Infosecurity News

  1. #BSidesSF: Managing Secrets in Your Cloud Environment

    Common mistakes in secret management and solutions to the problem

  2. #BSidesSF: How to Solve Infosec Problems with Creative Solutions

    Managing individual and environmental factors to solve infosec problems

  3. A Pair of Mobile Apps in Google Play Target Mideast Victims

    ViperRAT 2.0 and Desert Scorpion represent a rare instance of a malicious APT in an official app marketplace.

  4. Most Web Apps Contain High-Severity Vulnerabilities

    High-severity vulnerabilities were found in 100% of tested banking and finance web applications.

  5. University of Virginia Nabs Top Honors in Collegiate Cyber Contest

    Ten cyber-defense teams faced off in Orlando, competing as white-hat hackers to protect a fictional biotech company called Volitech.

  6. US and UK Cyber Agencies Issue Russian Attack Warning

    Russian attackers have conducted a sustained campaign targeting routers, say the DHS, FBI and NCSC.

  7. Developers Outnumber Security Pros 100:1 as Breaches Grow

    Sonatype study urges greater use of DevSecOps

  8. Telegram App Banned in Russia

    Messaging app founder refused to hand encryption keys to FSB

  9. Lords: UK Could be World Leader in "Ethical" AI

    Report outlines opportunities for UK firms while experts claim it could address security challenges

  10. Early Bird Code Injection Gets the Obfuscation Worm

    Early Bird allows execution of malicious code before the entry point of a process, bypassing security products.

  11. Scammers Bank on Cryptocurrency with Fake Apps

    Fake cryptocurrency apps in the mobile app ecosystem exploit the names of well-known exchanges and mixers.

  12. Cybercriminals Earn Millions, And Spend It Wildly

    Some spend their money like legitimate earners typically do, but others tend to blow it on fast cars, hookers and drugs.

  13. GWR Resets Passwords After Accounts Are Accessed

    Around 1000 accounts affected, says UK train operator

  14. Q1 Cyber-Attacks on UK Firms Jump 27%

    ISP claims every firm experienced 600 attempts to infiltrate their network

  15. Uber Hit with New FTC Breach Settlement

    Firm will face civil penalties if it fails to disclose another breach

  16. Nation-State Attacks Take 500% Longer to Find

    In 50% of cases over the past 12 months, organizations had insufficient endpoint or network visibility to respond successfully.

  17. Google Will Distrust Additional CAs, IT Pros Predict

    Just 15% of respondents believe that Google's decision to distrust Symantec certificates is a one-time event.

  18. UK Launches Offensive Cyber-Weapons Against Islamic State

    This marks the first time the UK has systematically and persistently attacked an adversary’s online efforts as part of a wider military campaign.

  19. Developers Failing to Use Secure Open Source Components

    CA Veracode claims 71 vulnerabilities are introduced per app

  20. Human Error Dominates as Breached Records Soar 88% in 2017

    Gemalto study claims accidents led to 76% of compromised data

Why Not Watch?

  1. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  2. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  3. Modernizing GRC: From Checkbox to Strategic Advantage

  4. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

What’s Hot on Infosecurity Magazine?