Woodstock Wire: Enterprise Security News

December 12, 2019

Dutch crypto payment fraudsters could face 6 years in prison under new bill

Media -- The Next Web - Law makers in the Netherlands could be increasing the maximum prison sentence for those committing payment fraud with cryptocurrency...

December 12, 2019 04:19 AM

December 11, 2019

Are US Companies Ready for California's New IoT Security Law?

Web Marketing -- CMS Wire - While most people in the technology space have taken note of the upcoming introduction of the California Consumer Privacy Act (CCPA),...

December 11, 2019 07:47 PM

More than 460,000 payment card details offered for sale on a black market

Infosec -- Security Affairs - More than 455,000 Turkish payment card details are available for sale on a popular forum

December 11, 2019 07:20 PM

Adobe Patch Tuesday addresses critical flaws in four products

Infosec -- Security Affairs - Adobe released the Patch Tuesday security updates for December 2019 that address flaws in Acrobat and Reader, Photoshop CC,...

December 11, 2019 07:19 PM

CISO Magazine Honors KrebsOnSecurity

Infosec -- Krebs on Security - CISO Magazine, a publication dedicated to covering issues near and dear to corporate chief information security officers...

December 11, 2019 07:18 PM

Download: The 2020 Cybersecurity Salary Survey Results

Infosec -- Threatpost - Today you can access the aggregated and analyzed 2020 Cybersecurity Salary Survey Results and gain insight into the main ranges...

December 11, 2019 07:13 PM

Deliver a Deadly Counterpunch to Ransomware Attacks: 4 Steps

Infosec -- Dark Reading - You can't prevent all ransomware attacks. However, it's possible to ensure that if a breach happens, it doesn't spread, affect...

December 11, 2019 07:13 PM

SentinelOne Launches SentinelLabs Research Division to Power New Threat Intelligence Platform

Business Wire -- SentinelOne, the autonomous endpoint protection company, today announced the launch of SentinelLabs, a research division designed to identify...

December 11, 2019 07:12 PM

FireEye Delivers Proactive OT Environment Protection with New Cyber Physical Threat Intelligence Subscription

Business Wire -- FireEye Cyber Physical Threat Intelligence is a new subscription that addresses the security of systems connecting the virtual and physical worlds.

December 11, 2019 07:11 PM

Accidental Data Breaches Are on the Rise, Corporate Email Is a Leading Cause

Business Wire -- Egress shares the results of a comprehensive survey on the "Current Status of Data Privacy Compliance."

December 11, 2019 07:02 PM

Chrome will now warn you if your password's been stolen as soon as you type it in

Tech -- Mashable - Unless you're a super conscientious internet user with password managers and two-factor authentication out the wazoo, it's highly...

December 11, 2019 06:45 PM

It's not just you. Everyone is bad at password management, study reveals

Tech -- Digital Trends - Cybersecurity provider Hypr released a new study on the current state of passwords and how people manage them. The biggest takeaway?...

December 11, 2019 06:19 PM

Chrome now warns you when your password has been stolen

Tech -- The Verge - Google is rolling out Chrome version 79 today, and it includes a number of password protection...

December 11, 2019 05:40 PM

These popular security and shopping extensions aren't as safe as you might think

Tech -- Chrome Unboxed - Browser extensions can be awesome tools to enhance productivity, security and even online shopping but the unfortunate reality...

December 11, 2019 05:38 PM

ForgeRockĀ UnveilsĀ a New Offering to Create a Smarter Identity Management and Governance Solution

Globe Newswire -- Technology - ForgeRock and Accenture collaborate to improve Identity Management and Governance using Artificial Intelligence and Machine Learning...

December 11, 2019 05:26 PM

December 10, 2019

Seven cybersecurity tips for 2020

Cisco -- Security experts share their predictions, warnings, and best practices for the coming year. More RSS Feed: newsroom.cisco.com/rss-feeds ...

