SecurityWeek

Google, Spotify Release Open Source Cloud Security Tools

Security Week - 31 min 58 sec ago

Google and music service Spotify announced last week the launch of Forseti Security, a community-driven collection of open source tools designed to improve security in Google Cloud Platform (GCP) environments.

read more

Categories: SecurityWeek

U.S., Moscow Seek Russian Held in Greece over Bitcoin Laundering

Security Week - 1 hour 30 sec ago

Moscow has requested the extradition of a Russian national also wanted in the United States for laundering billions of dollars through a Bitcoin exchange he operated, a judicial source said Tuesday.

read more

Categories: SecurityWeek

Container Security Firm Aqua Raises $25 Million

Security Week - 1 hour 54 min ago

Aqua Security, a Tel Aviv, Israel-based container security startup, today announced that it has raised $25 million in Series B funding, bringing the total amount raised by the company to $38.5 million.

read more

Categories: SecurityWeek

Ex-porn Actor German Spy Guilty of Trying to Share State Secrets

Security Week - 2 hours 51 min ago

A former German intelligence agent who was also an ex-gay porn actor was Tuesday given a one-year suspended sentence for attempting to share state secrets while pretending to be a jihadist online.

read more

Categories: SecurityWeek

CCleaner Server Was Compromised in Early July

Security Week - 4 hours 9 min ago

A server distributing a version of PC utility CCleaner infected with malware might have been compromised in early July, Avast revealed.

read more

Categories: SecurityWeek

DigitalOcean Warns of Vulnerability Affecting Cloud Users

Security Week - 4 hours 20 min ago

DigitalOcean is warning customers that some 1-Click applications running MySQL have an account with the same default password across all instances, and the company says the issue affects other cloud providers as well.

read more

Categories: SecurityWeek

New York Pushes to Regulate Credit Agencies After Equifax Breach

Security Week - 4 hours 44 min ago

New York Governor Andrew Cuomo announced on Monday plans to make credit reporting firms comply with the 23 NYCRR 500 cybersecurity regulations enacted earlier this year.

read more

Categories: SecurityWeek

Equifax Cybersecurity Failings Revealed Following Breach

Security Week - Mon, 09/18/2017 - 3:49pm

Shortcomings revealed by researchers and cybersecurity firms following the massive data breach suffered by Equifax show that a successful hacker attack on the credit reporting agency’s systems was inevitable.

read more

Categories: SecurityWeek

New Attack Fingerprints Users Using Word Documents

Security Week - Mon, 09/18/2017 - 1:59pm

A newly detailed attack method leverages Microsoft Word documents to gather information on users, but doesn’t use macros, exploits or any other active content to do so, security researchers at Kaspersky Lab have discovered.

read more

Categories: SecurityWeek

Windows 10 Users to Get Improved Privacy Controls

Security Week - Mon, 09/18/2017 - 10:41am

The upcoming Windows 10 Fall Creators Update will bring enhanced privacy controls to both consumers and commercial customers, Microsoft says.

read more

Categories: SecurityWeek

CyberGRX Partners With BitSight to Address Supply Chain Risks

Security Week - Mon, 09/18/2017 - 9:12am

Partnership Integrates BitSight’s Security Ratings Capabilities With CyberGRX Third-Party Cyber Risk Exchange

read more

Categories: SecurityWeek

Flaws Patched in Trend Micro Mobile Security for Enterprise

Security Week - Mon, 09/18/2017 - 8:39am

A patch released last week by Trend Micro for its Mobile Security for Enterprise product resolves several vulnerabilities, including remote code execution issues rated critical and high severity.

read more

Categories: SecurityWeek

Millions Download Maliciously Modified PC Utility

Security Week - Mon, 09/18/2017 - 8:38am

Infected CCleaner Utility Highlights Dangers of Software Supply Chain Attacks

read more

Categories: SecurityWeek

Microsoft Extends Office Bounty Program

Security Week - Mon, 09/18/2017 - 7:25am

Microsoft has announced an extension to its Microsoft Office Bounty Program, which is now set to run until December 31, 2017.

read more

Categories: SecurityWeek

Threat Report Says 1 in 50 iOS Apps Could Leak Data

Security Week - Mon, 09/18/2017 - 6:46am

A new global threat report for the mobile ecosystem shows that iOS provides a bigger threat than is often perceived. While the insecurities of the Android operating system are well-documented, the report notes that 1 in 50 iOS apps used in enterprise environments could potentially leak sensitive data.

read more

Categories: SecurityWeek

Equifax Shares More Details About Breach

Security Week - Mon, 09/18/2017 - 5:40am

Equifax has shared more details about the recent breach that affects roughly 143 million U.S. consumers, including how it discovered the unauthorized access and the number of individuals impacted by the incident in the United Kingdom.

read more

Categories: SecurityWeek

Millions Download "ExpensiveWall" Malware via Google Play

Security Week - Sun, 09/17/2017 - 9:15pm

A newly discovered Android malware that managed to infect at least 50 applications in Google Play has been downloaded between 1 million and 4.2 million times, Check Point researchers warn.

read more

Categories: SecurityWeek

Equifax Security Chief, CIO to 'Retire' Immediately

Security Week - Fri, 09/15/2017 - 6:09pm

Following the massive data breach that was disclosed on September 7, Equifax announced on Friday that Chief Security Officer Susan Mauldin and Chief Information Officer David Webb are retiring from the company effective immediately. 

read more

Categories: SecurityWeek

VMware Patches Critical SVGA Code Execution Flaw

Security Week - Fri, 09/15/2017 - 1:45pm

Patches released this week by VMware address several vulnerabilities, including one rated critical, in the company’s ESXi, vCenter Server, Workstation and Fusion products.

read more

Categories: SecurityWeek

HWP Documents and PostScript Abused to Spread Malware

Security Week - Fri, 09/15/2017 - 12:51pm

A recently malware attack has been leveraging the Hangul Word Processor (HWP) word processing application and its ability to run PostScript code, Trend Micro reveals.

read more

Categories: SecurityWeek

Pages