufin - We've left a decade marked by technology churn, change, and surprises-nowhere more so than in cybersecurity.

What happened and what have...

January 10, 2020 11:34 PM

Operationalizing Threat Intelligence at Scale in the SOC

Infosec -- Dark Reading - Open source platforms such as the Malware Information Sharing Platform are well positioned to drive a community-based approach...

January 10, 2020 11:31 PM

January 09, 2020

Mozilla addresses CVE-2019-17026 Firefox Zero-Day exploited in targeted attacks

Infosec -- Security Affairs - Mozilla has released security updates for Firefox browser that address a zero-day vulnerability (CVE-2019-17026) that has...

January 09, 2020 07:10 PM

Tripwire Patch Priority Index for December 2019

Infosec -- TripWire - The State of Security - Tripwire's December 2019 Patch Priority Index (PPI) brings together important vulnerabilities from Citrix,...

January 09, 2020 07:09 PM