Woodstock Wire: Enterprise Security News

October 25, 2021

Acer confirms second security breach this year

Infosec -- Record by Recorded Future - A spokesperson for Taiwanese computer maker Acer has confirmed today that the company suffered a second security breach this year after hackers advertised the sale of more than 60 GB of data on an underground cybercrime forum.

October 25, 2021 12:06 AM

October 23, 2021

Are You Ready for the Privacy Laws Tsunami?

Infosec -- Dark Reading - Think PCI, HIPAA, and GDPR compliance is tough? There's a tsunami of similar laws on the way. Prepare your business for success with privacy by design.

October 23, 2021 09:16 PM

DDoS attacks on the rise - using powerful new techniques

Infosec -- Barracuda - Ransomware has been dominating cybersecurity headlines for a while now, so it's completely understandable if you haven't been keeping up with the latest news about distributed denial-of-service (DDoS) attacks. But there have been some startling...

October 23, 2021 09:14 PM

U.S. convenes 30 countries on ransomware threat - without Russia or China

Infosec -- Record by Recorded Future - The Biden administration did not invite Russia to participate in the first meeting of a global effort to combat cybercrime, but could welcome the country that has become synonymous with ransomware to future gatherings.

October 23, 2021 08:34 PM

Nearly 60% of Organizations Say Connected Product Security Concerns Have Cost Them Sales, Finite State Research Finds

Business Wire -- More than half (59%) of executives with cybersecurity decision-making responsibility at large and mid-sized companies say that their organizations have lost business due to product security concerns for connected devices and embedded systems, according...

October 23, 2021 02:28 AM

Auth0 Identity Platform Now Available on Microsoft Azure

Business Wire -- The Auth0 Identity Platform, a product unit within Okta (NASDAQ: OKTA), today announced the launch of the Auth0 Identity Platform on Microsoft Azure. The launch gives customers the ability to choose Azure as their cloud deployment option from Auth0. The...

October 23, 2021 02:27 AM

Okta Advances Customer Identity with Auth0 and New Okta Features

Business Wire -- Okta, Inc. (NASDAQ: OKTA), the leading independent identity provider, today will announce continued growth and advancements in both Okta's and Auth0's Customer Identity and Access Management (CIAM) offerings at the company's annual Showcase event. Marking...

October 23, 2021 02:26 AM

October 21, 2021

Business as usual for Azure customers despite 2.4 Tbps DDoS attack

Enterprise -- Microsoft Azure - This blog post was co-authored by Alethea Toh, Program Manager and Syed Pasha, Principal Network Engineer, Azure Networking.



In early August, we shared Azure's Distributed Denial-of-Service (DDoS) attack trends for the first half of...

October 21, 2021 07:08 PM

Ransomware is now the most urgent cyber threat to business. But most firms aren't ready for it

Enterprise -- ZDNet News - Many firms have no incident response plans, or ever test their cyber defences says cybersecurity chief.

October 21, 2021 07:06 PM

When criminals go corporate: Ransomware-as-a-service, bulk discounts and more

Enterprise -- The Register - Pen-testers, rogue developers, dodgy hosters, etc. etc.

Feature This summer, Abnormal Security discovered that some of its customers' staff were receiving emails inviting them to install ransomware on a company computer in return for a...

October 21, 2021 07:01 PM

October 20, 2021

STG closes US$1.2b FireEye purchase

Enterprise -- CRN - Merges it with McAfee Enterprise.

October 20, 2021 07:48 PM

October 19, 2021

The next big cyberthreat is something called killware

Media -- USATODAY - Tech Top Stories - Killware is the a cybersecurity threat we should be more aware of. So, what is it and is it as dangerous as it sounds?

October 19, 2021 02:42 AM

October 18, 2021

White House to federal agencies: Step up your endpoint monitoring

Infosec -- Record by Recorded Future - Federal agencies will be required to give the Office of Management and Budget and the Cybersecurity and Infrastructure Security Agency (CISA) details about how they gather and analyze threat-related information from their...

