Infosecurity News

  1. Microsoft Debuts Bug Bounty for Spectre/Meltdown-Style Flaws

    Microsoft has launched the limited-time bounty, while Intel launches a “virtual fences” hardware redesign.

  2. Dragonfly Compromises Core Router to Attack Critical Infrastructure

    A core Cisco router relied on by one of Vietnam’s largest oil rig manufacturers was the jumping-off point for attacks on UK energy companies.

  3. Firefox Bug Goes Unfixed for Nine Years

    Software developer discovers flaw in Firefox and Thunderbird’s password manager

  4. Cambridge Analytica Under Fire for Data Harvesting

    Data analytics firm accused of harvesting millions of Facebook profiles of US voters

  5. Researchers Discover Security Issue on Chrome RDP

    Bug discovered that allows a guest user full access to an administer’s machine using Chrome Remote Desktop

  6. GandCrab Ransomware Finds a New Shell

    This well-known malware has gotten around a free decryption tool meant to dull its claws by building a new version in just days.

  7. Walmart Jewelry Partner Exposes Millions in Latest Cloud Storage Misconfig

    MBM/Limogés Jewelry exposed data that can be used to carry out targeted fraud or phishing attempts.

  8. DHS, FBI Warn on Russian State Actors Targeting Critical Infrastructure

    The US is warning that Russian state-sponsored cyber-attackers are targeting critical infrastructure – including nuclear sites.

  9. Cybercrime Profits: Up to $200Bn Laundered Each Year

    Cybercriminals turning to virtual currencies, video game currency and digital payment systems like PayPal to convert illegal revenue into clean cash

  10. Vulnerability Discovered in MikroTik RouterOS

    Software sold across the globe found to have vulnerability by security researchers

  11. Sofacy Targets Government Agency with New Spear-Phishing Campaign

    Espionage group with ties to Russia targets European government organization with updated phishing techniques

  12. US Treasury Department Sanctions Russians Over NotPetya, Election Meddling

    The NotPetya campaign, it noted, was the “most destructive and costly cyber-attack in history."

  13. WhatsApp Agrees to Stop Sharing User Data with Facebook

    After a ban from the ICO, WhatsApp will no longer share personal data until the GDPR rules can be met.

  14. Minority Cyber-Pros Are Better Educated but Paid Less

    Minority representation is higher than in the broader workforce, but these pros are disproportionately found in non-management roles.

  15. Cybersecurity Incident Response Still Major Issue

    Half of incident response plans are either informal, ad-hoc or completely non-existent

  16. Rush to the Cloud Risks Security Breaches

    Companies across Europe feel the pressure to move to the cloud, but neglect cybersecurity

  17. Google Moves to Ban Ads for Bitcoin, Cryptocurrency

    The ban follows a similar no-quarter approach taken by Facebook earlier this year.

  18. Playboy Develops Virtual Currency Wallet

    Online visitors will be able to pay and earn tokens to view Playboy.TV’s original content.

  19. BlackTDS Emerges as an As-a-Service Drive-By Kit for Malware Distribution

    BlackTDS hosts components for sophisticated drive-by attacks, like social engineering and redirection to exploit kits.

  20. Euro Firms Lagging on AWS CloudTrail Adoption

    Missed opportunity to use native security and compliance tools, says Sumo Logic

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. Audit & Compliance in the Era of AI and Emerging Technology

  3. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

  4. Securing M365 Data and Identity Systems Against Modern Adversaries

What’s Hot on Infosecurity Magazine?