Woodstock Wire: Enterprise Security News

October 16, 2018

How Cybercriminals are Targeting free Wi-Fi Users?

Infosec -- Security Affairs - Free Wi-Fi is convenient, but it is also unsafe and puts users at great risk. Here's how the cybercriminals attack user on...

October 16, 2018 05:39 PM

Most Cybersecurity Professionals Want to Quit but Often Don't

Infosec -- Barracuda - One could assume that given the chronic shortage of cybersecurity professionals that organizations large and small face there would...

October 16, 2018 05:34 PM

Zeek: A free, powerful way to monitor networks, detect threats

Infosec -- CSO Online - It's common in many organizations for network and security operations to exist in silos. This may have been OK a couple of decades...

October 16, 2018 05:33 PM

When it comes to cyber security, it's always busy season

Enterprise -- IT World Canada - By Cheryl McGrath Vice President and Country General Manager - Canada Optiv Security Where has the year gone? The temperature...

October 16, 2018 05:07 PM

Symantec broadens market for their cloud security services with Cyber Defense Platform enhancements

Enterprise -- ChannelBuzz.ca - The net new additions are a new Managed Cloud Defense monitoring and response service, and a new Managed Cloud Defense service...

October 16, 2018 04:58 PM

IoT security: Follow these rules to protect your users from hackers, gadget makers told

Enterprise -- ZDNet News - New guidelines for IoT makers have been published. But will device manufacturers pay attention?

October 16, 2018 04:51 PM

Enterprise IoT security sucks so much, it's made Intel and Arm work together to tackle it

Enterprise -- The Register - Chip rivals lock lips to make customers happy

Intel on Monday joined hands with Arm, its occasional rival, in an attempt to make...

October 16, 2018 04:49 PM

CIA, NSA and the Pentagon still aren't using a basic email security feature

Tech -- TechCrunch - Some of the most sensitive U.S. government departments and agencies still aren't using a basic email security feature that would...

October 16, 2018 04:47 PM

Palo Alto Networks Appoints Amit K. Singh as President

PR Newswire -- Palo Alto Networks (NYSE: PANW), the global cybersecurity leader, today announced that its board of directors has named Amit K. Singh as president,...

October 16, 2018 03:25 PM

Rapid7 Acquires Leading Web Application Security Provider, tCell

Globe Newswire -- Rapid7, Inc. (NASDAQ: RPD), powering SecOps through its visibility, analytics and automation cloud, today announced it acquired tCell.io, Inc.,...

October 16, 2018 03:11 PM

Estimated 35 Million Voter Records From 19 States For Sale on Popular Hacking Forum

Globe Newswire -- Technology - Research from Anomali and Intel 471 Indicates Records are Updated Weekly

October 16, 2018 03:11 PM

October 15, 2018

Staying secure in the smart era: Three rules for cyber security

Media -- eeNews Europe - Almost half of manufacturers have fallen victim to cybercrime, according to the Cyber Security Manufacturing Report 2018,...

October 15, 2018 03:59 PM

Workplace violence: the forgotten insider threat

Infosec -- Malwarebytes Unpacked - Organizations are no stranger to insider threats. In fact, for those who have been around long before the Internet, workplace...

October 15, 2018 03:53 PM

Branch.io Flaws may have affected as many as 685 million individuals

Infosec -- Security Affairs - More than 685 million users may have been exposed to XSS attacks due to a flaw in Branch.io service used by Tinder, Shopify,...

October 15, 2018 03:52 PM

Kali Linux for Vagrant: Hands-on

Enterprise -- ZDNet Blogs - The developers at Kali Linux have released a Vagrant distribution of their latest version. Here is a look at that release - and...

October 15, 2018 03:48 PM

Securing REST APIs With Client Certificates

Enterprise -- Architects Zone - This post is about an example of securing a REST API with a client certificate (a.k.a. X.509 certificate authentication).


October 15, 2018 03:47 PM

Verisign Presents DDoS Trends Report of Q2 2018

PR Newswire -- Observes a 35% increase in the number of attacks compared to Q1 2018 Verisign Distributed Denial of Service Trends, observed attack trends...

October 15, 2018 02:44 PM

Global payment companies test their data security readiness

Web Marketing -- Digital Commerce 360 - Global payment companies held their first joint cybersecurity war games to test their systems' readiness for...

October 15, 2018 04:40 AM

Elevating user trust in our API ecosystem

Web Marketing -- Google Developers - Google API platforms have a long history of enabling a vibrant and secure third-party...

October 15, 2018 04:17 AM

The Trouble With Cybersecurity Management

Think -- MIT Sloan Management Review - Cybersecurity is becoming top of mind for customers and organizations, as highly publicized data breaches and...

October 15, 2018 04:03 AM

Microsoft fixed the Zero-Day for JET flaw, but the fix is incomplete

Infosec -- Security Affairs - Experts from 0Patch revealed that the Microsoft Zero-Day Patch for JET Database Engine vulnerability (CVE-2018-8423) is incomplete.


October 15, 2018 04:01 AM

Supply Chain Security 101: An Expert's View

Infosec -- Krebs on Security - Earlier this month I spoke at a cybersecurity conference in Albany, N.Y. alongside Tony Sager, senior vice president and...

October 15, 2018 04:00 AM

6 ways to keep up with cybersecurity without going crazy

Infosec -- Malwarebytes Unpacked - As we dive headfirst into National Cybersecurity Awareness Month, it seems only fitting to discuss ways to stay on top...

October 15, 2018 03:58 AM

Five Eyes Intelligence agencies warn of popular hacking tools

Infosec -- Security Affairs - Security agencies belonging to Five Eyes (United States, United Kingdom, Canada, Australia and New Zealand) have released...