October 18, 2021 05:07 AM

October is high season for cyberattacks, InfoSec Institute study shows

Infosec -- CSO Online - There has been an exponential increase in cyberattacks around the globe in the last five years and a major chunk of it happened in October each year, according to a study by InfoSec Institute.A similar offensive appears to be building up...

October 18, 2021 05:07 AM

Azure, GitHub, GitLab, BitBucket mass-revoke SSH keys following bug report

Infosec -- Record by Recorded Future - Microsoft, GitHub, GitLab, and BitBucket -four of today's largest code hosting portals- have initiated mass revocations of SSH keys on Monday after the discovery of a vulnerability in a popular Git software client named GitKraken.

October 18, 2021 05:07 AM

Introducing Identity Intelligence from Recorded Future

Infosec -- Recorded Future - For years, security practices were structured around protecting a company's critical infrastructure and assets by working to secure the perimeter. The assumption was that if you prevented someone from accessing your network with robust...

October 18, 2021 05:03 AM

Microsoft said it mitigated a 2.4 Tbps DDoS attack, the largest ever

Infosec -- Record by Recorded Future - Microsoft said its Azure cloud service mitigated a 2.4 terabytes per second (Tbps) distributed denial of service attack this year, at the end of August, representing the largest DDoS attack recorded to date.

October 18, 2021 05:01 AM

Peanut butter and ProtonMail: US charges underscore evolution of espionage in digital age

Infosec -- CyberScoop - It's an espionage case so outlandish that the renowned espionage writer John le Carre would have rejected the idea as too difficult to believe.

The U.S. Department of Justice on Saturday unsealed charges against a Navy engineer who allegedly...

October 18, 2021 05:00 AM

Microsoft: Iran-linked hackers breached Office 365 customer accounts

Infosec -- Record by Recorded Future - Microsoft said today that a new Iran-linked hacking group has targeted more than 250 Office 365 tenants and compromised accounts for less than 20.

October 18, 2021 04:58 AM

Google warns some users that FancyBear's been prowling around

Infosec -- Malwarebytes Unpacked - APT28, also known as FancyBear, is at the heart of another targeted campaign. This time, it's sniffing around users of Google services. Some 14,000 people have been notified about a spear phish attempt looking to compromise accounts...

October 18, 2021 04:58 AM

6 ways the pandemic has triggered long-term security changes

Infosec -- CSO Online - Some of the changes to IT environments prompted by the COVID-19 pandemic-primarily work-from-home (WFH) and cloud adoption-are here to stay and will require long-term revisions to enterprise cybersecurity strategies.The often hasty measures...

October 18, 2021 04:57 AM

NSA explains how to avoid dangers of Wildcard TLS Certificates and ALPACA attacks

Infosec -- Security Affairs - The NSA issued a technical advisory to warn organizations against the use of wildcard TLS certificates and the new ALPACA TLS attack.



The National Security Agency (NSA) is warning organizations against the use of wildcard TLS certificates...

October 18, 2021 04:56 AM

The Changing Role of the CISO

Infosec -- TripWire - The State of Security - Back in the early days of networking, many companies assigned all of the responsibilities to anyone who showed any aptitude towards operating a computer. In many companies, this was an accountant or someone else who...

October 18, 2021 04:55 AM

Take Control of Your Data Security and SIEM Systems

Enterprise -- Nagios - A proper Security Information and Event Management (SIEM) system works efficiently over your entire network to gather information and assess events. Most critically, SIEM allows end users to respond to potential threats in real-time.

October 18, 2021 02:36 AM

October 17, 2021

Security expert published NMAP script for Apache CVE-2021-41773 vulnerability

Infosec -- Security Affairs - Security expert Dhiraj Mishra published an NMAP script for the CVE-2021-41773 Path Traversal vulnerability affecting Apache Web Server version 2.4.49.



