This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). On November 30, 2018. nccgroup disclosed CVE-2018-12404, CVE-2018-19608, CVE-2018-16868, CVE-2018-16869, and CVE-2018-16870. These were from vulnerabilities found back in August 2018 in several TLS libraries. Read more Top 5 Security News MacOs Zero-day exposes […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Government Communications Headquarters (GCHQ), the UK’s counterpart to the National Security Agency (NSA), has fired the latest shot in the crypto wars. In a post to Lawfare titled Principles for a More Informed Exceptional Access Debate, […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Twice a year, an international contest called Pwn2Own – the Olympic Games of competitive hacking, if you like – gives the world’s top bug-hunters a chance to show off their skills. The word pwn, […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Police in the Netherlands announced on Tuesday that they’ve broken the encryption used on an cryptophone app called IronChat. The Dutch police made the coup a while ago. They didn’t say when, exactly, but […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT) According to Tara Seals in an article for threatpost.com: “Half of Execs Feel Unprepared to Respond to a Cyber-Incident.” “Nearly half (46 percent) of executives in a Deloitte poll say their organizations have experienced […]
This blog post is a summary of this weeks Information Security News put together by our Security Incident Response Team (SIRT).
This blog post is a summary of this weeks Information Security News put together by our Security Incident Response Team (SIRT). Thousands of breached websites turn up on MagBo Black market The research team said it has shared its findings with law enforcement and victims are being notified. A newly-discovered underground marketplace has been peddling […]
Check for the Security-First Mindset Across All Teams “Embedding security as a way of life is not a one-time event. It requires ongoing education through a variety of channels. Setting the tone from executive leadership is key, but this must be reinforced by direct management and across peer groups.” Read more.. Top 5 Security […]
Security is not a one-person job. It can’t be accomplished with one person, it can’t be accomplished with one company. “Security is not a one-person job. It can’t be accomplished with one person, it can’t be accomplished with one company,” says Walls. “So we need partners, and we need friends in the industry to work […]
Huge Cryptomining Attack on ISP-Grade Routers Spreads Globally Carrier-grade MikroTik routers are delivering potentially millions of daily cryptomining pages to the attacker. A massive hacking campaign has been uncovered, compromising tens of thousands of MikroTik routers to embed Coinhive scripts in websites using a known vulnerability. So far, Censys.io has reported more than 170,000 active […]