Collaborate Disseminate
Digital attackers are using an Excel 4.0 macro dropper to infect unsuspecting users with a new variant of the ServHelper backdoor. In summer 2019, researchers at Deep Instinct detected a new attack campaign launched by digital threat group TA505. This … Continue reading Attackers Using Excel 4.0 Macro Dropper to Spread ServHelper Backdoor
Apple announced that it will be expanding the scope of its bug bounty program and increasing its maximum possible reward payout to $1 million. Ivan Krstić, Apple’s head of security engineering, made the announcement during a presentation on … Continue reading Apple Increases Maximum Bug Bounty Program Payout to $1M
Insurance company State Farm revealed that a digital security incident might have exposed their customers’ personal information. In August 2019, ZDNet obtained a copy of a letter in which State Farm disclosed a data breach. The insurance company … Continue reading State Farm Says Security Incident Might Have Exposed Customers’ Data
American multinational conglomerate holding company AT&T has announced the launch of its public bug bounty program on HackerOne. Revealed on 6 August, the new program will award security researchers who submit reports on eligible vulnerabilities th… Continue reading AT&T Announces Launch of Public Bug Bounty Program
The City of Murfreesboro has disclosed a security incident involving the online portal for its Water Resources Customer webpage. In early August, IT personnel for the Rutherford County municipality detected some security issues affecting the online por… Continue reading Murfreesboro Discloses Security Incident Involving Water Resources Portal
Digital attacks targeting water facilities are on the rise. In its 2016 Data Breach Investigations Report, for instance, Verizon Enterprise disclosed an incident in which bad actors breached a water treatment plant and altered the levels of chemicals u… Continue reading WaterISAC: 15 Security Fundamentals You Need to Know
The Cybersecurity and Infrastructure Security Agency (CISA) has warned of insecure CAN bus network implementations affecting aircraft. On 30 July, CISA explained that attackers could target aircraft by exploiting insecure implementations of their CAN b… Continue reading CISA Warns of Insecure CAN Bus Networks Affecting Aircraft
Are you going to Black Hat USA 2019? If you are, you’re no doubt counting down the days until 3-8 August when you can join the thousands upon thousands of security professionals at the Mandalay Bay Resort and Casino in Las Vegas, Nevada. But if y… Continue reading The 6 Top Tips of Things to Do at Black Hat USA 2019
Gadsden Independent School District (GISD) announced that it was working to recover from a malware infection on its network. Travis L. Dempsey, superintendent of the Sunland Park school district, posted a notice about the attack on GISD’s website… Continue reading Gadsden Independent School District Discloses Malware Attack
In July 2019, UK Information Commissioner’s Office (ICO) announced its intention to fine two companies for violating the European Union’s General Data Protection Regulation (GDPR). ICO began by disclosing its intention to penalize British A… Continue reading Most Security Pros Think Recent GDPR Fines Won’t Significantly Affect Policies