Woodstock Wire: Enterprise Security News

June 19, 2019

Accenture Acquires Deja vu Security, Seattle-Based 'Security of Things' Company

Business Wire -- Accenture is announcing the acquisition of Deja vu Security.

June 19, 2019 05:52 PM

Ping Identity to Address Industry Disruption at Identiverse 2019

Business Wire -- Ping Identity, the leader in Identity Defined Security, today announced its participation at Identiverse, taking place June 25-28 in Washington,...

June 19, 2019 05:52 PM

CyberArk Marketplace Delivers Deepest Set of Privileged Access Security Solutions with New Community Contributions

Business Wire -- CyberArk (NASDAQ: CYBR), the global leader in privileged access security, today announced it is expanding the CyberArk Marketplace with new capabilities...

June 19, 2019 05:51 PM

Arctic Wolf Announces Arctic Wolf(tm) Managed Risk Solution

Business Wire -- Arctic Wolf Networks, a leading security operations center (SOC)-as-a-service company, today announced the Arctic Wolf(tm) Managed Risk solution...

June 19, 2019 05:49 PM

Power Outage Hits Millions in South America

Infosec -- Dark Reading - The outage, which is not (so far) seen as the result of a cyberattack, still had a significant impact on network and server availability.

June 19, 2019 05:26 PM

Cybersecurity professionals need to learn to expect the unexpected

Infosec -- Barracuda - Long before Monty Python turned the phrase "expect the unexpected" into a catchphrase during a skit about the Spanish Inquisition,...

June 19, 2019 05:26 PM

Making the Most of the NIST Cybersecurity Framework

Infosec -- Recorded Future - The NIST Cybersecurity Framework has become a valuable tool for evaluating security across a variety of business sectors. Originally...

June 19, 2019 05:25 PM

There's a lot more to patching security vulnerabilities than you might think

Infosec -- CyberScoop - Just because a technology company published a security update doesn't mean the flaw it's trying to fix is completely resolved.

A...

June 19, 2019 05:24 PM

New phishing campaign targets bank customers with WSH RAT

Infosec -- Security Affairs - Security researchers at Cofense have spotted a phishing campaign aimed at commercial banking customers distributing a new...

June 19, 2019 05:24 PM

Podcast: Johnny Xmas on Web Security & the Anatomy of a Hack

Enterprise -- InfoQ - On this podcast, Wes Reisz talks to John Xmas. Xmas works for Kasada, a company that offers a security platform to help ensure only your...

June 19, 2019 04:56 PM

Homeland Security has tested a working BlueKeep remote code execution exploit

Tech -- TechCrunch - Homeland Security's cyber agency says it has tested a working exploit for the BlueKeep vulnerability, capable of achieving remote...

June 19, 2019 03:47 PM

Google Calendar scam adds malicious links to your schedule

Tech -- Mashable - Scammers are phishing in a new pond.

As identified by Kapersky Labs in a report from Wired, bad actors are taking advantage of a...

June 19, 2019 03:45 PM

Forensics firm says it can break into any iPhone or high-end Android phone

Tech -- BGR - Apple makes it a point with every product announcement to stress security and privacy features. That exact thing happened just a few weeks...

June 19, 2019 03:43 PM

June 17, 2019

How To Build A High Performing Platform Payments Fraud Team

Media -- PYMNTS.com - In recent years, no type of business has expanded globally at the pace and scale of digital platforms. If there is a sine qua non...

June 17, 2019 04:09 PM

Presenting at the Gartner Security and Risk Management Summit DC 2019

Think -- Gartner Blog Network - This is literally a last minute blog post about my sessions at this year's Gartner Security and Risk Management Summit....

June 17, 2019 03:57 PM

DNS hijacking grabs headlines, but it's just the tip of the iceberg

Infosec -- CSO Online - Internet pioneer Dr. Paul Vixie wishes people would stop ignoring his advice and start taking security seriously. "I am complaining...

