Woodstock Wire: Enterprise Security News

May 28, 2020

As use of cloud collaboration tools surge, so do attacks

Enterprise -- TechCentral.ie - The COVID-19 pandemic has pushed companies to adapt to new government-mandated restrictions on workforce movement around the...

May 28, 2020 12:50 AM

Azure Firewall May 2020 updates

Enterprise -- Azure Updates - Two new key features are now available in Azure Firewall-forced tunneling and SQL FQDN filtering. Additionally, we're increasing...

May 28, 2020 12:44 AM

Are speed and security mutually exclusive?

Enterprise -- Puppet - IT executives consistently identify cybersecurity and speed among their top priorities. But is it possible to move both faster and more...

May 28, 2020 12:38 AM

May 27, 2020

Akamai's new AI-based Page Integrity Manager takes on malicious site scripts

Enterprise -- SiliconANGLE - The sharp rise in the number of people shopping online has increased the risk posed by web skimming campaigns, cyberattacks that...

May 27, 2020 11:41 PM

Websites Conducting Port Scans

Infosec -- Schneier on Security - Security researcher Charlie Belmer is reporting that commercial websites such as eBay are conducting port scans of their...

May 27, 2020 08:28 PM

How to use Microsoft Sysmon, Azure Sentinel to log security events

Infosec -- CSO Online - Logging is the key to knowing how the attackers came in and how they got you. As applications move to the cloud, you need to enable...

May 27, 2020 08:28 PM

The MITRE ATT&CK Framework: Exfiltration

Infosec -- TripWire - The State of Security - Once an attacker has established access and pivoted around to the point of gathering the necessary data, they...

May 27, 2020 08:27 PM

Docker Desktop danger discovered, patch now

Infosec -- Naked Security - Docker has fixed a vulnerability that could have allowed an attacker to gain control of a Windows system using its service.

May 27, 2020 08:22 PM

Hackers are stepping up attacks on healthcare facilities and researchers

Tech -- Digital Trends - There's been an almost 50% increase in breaches from 2019

May 27, 2020 07:18 PM

May 26, 2020

Trend Micro Research Finds Trust Lacking Within the Cybercriminal Underground

Business Wire -- Trend Micro has released new data on cybercriminal operations and patterns for buying and selling goods and services in the underground.

May 26, 2020 09:22 PM

How to better protect sensitive data in IoT medical devices

Aspencore -- IoT Times - For an online webinar, Renesas Electronics has put together a 25-minute clip that goes over the proliferation of IoT-based medical...

May 26, 2020 06:15 PM

Managing vendor and supply chain risk in a recession

Infosec -- CSO Online - A 2018 Ponemon report found that companies share confidential and sensitive information with 583 third parties on average. Only...

May 26, 2020 04:26 PM

Number of cybersecurity pros should increase in the months ahead

Infosec -- Barracuda - As unemployment around the globe continues to climb, the number of people looking to enter the cybersecurity profession in the weeks...

May 26, 2020 04:26 PM

Two years later, has GDPR fulfilled its promise?

Infosec -- WeLiveSecurity - Has the landmark law helped build a culture of privacy in organizations and have consumers become more wary of sharing their...

May 26, 2020 04:25 PM

How to Protect the Future of IT

Infosec -- TripWire - The State of Security - Working remotely, either from home or from elsewhere, isn't something new. It has been used by many companies...

May 26, 2020 04:25 PM

Samsung's new mobile security chip protects booting process and crypto transactions

Media -- The Next Web - Samsung introduced its second-gen security chip (S3FV9RR) for smartphones today. The chip, akin to Apple's T2 and Google's Titan...

May 26, 2020 02:49 PM

ThreatList: People Know Reusing Passwords Is Dumb, But Still Do It

Infosec -- Threatpost - Even seeing data breaches in the news, more than half of consumers are still reusing passwords.

