Category Archives: week in review

Here’s an overview of some of last week’s most interesting news and articles: EV ransomware is targeting WordPress sites WordPress security outfit Wordfence has flagged several attempts by attackers to upload ransomware that provides them with the ability to encrypt a WordPress website’s files. Motivation roulette: Is pseudo-ransomware a term? All too often the insatiable appetite for answers following a major campaign leads to the development of rapid conclusions with everything from: what is the … More → Continue reading Week in review: WordPress ransomware, NotPetya aftermath→

Here’s an overview of some of last week’s most interesting news, articles and podcasts: US senators introduce bill to improve IoT security, protect researchers probing it The Internet of Things (IoT) Cybersecurity Improvement Act of 2017 would require that devices purchased by the US government meet certain minimum security requirements. UK researcher who stopped WannaCry charged with creating and distributing banking Trojan Marcus Hutchins, the 23-year-old UK researcher who found the kill-switch domain in the … More → Continue reading Week in review: MalwareTech arrested, hacking Amazon Echo→

Here’s an overview of some of last week’s most interesting news and articles: Review: Pwnie Express Pulse Pwnie Express Pulse is a SaaS offering that uses custom hardware sensors to provide continuous network discovery, threat detection, risk assessment, and critical information about all security issues that should be resolved. Is cyber insurance worth the paper it’s written on? Is there any point spending good money on cyber insurance when you could put that money into … More → Continue reading Week in review: Black Hat, the future of AppSec, the value of cyber insurrance→

Here’s an overview of some of last week’s most interesting news and articles: 66% of US law firms reported a breach in 2016 The majority of US-based law firms are not only exposed in a wide variety of areas, but in many cases, unaware of intrusion attempts. These findings were based on Logicforce survey data from over 200 law firms, anonymous system monitoring data and results from their on-site assessments. Operators of decade-old Malware-as-a-Service outfit … More → Continue reading Week in review: Windows 10 against crypto ransomware, satellite phone comms decryption→

Here’s an overview of some of last week’s most interesting news and articles: With ransomware, pay up if you want to keep paying So there you are, staring at a locked computer screen demanding a ransom. Do you pay? There are powerful reasons not to. (IN)SECURE Magazine issue 54 released (IN)SECURE Magazine is a free digital security publication discussing some of the hottest information security topics. Cybersecurity battleground shifting to Linux and web servers Despite … More → Continue reading Week in review: NotPetya, Facebook to inspect private messages, new issue of (IN)SECURE→

Here’s an overview of some of last week’s most interesting news and articles: Massive ransomware campaign spreading around the world like wildfire Organizations around the world have been hit with the Wana Decrypt0r (aka WannaCry) ransomware, in what seems to be the most massive ransomware delivery campaign to date. Security awareness is good, but good security culture is better As an efficient mechanism to influence employee behavior, security culture is one of the most important, … More → Continue reading Week in review: WannaCry disaster, SharePoint security, the importance of security culture→

Here’s an overview of some of last week’s most interesting news and articles: Three cybersecurity threat trends that organizations should address today The cybersecurity landscape grows seemingly more complex – and more dangerous – by the day. Attackers exploited SS7 flaws to empty Germans’ bank accounts The exploited vulnerabilities were first publicly reported by German researchers Tobias Engel and Karsten Nohl in 2014. They were apparently exploited for years before that by various intelligence services … More → Continue reading Week in review: Hacking industrial robots, criminals exploit SS7 flaws to empty bank accounts→

Here’s an overview of some of last week’s most interesting news and articles: Will blockchain liability be similar to Bitcoin liability? Blockchain can be used for cryptocurrencies other than Bitcoin, and can be used for more than just cryptocurrencies. A Blockchain is a list of transactional records on a distributed ledger technology. Blockchain can be used to record real estate transactions, testing records, health care record storage and more. Rules for secure coding in the … More → Continue reading Week in review: Open source security threats, secure C++ coding→

Here’s an overview of some of last week’s most interesting news and articles: Microsoft patched the flaws allowing leaked Windows exploits to work Microsoft has patched the vulnerabilities that allowed nine of the exploits released by the Shadow Brokers on Friday to work, and said that of the three remaining exploits, none will work on supported platforms. Bracing for the Denial of Things Every benefit of technology invariably brings with it a level of dependency … More → Continue reading Week in review: Leaked Windows exploits, mobile payment card cloning→

Here’s an overview of some of last week’s most interesting news and articles: Windows 10 Creators Update will come with clearer privacy options Nearly two years after Microsoft released Windows 10, the company has finally revealed what data it collects from users. The revelation comes as part of a recent change of the company’s privacy statement, which has been made to reflect the company’s move towards more transparency. How attackers exploit whitelists Attackers have been … More → Continue reading Week in review: Highest paying IT certifications, emergency iOS patch, and how attackers exploit whitelists→