October 15, 2018 03:58 AM

Clarifying the Misconceptions: Monitoring and Auditing for Container Security

Infosec -- TripWire - The State of Security - An effective container security strategy consists of many parts. Organizations should first secure the build...

October 15, 2018 03:55 AM

Most Malware Arrives Via Email

Infosec -- Dark Reading - Watch out for messages with the word "invoice" in the subject line, too.

October 15, 2018 03:55 AM

Juniper Networks provides dozens of fix for vulnerabilities in Junos OS

Infosec -- Security Affairs - Juniper Networks has released security updates to address serious vulnerabilities affecting the Junos operating system.


October 15, 2018 03:53 AM

Calif. Law Takes Aim at Weak IoT Passwords

Infosec -- Threatpost - Concerns over data privacy and security push California to roll out the first legislation on connected devices.

October 15, 2018 03:52 AM

15 Years of Cybersecurity Awareness Month

Infosec -- The PhishLabs Blog - Each year in the month of October there are more things to be cognizant of than ghosts and ghouls, in fact something far...

October 15, 2018 03:51 AM

How Can Businesses Protect against Phishing Attacks on Employee Smartphones?

Infosec -- Infosec Island - Smartphones have become synonymous with everyday business operations, enabling employees to store important contact details,...

October 15, 2018 03:49 AM

A Tool to Strengthen Your Password Manager

Infosec -- Okta Blog - Password managers, such as Okta's SWA plugin can defend against phishing attacks. However, to prevent the compromise of passwords,...

October 15, 2018 03:48 AM

What is enterprise risk management? How to put cybersecurity threats into a business context

Infosec -- CSO Online - Enterprise risk management (ERM) is the process of assessing risks to identify both threats to a company's financial well-being...

October 15, 2018 03:48 AM

New Gallmaker APT group eschews malware in cyber espionage campaigns

Infosec -- Security Affairs - A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military...

October 15, 2018 03:48 AM

Meet 5 Women Shaping Microsoft's Security Strategy

Infosec -- Dark Reading - Profiles of some of the women currently leading Microsoft security operations - and their efforts to drive inclusivity.

October 15, 2018 03:47 AM

Bloomberg blunder highlights supply chain risks

Infosec -- Malwarebytes Unpacked - Ooh boy! Talk about a back-and-forth, he said, she said story!

No, we're not talking about that Supreme Court nomination....

October 15, 2018 03:47 AM

Proactive System Hardening: Continuous Hardening's Coming of Age

Infosec -- TripWire - The State of Security - The first article in this series examined configuration hardening-essentially looking at ports, processes...

October 15, 2018 03:44 AM

Security Vulnerabilities in US Weapons Systems

Infosec -- Schneier on Security - The US Government Accounting Office just published a new report: "Weapons Systems Cyber Security: DOD Just Beginning to...

October 15, 2018 03:40 AM

Researchers presented an improved version of the WPA KRACK attack

Infosec -- Security Affairs - Security researchers who devised last year the Key Reinstallation Attack, aka KRACK attack, have disclosed new variants of...

October 15, 2018 03:36 AM

Microsoft October Patch Tuesday Fixes 12 Critical Vulnerabilities

Infosec -- The Hacker News - Microsoft has just released its latest monthly Patch Tuesday updates for October 2018, fixing a total of 49 security vulnerabilities...

October 15, 2018 03:35 AM

When Endpoint Detection and Response (EDR) is not enough

Infosec -- Malwarebytes Unpacked - As cybercriminals continue to validate the reality that no prevention-based security control is going to stop every threat...

October 15, 2018 03:35 AM

Announcing Kali for Vagrant

Infosec -- Kali Linux - Inspired by a recent community blog post, we have decided to add a new official way for our community to use Kali. Starting now,...

October 15, 2018 03:19 AM

What is IAM? Identity and access management explained

Infosec -- CSO Online - IAM definition

Identity and access management (IAM) in enterprise IT is about defining and managing the roles and access privileges...

October 15, 2018 03:18 AM

Project Strobe, what will change after the Google security breach?

Infosec -- Security Affairs - Google announced a security breach that may have exposed data of over 500,000 users of its Google+ social network, these are...

October 15, 2018 03:17 AM

NIST and the Small Business: Addressing Cyber Insecurity

Infosec -- Infosec Island - In August, President Trump signed the NIST Small Business Cybersecurity Act, directing NIST to develop a streamlined version...

October 15, 2018 03:15 AM

Over 4.5 Billion Records Breached in H1 2018, Finds Report

Infosec -- TripWire - The State of Security - A recent report found that data breaches compromised a total of more than 4.5 billion records in the first...

October 15, 2018 03:13 AM

The Battle Between Build vs. Buy

Infosec -- Okta Blog - Every development team must decide which components to build in-house and which to offload to a 3rd party vendor. This decision...

October 15, 2018 03:08 AM

Tripwire For DevOps External Registry And Alert Capability

Infosec -- TripWire - The State of Security - Although many organizations are shifting security to the left and embracing the integration of security tools...

October 15, 2018 03:08 AM

Threat Intelligence by the Book

Infosec -- Recorded Future - The Recorded Future team is proud to have recently published its first book, "The Threat Intelligence Handbook - A Practical...

October 15, 2018 03:06 AM

Survey: How does your company handle cyberwarfare and cybersecurity?

Enterprise -- ZDNet News - Take this short, multiple choice survey and tell us about your company's cyberwarfare experience and cybersecurity strategies for...

October 15, 2018 02:22 AM