May 26, 2020 12:07 AM

May 25, 2020

Hackers release a new jailbreak that unlocks every iPhone

Tech -- TechCrunch - A renowned iPhone hacking team has released a new "jailbreak" tool that unlocks every iPhone, even the most recent models running...

May 25, 2020 05:54 AM

5 Tips for Fighting Credential Stuffing Attacks

Infosec -- Dark Reading - With stolen credentials an easy find online, what are some measures to put in place to keep hackers from breaking into secure...

May 25, 2020 05:01 AM

Dark Reading Edge Cybersecurity Crossword Puzzle, May 22th

Infosec -- Dark Reading - Have a hard time coming up with the answers to these puzzle questions? We know a great place to look for more clues...

May 25, 2020 05:00 AM

Experts found a Privilege escalation issue in Docker Desktop for Windows

Infosec -- Security Affairs - A severe privilege escalation vulnerability, tracked as CVE-2020-11492, has been addressed in the Windows Docker Desktop Service....

May 25, 2020 04:56 AM

Releasing Cloudflare Access' most requested feature

Infosec -- Cloudflare - Cloudflare Access, part of Cloudflare for Teams, replaces legacy corporate VPNs with Cloudflare's global network. Instead of starting...

May 25, 2020 04:55 AM

Kubernetes deployments: 6 security best practices

Enterprise -- The Enterprisers Project - Experts share tips on improving the overall security of your software development and deployments - at the same time...

May 25, 2020 03:57 AM

Sophos blocked attacks exploiting XG Firewall zero-day to deploy Ransomware

Infosec -- Security Affairs - Hackers attempted to exploit a zero-day flaw in the Sophos XG firewall to distribute ransomware to Windows machines, but the...

May 25, 2020 03:19 AM

50 Best Integration Testing Tools

Infosec -- Threat Stack - Testing the applications you create is a necessary part of writing code. Finding the right tools to perform different testing...

May 25, 2020 03:18 AM

Reporting Cyber Threats: Executives at Risk

Infosec -- The PhishLabs Blog - Across the cybersecurity industry, white papers and reports typically highlight high-level trends related to cyber threats....

May 25, 2020 03:17 AM

Database Breaches Remain the Top Cyber Threat for Organizations

Infosec -- Recorded Future - With the number of affected victims growing every...

May 25, 2020 03:16 AM

Supreme Court Phish Targets Office 365 Credentials

Infosec -- Threatpost - Cybercriminals are hunting out victims' Office 365 credentials -- by dishing out Supreme court "summons" in a phishing attack.

May 25, 2020 03:15 AM

Edgile Recognized as Security System Integrator of the Year at Inaugural Microsoft Security 20/20 Partner Awards

Business Wire -- Edgile, a trusted cyber risk and regulatory compliance partner to the Fortune 500, has been named as a Microsoft Security 20/20 Partner Award...

May 25, 2020 02:16 AM

Very Good Security Named Select Technology Partner in the Amazon Web Services Partner Network

Business Wire -- Very Good Security (VGS), a leader in modern data security and custodianship, announced today it achieved Select Technology Partner status within...

May 25, 2020 02:08 AM

Ping Identity to Participate in Upcoming Virtual Investor Conferences

Business Wire -- Ping Identity Holding Corp. (NYSE: PING) ("Ping Identity"), the Intelligent Identity solution for the enterprise, today announced that it will...

May 25, 2020 01:57 AM

May 24, 2020

VMware fixes CVE-2020-3956 Remote Code Execution issue in Cloud Director

Infosec -- Security Affairs - VMware has addressed a high-severity remote code execution vulnerability, tracked as CVE-2020-3956, that affects its Cloud...

May 24, 2020 11:16 PM

Microsoft Warns of Vulnerability Affecting Windows DNS Server

Infosec -- Dark Reading - A new security advisory addresses a vulnerability that could be exploited to cause a denial-of-service attack.

May 24, 2020 11:13 PM

Prioritize Vulnerabilities With Unprecedented Intelligence for Free

Infosec -- Recorded Future - How do you describe vulnerability management in your organization? If terms like "rat race" or "hamster wheel" come to mind,...