Security researcher Dhiraj Mishra released an NMAP script for the CVE-2021-41773...

October 17, 2021 06:18 PM

North American Orgs Hit With an Average of 497 Cyberattacks per Week

Infosec -- Dark Reading - A new analysis confirms a surge in global cyberattacks since the COVID-19 pandemic began.

October 17, 2021 06:16 PM

GnuPG fixes a problem with Let's Encrypt certificate chain validation

Infosec -- Malwarebytes Unpacked - Despite advance warnings that a root certificate provided by Let's Encrypt would expire on September 30, users reported issues with a variety of services and websites once that deadline hit. So what happened?

October 17, 2021 06:09 PM

Apache rolled out a new update in a few days to fix incomplete patch for an actively exploited flaw

Infosec -- Security Affairs - Apache Software Foundation has released HTTP Web Server 2.4.51 to completely address a vulnerability that has been actively exploited in the wild.



Apache Software Foundation has released HTTP Web Server 2.4.51 to address an actively...

October 17, 2021 06:01 PM

Microsoft to disable Excel 4.0 macros, one of the most abused Office features

Infosec -- Record by Recorded Future - Microsoft plans to disable a legacy feature known as Excel 4.0 macros, also XLM macros, for all Microsoft 365 users by the end of the year, according to an email the company has sent customers this week, also seen by The Record.

October 17, 2021 06:00 PM

Fighting DDos Attacks with Hybrid Cloud DNS

Enterprise -- EfficientIP - DNS security is often in the news, a notable example being due to one of the largest DDoS attacks ever disrupting the Dyn cloud DNS service. At least 150,000 compromised devices (including IoT hardware) were used by the Mirai botnet to...

October 17, 2021 05:07 AM

October 12, 2021

Microsoft: 58% of Nation-State Cyberattacks Come from Russia

Infosec -- Dark Reading - A wealth of Microsoft data highlights trends in nation-state activity, hybrid workforce security, disinformation, and supply chain, IoT, and OT security.

October 12, 2021 11:14 PM

Botnet abuses TP-Link routers for years in SMS messaging-as-a-service scheme

Infosec -- Record by Recorded Future - Since at least 2016, a threat actor has hijacked TP-Link routers as part of a botnet that abused a built-in SMS capability to run an underground Messaging-as-a-Service operation.

October 12, 2021 11:11 PM

Swimlane Releases Low-Code Security Automation Platform

Infosec -- Dark Reading - Swimlane Cloud is a low-code software-as-a-service that allows anyone in the organization to create security automation tasks and automation.

October 12, 2021 11:08 PM

October 11, 2021

Ping Identity Announces 2021 Identity Excellence Awards Winners

Business Wire -- Ping Identity (NYSE: PING), the intelligent identity solution for the enterprise, announced the winners of the fifth annual Identity Excellence Awards at their annual user conference, Ping YOUniverse (formerly IDENTIFY). Selected by Ping Identity leadership,...

October 11, 2021 09:44 PM

Becoming a new chief information security officer today: The steps for success

Enterprise -- ZDNet Blogs - It's no easy ride -- but here are some tips from an experienced CISO.

October 11, 2021 09:36 PM

MacOS Security: What Security Teams Should Know

Infosec -- Dark Reading - As more macOS patches emerge and cybercriminals and nation-states take aim at the platform, experts discuss how macOS security has evolved and how businesses can protect employees.

October 11, 2021 07:09 PM

How to Determine the Best Managed Cybersecurity Model for You

Infosec -- Dark Reading - Organizations need to protect against online threats in the most cost-effective manner possible. How do they determine the best managed cybersecurity model?

