Oktacron - Cyber Security RSS Feeds History

Episode 245: How AI is remaking knowledge-based authentication

securityledger Nov 01, 2022 artificial intelligence

Six decades in, password use has tipped into the absurd, while two-factor authentication is showing its limits. We talk with Matt Salisbury of Honeybadger HQ, which is using AI and machine learning to re-imagine knowledge-based authentication. The post Episode 245: How AI is remaking knowledge-based authentication show more ...

appeared first on The Security...Read the whole entry... » Click the icon below to listen. Related StoriesEpisode 244: ZuoRAT brings APT Tactics to Home NetworksEpisode 243: The CSTO is a thing- a conversation with Chris Hoff of LastPassEpisode 241: If Its Smart, Its Vulnerable a Conversation with Mikko Hyppönen

How Retailers Can Stay Protected During the Most Wonderful Time of the Year

darkreading Nov 01, 2022 Feed

Retailers' new holiday jingle must hit cybersecurity high points to help survive the season. Forget Dasher and Dancer — add SAST and DAST to app testing; manage third-party risks; and use MFA along with training and proper authentication to secure credentials.

Now That EDR Is Obvious, What Comes Next?

darkreading Nov 01, 2022 Feed

First in our series addressing the top 10 unanswered questions in security: What's going to replace EDR?

Layoffs Mount as Cybersecurity Vendors Hunker Down

darkreading Nov 01, 2022 Feed

With the vast majority of business leaders expecting a recession in 2023, cybersecurity firms are bolstering their operations and cash flow by laying off workers.

FTC Gives Chegg an 'F' for Careless Cybersecurity Impacting 40M Students

darkreading Nov 01, 2022 Feed

Ed-tech company Chegg is ordered by FTC to secure its systems after repeated breaches that exposed tens of millions of users' personal data.

Where Are All of the Container Breaches?

darkreading Nov 01, 2022 Feed

Containers and their supporting infrastructure are too important to ignore.

Name That Edge Toon: Talk Turkey

darkreading Nov 01, 2022 Feed

Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.

China-Backed APT10 Supercharges Spy Game With Custom Fileless Backdoor

darkreading Nov 01, 2022 Feed

The sophisticated and ever-evolving threat known as LodeInfo is being deployed against media, diplomatic, government, public sector, and think-tank targets.

The Sky Is Not Falling: Disclosed OpenSSL Bugs Are Serious but Not Critical

darkreading Nov 01, 2022 Feed

Organizations should update to the latest encryption (version 3.0.7) as soon as possible, but there's no need for Heartbleed-like panic, security experts say.

Bed Bath & Beyond Discloses Data Breach to SEC

darkreading Nov 01, 2022 Feed

The retailer reported that an employee fell for a phishing scam, allowing malicious actors to access shared drives.

Extortion fears after hacker stole patient files from Dutch mental health clinics

cyware Nov 01, 2022 Breaches and Incidents

Patients of Dutch mental health clinics are being warned that their personal records have fallen into the hands of hackers following a security breach at an online portal that "guaranteed" their privacy.

Cyber officials from 37 countries, 13 companies to meet on ransomware in Washington

cyware Nov 01, 2022 Govt., Critical Infrastructure

The White House will host officials from 37 countries and 13 global companies in Washington this week to address the growing threat of ransomware and other cybercrime, including the illicit use of cryptocurrencies, a senior U.S. official said.

VMware Warns of Exploit for Recent NSX-V Vulnerability

cyware Nov 01, 2022 Malware and Vulnerabilities

VMware over the weekend warned of the existence of a public exploit targeting a recently addressed critical remote code execution (RCE) vulnerability in NSX Data Center for vSphere (NSX-V).

Zoom mandates client updates every ninety days

cyware Nov 01, 2022 Security Products & Services

Video conferencing outfit Zoom has revealed it will require users to update their client apps at least every ninety days and introduce a "minimum client version" requirement.

CISA funds expanding access to cybersecurity programs at HBCUs, K-12 schools

cyware Nov 01, 2022 Security Culture

With the help of funding from the CISA, Project Reach was built to address the more than 760,000 cybersecurity positions currently open and increase awareness about cybersecurity issues more generally.

Industrial providers ramp up cyber risk posture as OT threats evolve

cyware Nov 01, 2022 Trends, Reports, Analysis

Industrial organizations have strengthened their cybersecurity postures in the past year as nearly two-thirds have faced high or severe threats to their OT environments, as per a SANS Institute report commissioned by Nozomi Networks.

Second Health Entity Reports Breach Tied to Meta Pixel Use

cyware Nov 01, 2022 Breaches and Incidents

North Carolina-based WakeMed Health and Hospitals reported to the Department of Health and Human Services on October 14 an unauthorized access/disclosure breach affecting nearly 500,000 individuals.

Spy agency embraces meme culture and the internet is here for it

cyware Nov 01, 2022 Security Culture

Memes can be tricky to execute well — particularly if you’re the NSA — but often go viral and have emerged as important tools for those who want to communicate complex information in a simple way for a mass audience.