June 17, 2019 03:57 PM

Adding to the Toolkit - Some Useful Tools for Cloud Security

Infosec -- TripWire - The State of Security - With more business applications moving to the cloud, the ability to assess network behavior has changed from...

June 17, 2019 03:40 PM

Climbing the Vulnerability Management Mountain

Infosec -- TripWire - The State of Security - The purpose of this series of blogs is to guide you on your journey up the Vulnerability Management Mountain...

June 17, 2019 03:40 PM

Balancing data protection and research needs in the age of the GDPR

Life -- EurekAlert - Scientific journals and funding bodies often require researchers to deposit individual genetic data from studies in research repositories...

June 17, 2019 03:36 PM

New Echobot malware is a smorgasbord of vulnerabilities

Enterprise -- ZDNet News - Security researchers spot new Mirai variant called Echobot that targets a wide range of IoT devices and enterprise apps.

June 17, 2019 03:35 PM

Sitting at the Crossroads of Cybersecurity & Privacy

SupplyChain -- EBN Online - The combination of the headline worthy data breaches and new privacy legislation have put data protection and privacy on the top...

June 17, 2019 03:09 PM

New Echobot Botnet targets Oracle, VMware Apps and includes 26 Exploits

Infosec -- Security Affairs - Operators behind the Echobot botnet added new exploits to infect IoT devices, and also enterprise apps Oracle WebLogic and...

June 17, 2019 04:56 AM

Linux worm spreading via Exim servers hit Azure customers

Infosec -- Security Affairs - On Friday, security experts at Microsoft warned of a new Linux worm, spreading via Exim email servers, that already compromised...

June 17, 2019 04:56 AM

XSS flaw would have allowed hackers access to Google's network and impersonate its employees

Infosec -- Security Affairs - Bug hunter Thomas Orlita discovered an XSS vulnerability in Google's Invoice Submission Portal that would have allowed attackers...

June 17, 2019 04:56 AM

Crooks exploit exposed Docker APIs to build AESDDoS botnet

Infosec -- Security Affairs - Cybercriminals are attempting to exploit an API misconfiguration in Docker containers to infiltrate them and run the Linux...

June 17, 2019 04:56 AM

The Smallest Hacker Camps Are The Most Satisfying, And You Can Do One Too

EE -- Hackaday - Two of my friends and I crammed into a small and aged European hatchback, drove all day along hundreds of miles of motorway, and finally...

June 17, 2019 04:20 AM

Hackers behind the world's deadliest code are probing US power firms

Think -- MIT Technology Review - A group called Xenotime, which began by targeting oil and gas facilities in the Middle East, now has electrical utilities...

June 17, 2019 03:42 AM

Microsoft's Ann Johnson: 'Identity is the new perimeter'

Enterprise -- Silicon Republic - As corporate vice-president of Microsoft's cybersecurity solutions group, Ann Johnson oversees the go-to-market strategies...

June 17, 2019 03:12 AM

Portable Security Policies: A DevSecOps Primer

Enterprise -- DevOps.com - Protecting critical data and applications is a challenge under any circumstances, but it's especially daunting when resources reside...

June 17, 2019 03:10 AM

Mozilla addressed flaws in Thunderbird that allow code execution

Infosec -- Security Affairs - Mozilla released security updates for the Thunderbird email client that address vulnerabilities that could allow code execution...

June 17, 2019 02:41 AM

5 Tips for Improving Employee Security Awareness

Infosec -- Recorded Future - Ever heard the phrase, "everything old is new again?" That's kind of how it is with security awareness.

A few years ago, you...

June 17, 2019 02:15 AM

Building Modern Security Awareness with Experiences

Infosec -- Infosec Island - Experiences and events, the way that I define them, are segments of time in which a learner is more actively engaging in an...

June 17, 2019 02:14 AM

BlueKeep RDP Vulnerability a Ticking Time Bomb

Infosec -- Dark Reading - One month after Microsoft disclosed the flaw, nearly 1 million systems remain unpatched, and Internet scans looking for vulnerable...

