Collaborate Disseminate
Rates of cybercrime and nation-state espionage are increasing while the cybersecurity skills gap continues to grow. To better support security teams and operations in this environment, Fidelis Cybersecurity announced the release of a new managed detect… Continue reading The 24×7 Fidelis MDR service team now bolsters internal security teams
Infosecurity Europe 2018 is underway at Olympia, London. Here are a few photos from the expo floor. Featured companies: Bomgar, Qualys, Fidelis Cybersecurity, Cisco, Nuvias Group.
The post Photo gallery: Infosecurity Europe 2018 Expo, part 2 appeared f… Continue reading Photo gallery: Infosecurity Europe 2018 Expo, part 2
The main lessons from attacks against Internet of Things (IoT) devices are to change default usernames and passwords, use longer passphrases to avoid brute force attacks, and make sure devices have enough memory for firmware and kernel updates to remov… Continue reading Using deception to gain enterprise IoT attack visibility
Empowering security teams with unlimited security data collection, indexing and search Exabeam Data Lake centralizes all relevant logs to reduce the work of collecting logs from multiple systems. It is built on open source, big data technology, providi… Continue reading New infosec products of the week: January 26, 2018
A prominent trade organization involved in economic policy discussions with the Trump administration was the target of a digital espionage operation with ties to the Chinese government, according to new research gathered by Fidelis Cybersecurity. The news comes as President Donald Trump prepares to meet Thursday with Chinese President Xi Jinping for the first time. The hacker group at the center of Fidelis’ report is known in the security research community as APT 10 — an elite unit with ties to China. One of APT 10’s signature spy tools, dubbed “Scanbox,” was found lurking on several webpages owned by the National Foreign Trade Council, including a digital registration form. The registration page is used by guests to schedule meetings and sign up for NFTC events. The organization says it has about 300 member companies. However, due to Scanbox, when a victim would visit the organization’s registration page they would be served reconnaissance […]
The post Chinese hacking unit spied on U.S. trade group ahead of Trump meeting, security firm claims appeared first on Cyberscoop.
New approach to continuous Docker container security NeuVector’s solution for container security is itself a container. The application automatically learns and whitelists normal behavior to protect environments even as containers scale up and down. Through this built-in continuous application and network intelligence, it provides application layer segmentation that isolates container traffic. Any abnormal connections can then be detected and blocked before causing harm. NeuVector completes its solution with runtime vulnerability scanning across all running containers … More → Continue reading New infosec products of the week: February 3, 2017
Trend Micro offers Deep Security as a Service on AWS Marketplace Trend Micro announced the availability of Trend Micro Deep Security as a Service on AWS Marketplace. This new Trend Micro offering enables organizations to combine the benefits of security SaaS with the convenience of consolidated payments through their Amazon AWS bill. With per-hour pricing for added protection of Amazon EC2 instances, Deep Security as a Service provides customers a hosted security management experience with … More → Continue reading New infosec products of the week: December 2, 2016
Researchers at Fidelis report there are similarities in coding and behavior between a new banking Trojan called TrickBot and the notorious Dyre malware. Continue reading TrickBot Banking Trojan Could Be Dyre Rewrite
Researchers at Fidelis report there are similarities in coding and behavior between a new banking Trojan called TrickBot and the notorious Dyre malware. Continue reading TrickBot Banking Trojan Could Be Dyre Rewrite
Attackers behind the banking Trojan Vawtrak fortified it with a domain generation algorithm (DGA) and SSL pinning capabilities.
Continue reading Vawtrak Banking Trojan Adds DGA, SSL Pinning