U.S. Bank Data Breach Impacts 11,000 Customers of Closed Credit Card Accounts

cyware Nov 01, 2022 Breaches and Incidents

An employee noticed the issue immediately, a spokesperson said, and the information was secured and destroyed. The bank has since received a certificate of destruction of information.

Chegg sued by FTC after suffering four data breaches within 3 years

cyware Nov 01, 2022 Incident Response, Learnings

The U.S. Federal Trade Commission (FTC) has sued education technology company Chegg after exposing the sensitive information of tens of millions of customers and employees in four data breaches suffered since 2017.

Update: Data Breach of Missile Maker MBDA May Have Been Real: CloudSEK

cyware Nov 01, 2022 Breaches and Incidents

The Adrastea threat actor group announced a data breach from MBDA back in July. At the time, the company promptly refuted the claims, saying that while some files were stolen, MBDA was not hacked, and its security systems remained intact.

Snatch Ransomware Group Claims to Have Hacked Military Technology Provider HENSOLDT France

cyware Nov 01, 2022 Breaches and Incidents

The Snatch ransomware group added HENSOLDT France to the list of victims published on its Tor leak site. The group has published a sample of the stolen data (94 MB) as proof of the hack.

Experian tool exposed partial Social Security numbers, putting customers at risk

cyware Nov 01, 2022 Breaches and Incidents

An Experian product that allows organizations to verify customers’ identity could be exploited to expose partial Social Security numbers, a researcher found through testing several organizations that use the product.

US Agencies Share Supply Chain Security Tips for Software Suppliers

cyware Nov 01, 2022 Security Tips and Advice

This guidance was developed through the Enduring Security Framework (ESF), a public-private partnership working to address threats to U.S. national security systems and critical infrastructure.

Hackers Selling Access to 576 Corporate Networks for $4 Million

cyware Nov 01, 2022 Breaches and Incidents

The research comes from Israeli cyber-intelligence firm KELA which published its Q3 2022 ransomware report, reflecting stable activity in the sector of initial access sales but a steep rise in the value of the offerings.

SandStrike Spyware Infects Android Devices via Malicious VPN App

cyware Nov 01, 2022 Malware and Vulnerabilities

Threat actors are using newly discovered spyware known as SandStrike and delivered via a malicious VPN application to target Android users. They focus on Persian-speaking practitioners of the Bahá?í Faith.

UK: Not enough ransomware victims are reporting attacks, and that's a problem for everyone

cyware Nov 01, 2022 Trends, Reports, Analysis

Ransomware continues to be a significant cyber threat to businesses and the general public - but it's difficult to know the true impact of attacks because many victims aren't coming forward to report them.

The New Fodcha DDoS Botnet Adds Extortion Feature to its Arsenal

cyware Nov 01, 2022 Malware and Vulnerabilities

A new version of the Fodcha DDoS botnet delivers ransom demands directly within DDoS packets used against victims’ networks, revealed Netlab 360. The latest Fodcha version 4 now uses encryption to establish communication with the C2 server and relies on 42 C2 domains to operate 60,000 active bot nodes daily, generating up to 1Tbps of destructive traffic.

Mondelez and Zurich reach settlement in NotPetya cyberattack insurance suit

cyware Nov 01, 2022 Incident Response, Learnings

Mondelez International and Zurich American Insurance reached a settlement late last week in their multi-year legal battle over the food company’s $100 million claim regarding damage from the NotPetya cyberattack in 2017.

Researchers Disclose Details of Critical 'CosMiss' RCE Flaw Affecting Azure Cosmos DB

cyware Nov 01, 2022 Malware and Vulnerabilities

The tech giant said the problem was introduced on August 12, 2022, and rectified worldwide on October 6, 2022, two days after responsible disclosure from Orca Security, which dubbed the flaw CosMiss.

Cranefly Group Abuses Legitimate IIS Logs To Deliver New Malware

cyware Nov 01, 2022 Threat Actors

The Cranefly hacker group was spotted leveraging Microsoft IIS to deploy a previously undocumented dropper, named Danfuan, on security tools such as load balancers and SANS arrays. With new custom tools and evasive techniques, Cranefly is maintaining a foothold on compromised servers and focusing on stealthily gathering intelligence.

Azov Ransomware - New Data Wiper Frames Security Researchers

cyware Nov 01, 2022 Malware and Vulnerabilities

A new data wiper strain, dubbed Azov Ransomware, has debuted recently. It is being distributed through pirated software, key generators, and adware bundles. In the ongoing campaign, the wiper operators try to frame some renowned security groups and researchers. The wiper appears to have borrowed its name from the Ukrainian Azov Regiment.

IT Defenders Race To Scope Out The Threat Ahead Of OpenSSL Patch Release

packetstormsecurity Nov 01, 2022 headline,flaw,patch,cryptography

Pandemic Relief Fraud Has Congress Eyeing Digital IDs

packetstormsecurity Nov 01, 2022 headline,government,usa,fraud,identity t

German Cops Arrest Student Suspected Of Running Dark Web Souk

packetstormsecurity Nov 01, 2022 headline,government,cybercrime,germany