June 17, 2019 02:13 AM

Yubico is replacing for free YubiKey FIPS devices due to security weakness

Infosec -- Security Affairs - Yubico is replacing YubiKey FIPS security keys due to a serious flaw that makes cryptographic operations easier to crack under...

June 17, 2019 02:13 AM

Millions of Exim mail servers are currently under attack

Infosec -- Security Affairs - Hackers are targeting millions of mail servers running vulnerable Exim mail transfer agent (MTA) versions, threat actors leverage...

June 17, 2019 02:12 AM

Remediant Discusses Unique Just-in-Time Approach to Privileged Access Management at Gartner Security & Risk Management Summit

Globe Newswire -- Remediant, Inc., a leading provider of Privileged Access Management (PAM) software, is a silver sponsor of the Gartner Security & Risk Management...

June 17, 2019 01:25 AM

SAIC Promotes Cybersecurity Careers for Veterans Through Its CyberWarrior Scholarship

Business Wire -- Science Applications International Corp. (NYSE: SAIC) is now accepting applications for its CyberWarrior(tm) Scholarship. In collaboration with...

June 17, 2019 12:58 AM

Use of DNS Firewalls Could Have Prevented More Than $10B in Data Breach Losses Over the Past 5 Years

Domains -- CircleID - New research from the Global Cyber Alliance (GCA) released on Wednesday reports that the use of freely available DNS firewalls could...

June 17, 2019 12:51 AM

The DevOps Security Stack

Enterprise -- DevOps.com - The whole idea behind DevOps is automation. DevOps automates the development process by eliminating or minimizing human error....

June 17, 2019 12:33 AM

WSL2 and Kali

Infosec -- Kali Linux - Kali Linux has had support for WSL for some time, but its usefulness has been somewhat limited. This was mostly due to restrictions...

June 17, 2019 12:23 AM

SQL Injection Attacks Represent Two-Third of All Web App Attacks

Infosec -- Dark Reading - When Local File Inclusion attacks are counted, nearly nine in 10 attacks are related to input validation failures, Akamai report...

June 17, 2019 12:21 AM

Protecting Project Galileo websites from HTTP attacks

Infosec -- Cloudflare - Yesterday, we celebrated the fifth anniversary of Project Galileo. More than 550 websites are part of this program, and they have...

June 17, 2019 12:20 AM

Apple iOS 13 will better protect user privacy, but more could be done

Infosec -- Malwarebytes Unpacked - Last week, Apple introduced several new privacy features to its latest mobile operating system, iOS 13. The Internet,...

June 17, 2019 12:15 AM

June 16, 2019

May 2019's Most Wanted Malware: Patch Now to Avoid the BlueKeep Blues

Globe Newswire -- Technology - Check Point's researchers confirm multiple scanning attempts globally to locate systems vulnerable to the BlueKeep RDP flaw, which...

June 16, 2019 06:14 PM

Threat Stack and JASK Partner to Reduce Time to Respond to Security Incidents Across Entire Customer Security Infrastructure

Business Wire -- Threat Stack, the leader in cloud security and compliance for infrastructure and applications, and JASK, the provider of the industry's...

June 16, 2019 06:06 AM

CyberArk Named a Leader in 2019 Fortress Cyber Security Awards

Business Wire -- CyberArk (NASDAQ: CYBR) was named a 2019 Fortress Cyber Security Awards winner in the Leadership category.

June 16, 2019 06:04 AM

Ransomware halts production for days at major airplane parts manufacturer

Enterprise -- ZDNet News - Nearly 1,000 employees sent home for the entire week, on paid leave.

June 16, 2019 05:24 AM

Two hacking groups responsible for huge spike in hacked Magento 2.x stores

Enterprise -- ZDNet News - Number of hacked Magento 2.x stores doubles for the third month in a row.

June 16, 2019 04:56 AM

Secure Cloud Access: Why We Choose Palo Alto Networks

Enterprise -- Palo Alto Networks Blog - Low TCO. Faster Time to Resolution. Immediate Security Value. Check!



Apttus was born in the cloud. We provide AI-driven...

June 16, 2019 04:56 AM