Collaborate Disseminate
The worlds of information technology (IT) and operational technology (OT) are colliding. In July 2019, Automation.com cited a survey finding where 82% of respondents told Forrester and Nozomi Networks that their organizations were in the early stages o… Continue reading How Containers Support the IT-OT Convergence
Amazon informed some of its customers about a security incident that involved the unauthorized disclosure of their email addresses. News of the security incident emerged over the weekend of October 23 when multiple users took to Twitter to voice their … Continue reading Amazon Discloses Security Incident Involving Customers’ Email Addresses
The U.S. Department of Justice (DOJ) said Iran was responsible for an attack campaign that targeted American voters with threatening emails. On October 21, the Justice Department held a press conference in which FBI Director Christopher Wray and Direct… Continue reading DOJ Says Iran Targeted American Voters with Threatening Emails
The theme for National Cybersecurity Initiative‘s annual Cybersecurity Awareness Month for 2020 is Do Your Part #BeCyberSmart. For the healthcare sector, this means shedding light on the importance of securing data since the emergence of telemedicine, web-connected medical devices and third-party companies in the supply chain. These new business developments are complicating the task of […]
The post Supply Chain Risks in Healthcare: Time to Increase Security appeared first on Security Intelligence.
Continue reading Supply Chain Risks in Healthcare: Time to Increase Security
A public transport agency operating in Montréal announced that a ransomware attack had affected its website and other systems. The Société de transport de Montréal (STM) disclosed the infection on a web page it created to keep customers updated about i… Continue reading Montréal Public Transport Agency Discloses Ransomware Attack
Introduction Organizations are increasingly integrating microservices into their software development processes. As noted by DZone, microservices break down software into multiple component services, thereby enabling organizations to deploy parts of an… Continue reading Implementing a zero-trust model: The key to securing microservices
A budding ransomware group donated part of the ransom demands that it had previously extorted from its victims to two charities. On October 13, the Darkside ransomware group announced the donations in a blog post on its dark web portal. As quoted by ZD… Continue reading Ransomware Gang Donated Part of Ransom Demands to Charities
Security researchers discovered that an APT group known as “Silent Librarian” is actively targeting universities with spear phishing attacks. Malwarebytes learned in mid-September that Silent Librarian, also known as “TA407” and “COBALT DICKENS,” had l… Continue reading Silent Librarian APT Targeting Universities with Spear Phishing Attacks
Digital attackers created a Magento phishing page that used JavaScript to exfiltrate the login credentials of its victims. Sucuri came across a compromised website using the filename “wp-order.php” during an investigation. This phishing page hosted wha… Continue reading JavaScript Used by Phishing Page to Steal Magento Credentials
Bug bounty programs are on the rise, and participating security researchers earned big bucks as a result. According to a report released by HackerOne in February 2020, hackers had collectively earned approximately $40 million from those programs in 2019. This amount is nearly equal to the bounty totals hackers received for all preceding years combined. […]
The post Are Bug Bounty Programs Worth It? appeared first on Security Intelligence.