October 11, 2021 06:42 PM

Box Announces New Malware Deep Scan Capability in Box Shield To Combat Ransomware

Business Wire -- Box, Inc. (NYSE: BOX), the leading Content Cloud, today announced new capabilities for Box Shield, the company's flagship security control and intelligent threat detection solution, to help customers reduce the risk of ransomware by scanning files in...

October 11, 2021 06:20 PM

Ping Identity Adds New Online Fraud Detection and API Intelligence Tools to PingOne Cloud Platform

Business Wire -- Ping Identity (NYSE: PING), the intelligent identity solution for the enterprise, continues to enhance its PingOne Cloud Platform with new online fraud detection and other intelligent capabilities that strengthen enterprise cloud security while improving...

October 11, 2021 06:19 PM

IP Surveillance Bugs in Axis Gear Allow RCE, Data Theft

Infosec -- Threatpost - Three security vulnerabilities in Axis video products could open up the door to a bevy of different cyberattacks on businesses.

October 11, 2021 02:17 AM

Decryption tool controversy erupts

Infosec -- Barracuda - Lawmakers from the U.S. House of Representatives and the Senate are questioning law enforcement officials from the Federal Bureau of Investigation about the handling of ransomware investigations after reports surfaced that the agency did not...

October 11, 2021 02:16 AM

Unnamed Ransomware gang uses a Python script to encrypt VMware ESXi servers

Infosec -- Security Affairs - An unnamed ransomware gang used a custom Python script to target VMware ESXi and encrypt all the virtual machines hosted on the server.



Researchers from Sophos were investigating a ransomware attack when discovered that the attackers...

October 11, 2021 02:15 AM

Apache Warns of Zero-Day Exploit in the Wild - Patch You Web Servers Now!

Infosec -- The Hacker News - Apache has issued patches to address two security vulnerabilities, including a path traversal and file disclosure flaw in its HTTP server that it said is being actively exploited in the wild.

"A flaw was found in a change made to path...

October 11, 2021 02:09 AM

How corporate data and secrets leak from GitHub repositories

Infosec -- CSO Online - One boring day during the pandemic, security researcher Craig Hays decided to do an experiment. He wanted to leak an SSH username and password into a GitHub repository and see if any attacker might find it. Hays thought he'd have to wait...

October 11, 2021 02:01 AM

Don't Warn Your Co-Workers About That Phishing Test

Infosec -- TripWire - The State of Security - It is October 2021, and another Cybersecurity Awareness Month is upon us. With so much having occurred over the last year, we should all be experts in personal cybersecurity protection. After all, when our homes became...

October 11, 2021 02:00 AM

October 10, 2021

Ransomware Remains a Serious Threat

Infosec -- Recorded Future - Ransomware threat actors continue to make their way into systems of organizations big and small all over the world, leading to business interruptions, financial loss, and reputational damage. Even more troubling are recent reports attributing...

October 10, 2021 09:57 PM

4 steps to protect the C-suite from business email compromise attacks

Infosec -- CSO Online - The damage from executive email account takeovers can run into millions of dollars, as recent examples show.In 2019, Toyota Boshoku Corporation lost $37 million after the information in a payment direction from a third-party was changed,...

October 10, 2021 09:55 PM

BOX Adds Deep Scanning Feature to Box Shield to Stop Ransomware

Yahoo Finance -- Box (BOX) introduces new features to Box Shield to provide users with improved security without disruption in business workflows.

October 10, 2021 05:06 AM

Academics discover hidden layer in China's Great Firewall

Infosec -- Record by Recorded Future - A team of academics from the University of Maryland has discovered a previously hidden layer in China's Great Firewall censorship system.



Introduced in the late 90s, the Great Firewall (GFW) is a system of middleboxes installed...

October 10, 2021 04:45 AM

October 09, 2021

Discover the best online cybersecurity degrees

Enterprise -- ZDNet News - Cybersecurity careers can offer six-figure salaries and promising job growth. Online cybersecurity degree programs help professionals launch careers.

October 09, 2021 06:13 AM