December 10, 2019 08:22 PM

RSA(r) and Yubico Partner to Address Growing Digital Risks of the Modern Workforce with Enterprise-Grade FIDO Authentication Solution

Business Wire -- New YubiKey for RSA to deliver secure and convenient authentication and identity assurance for diverse user populations

December 10, 2019 08:00 PM

Don't Wait for Microsoft to Reset Your Account's Password

Life -- Lifehacker - Microsoft's decision to reset the passwords of 44 million accounts, is actually a good thing. If your account is affected, thank...

December 10, 2019 07:35 PM

Credential-Stuffing Attacks a Universal Key for Threat Actors

Infosec -- Flashpoint - There's hardly an industry immune to credential-stuffing attacks, a threat actor tactic that has a potentially...

December 10, 2019 07:27 PM

Traveling the Globe With Threat Intelligence

Infosec -- Recorded Future - Booking.com is one of the leading travel booking sites in the world, facilitating over one and a half million room nights via...

December 10, 2019 07:26 PM

Yubico Launches Enhanced Authenticator App Suite for Secure Authentication on iOS, Android and Desktop

Business Wire -- Yubico, the leading provider of hardware authentication security keys, today launched the latest version (v1.1) of its Yubico Authenticator...

December 10, 2019 07:23 PM

Over 750,000 applications for US birth certificate copies exposed online

Tech -- TechCrunch - An online company that allows users to obtain a copy of their birth and death certificates from U.S. state governments has exposed...

December 10, 2019 07:11 PM

The Fraud That 85 Percent Of Fraud Detection Systems Miss

Media -- PYMNTS.com - The battle against fraudsters in the digital era has evolved into a never-ending arms race. The tools we use to detect, score and...

December 10, 2019 06:09 PM

December 09, 2019

2020 is when cybersecurity gets even weirder, so get ready

Enterprise -- ZDNet News - AI-powered deepfakes, ransomware, IoT, and 5G all mean that protecting your data is about to get a lot harder.

December 09, 2019 06:13 PM

New: From the Core to the Edge: 7 Reasons You Need Security at the Edge

Infosec -- Dark Reading - No longer can you secure the perimeter and trust that nothing will get in or out.

December 09, 2019 06:03 PM

China 3-5-2 directive orders state offices to remove foreign hardware and software

Infosec -- Security Affairs - 3-5-2 Directive - The Chinese government s to replace foreign hardware and software with its national technology within the...

December 09, 2019 05:21 PM

Google fixes a critical DoS flaw tracked as CVE-2019-2232 in Android

Infosec -- Security Affairs - Google addressed a critical vulnerability, tracked as CVE-2019-2232, that could trigger a permanent denial of service (DoS)...

December 09, 2019 05:20 PM

Moving to the Cloud: Motivations Behind the Migration

Infosec -- TripWire - The State of Security - Consider how many times a day you check your mobile phone, smartwatch, smart TV, and/or other connected devices....

December 09, 2019 05:19 PM

SANS Announces 13th Holiday Hack Challenge and 2nd KringleCon infosec conference

Enterprise -- The Register - Sign up, tune in, expand your knowledge, and compete in hacking contests

Promo On December 9, SANS will launch its second annual...

December 09, 2019 03:25 AM

Okta One-Minute Case Study: Priceline

Infosec -- Okta Blog - As you plan your travels home for the holidays, it's apps like Priceline that help you get there. Recently they needed to make a...

December 09, 2019 03:11 AM

VMware addresses ESXi issue disclosed at the Tianfu Cup hacking competition

Infosec -- Security Affairs - VMware has addressed a critical remote code execution vulnerability in ESXi that was disclosed recently at the Tianfu Cup...

December 09, 2019 03:10 AM

Report: Organizations remain vulnerable to increasing insider threats

Infosec -- Malwarebytes Unpacked - The latest data breach at Capital One is a noteworthy incident not because it affected over 100 million customer records,...

December 09, 2019 03:09 AM

8 common pen testing mistakes and how to avoid them

Infosec -- CSO Online - One of the most effective ways to uncover flaws and weaknesses in your security posture is to have a third party carry out planned...