May 24, 2020 11:13 PM

New DNS Vulnerability Lets Attackers Launch Large-Scale DDoS Attacks

Infosec -- The Hacker News - Israeli cybersecurity researchers have disclosed details about a new flaw impacting DNS protocol that can be exploited to launch...

May 24, 2020 11:12 PM

Google launches Enhanced Safe Browsing to combat fleet-footed phishing sites

Infosec -- The Daily Swig - Real-time URL checks designed to block phishing sites that dodged previous measures

May 24, 2020 11:11 PM

4 tips for a successful cyber threat intelligence program

Infosec -- CSO Online - I heard some alarming new statistics from IBM security this month during IBM Think. With COVID-19 as a backdrop, cyber-attacks...

May 24, 2020 11:11 PM

How to protect Office 365 from coronavirus-themed threats

Infosec -- CSO Online - The National Cyber Awareness System, part of the US Cybersecurity and Infrastructure Security Agency (CISA), recently released an...

May 24, 2020 11:11 PM

Winning with Cyber Threat Intelligence: Taking a More Personal View

Infosec -- TripWire - The State of Security - In this final article of our trilogy, we investigate how a cyber threat intelligence (CTI) analyst and associated...

May 24, 2020 11:10 PM

Secure On-Premises Solutions with Okta: Secret Features + a Preview

Infosec -- Okta Blog - At Okta, we live to securely connect every organization to any technology. And that includes on-premises solutions. To secure these...

May 24, 2020 11:10 PM

Varonis Announces New Platform Update Featuring Remote Work Cybersecurity Capabilities

Globe Newswire -- Technology - Updates to the Varonis Data Security Platform help enterprises better secure their remote workforces with greater visibility and...

May 24, 2020 09:50 PM

Announcing Amazon Web Services Security Epics Automated - A Joint Offering from AWS ProServe Security and Infrastructure and ThreatModeler(tm)

Globe Newswire -- Technology - Enable a Self-Service Model to Design, Build and Manage Cloud Security Enable a Self-Service Model to Design, Build and Manage Cloud...

May 24, 2020 09:50 PM

Code42 Releases New Risk Indicators That Cut Through Alert Noise and Speed Insider Threat Investigations

Business Wire -- Code42 releases new risk indicators that cut through alert noise and speed insider threat investigations.

May 24, 2020 09:44 PM

Open Systems Augments its Cybersecurity Capabilities With Acquisition of Leading Microsoft Azure Sentinel Expert

Business Wire -- Open Systems Augments its Cybersecurity Capabilities With Acquisition of Leading Microsoft Azure Sentinel Expert

May 24, 2020 09:43 PM

FireEye Endpoint Security: Introducing Innovation Architecture for Rapid Deployment of Advanced Capabilities

Business Wire -- FireEye announces a new modular agent approach to Endpoint Security, enabling organizations to respond to security incidents more quickly.

May 24, 2020 09:42 PM

ERI's John Shegerian Discusses COVID-19's Effects on Cybersecurity for FCPA Compliance Report

Business Wire -- ERI's John Shegerian is featured on the latest episode of the FCPA Compliance Report podcast, discussing COVID-19's effects on cybersecurity.

May 24, 2020 09:41 PM

Researchers used AI to crack Microsoft Outlook's CAPTCHA

Media -- The Next Web - Not only are they super annoying, but it turns out text-based CAPTCHAs are also potentially a security risk. Researchers from...

May 24, 2020 09:39 PM

How Human-like Bots perform online fraud

Media -- ELE Times - 2019 saw login pages as prime targets for fraudsters across different verticals. They are using bad bots to carry out two types...

May 24, 2020 09:34 PM

5 Ways to Detect Application Security Vulnerabilities Sooner to Reduce Costs and Risk

Enterprise -- DevOps.com - Security testing has always been an important step in the application development process. Yet, traditional measures often occur...

May 24, 2020 06:23 PM