December 09, 2019 03:09 AM

CVE-2019-14899 flaw allows hijacking VPN connections on Linux, Unix systems

Infosec -- Security Affairs - Researchers discovered a vulnerability tracked as CVE-2019-14899 that can be exploited to hijack active TCP connections in...

December 09, 2019 03:09 AM

Chris Carter From FireEye Honored as Security Channel Chief of the Year

Business Wire -- Chris Carter from FireEye wins Security Channel Chief of the Year at the Channel Partner Insight Innovation Awards 2019.

December 09, 2019 03:08 AM

December 08, 2019

44 million Microsoft users reused passwords in the first three months of 2019

Enterprise -- ZDNet News - Microsoft used a database of three billion publicly leaked credentials to identify users who reused passwords.

December 08, 2019 10:30 PM

Why do I need Cyber Security Awareness Training for my employees?

Infosec -- FraudWatch Intl - Recent research shows that human error is responsible for more than 90% of data breaches. 90%. Let that sink in for a minute....

December 08, 2019 08:15 AM

Unique Countermeasures in Active Phishing Campaign Avoids Security Tools

Infosec -- The PhishLabs Blog - PhishLabs' Email Incident Response analysts recently identified a phishing campaign leveraging novel tactics in the ongoing...

December 08, 2019 08:14 AM

Microsoft Defender ATP Brings EDR Capabilities to macOS

Infosec -- Dark Reading - Mac computers will now have the option to use Microsoft Defender Advanced Threat Protection's endpoint and detection response.

December 08, 2019 08:13 AM

The Human Factor: 5 Reasons Why Cybersecurity Is a People Problem

Infosec -- Dark Reading - The industry can only go so far in treating security as a challenge that can be resolved only by engineering.

December 08, 2019 08:12 AM

Severe Auth Bypass and Priv-Esc Vulnerabilities Disclosed in OpenBSD

Infosec -- The Hacker News - OpenBSD, an open-source operating system built with security in mind, has been found vulnerable to four new high-severity security...

December 08, 2019 08:11 AM

The evolutions of APT28 attacks

Infosec -- Security Affairs - Analyzing how tactics, techniques and procedures of the Russia-linked APT28 cyberespionage group evolve over the time.

December 08, 2019 08:11 AM

Retailers, prepare wisely: DDoS remains a holiday threat

Enterprise -- ZDNet Blogs - A distributed denial of service attack can turn a retailer's holiday season from merry to miserable. Learn how to protect yourself.

December 08, 2019 04:29 AM

In 2020, cyberattacks are going to get personal

Enterprise -- Silicon Republic - In 2020 and beyond, security and risk professionals will discover that cybersecurity decisions have broader societal implications...

December 08, 2019 04:28 AM

Attackers Continue to Exploit Outlook Home Page Flaw

Infosec -- Dark Reading - FireEye issues guidance on locking down Outlook, claiming that security researchers, at least, are able to work around the patch...

December 08, 2019 02:08 AM

How Small Businesses Can Fight Cybercrime With Threat Intelligence

Infosec -- Recorded Future - When most people think about threat intelligence, they think about large organizations. Perhaps a telecom provider that needs...

December 08, 2019 02:06 AM

LastPass Goes Passwordless

Globe Newswire -- Technology - LastPass Identity solution now provides passwordless login experience for business customers LastPass Identity solution now provides...

December 08, 2019 01:48 AM

Microsoft: Spear-phishing email has doubled in a year, so here's how to beat it

Enterprise -- ZDNet News - Microsoft warns of 'laser' phishing attacks that are so well-crafted even techies can't spot them.

December 08, 2019 01:18 AM

December 07, 2019

IM RAT spy tool seller raided, busted, kicked offline

Infosec -- Naked Security - The spyware gave complete control of victimized computers, sold for as little as$25, and was bought by 14,500 hackers worldwide.

December 07, 2019 02:29 AM

DigiCert and Ubisecure partner for next-generation Legal Entity Identifier organization identity solutions

Business Wire -- DigiCert and Ubisecure announce their collaboration to help solve organizational identity challenges by adding LEIs into future DigiCert offerings.

December 07, 2019 02:25 AM