Security Experts:

WRITE FOR US

IT Security News Headlines

rss icon

AWS Announces General Availability of Security Hub
Hackers Favoring Shimmers Over Skimmers for ATM Attacks
Telcos Pwned: Multi-Wave Attacks Stealing 'Obscene Amount of Data' From Providers
ABB Patches Many Vulnerabilities in HMI Products
LokiBot and NanoCore Malware Distributed in ISO Image Files
long dotted

More Security Headlines

Flaws in Phoenix Contact Automationworx Allow Code Execution via Malicious Files
Several vulnerabilities affecting the Phoenix Contact Automationworx automation software suite can be exploited for remote code execution using specially crafted project files. [Read More]
VideoLAN Patches Critical Vulnerability in VLC Media Player
VideoLAN has addressed a critical double-free vulnerability in the VLC media player that could allow an attacker to execute arbitrary code on target systems. [Read More]
Protection Against Side-Channel Attacks Added to OpenSSH
Protection against Spectre, Meltdown, RAMBleed, Rowhammer and other memory side-channel attacks has been added to OpenSSH. [Read More]
TrueFort Secures $13.7 Million in Series A Funding
Real-time application behavior analytics, control, and protection provider TrueFort has raised $13.7 million in a Series A funding round. [Read More]
New Attack Delivers FlawedAmmyy RAT Directly in Memory
A recently discovered malicious campaign is aiming at infecting victim machines by delivering the notorious FlawedAmmyy RAT directly in memory, Microsoft warns. [Read More]
Iran Denies Being Hit by US Cyber Attack
Iran claims no cyber attack against the Islamic republic has ever succeeded, after American media reported the US launched one last week amid a standoff between the two countries. [Read More]
Mac Malware Delivered via Firefox Exploits Analyzed
Researcher conducts detailed analysis of the two pieces of Mac malware delivered recently via Firefox zero-day vulnerabilities to cryptocurrency exchanges. [Read More]
WeTransfer Security Incident: File Transfer Emails Sent to Wrong People
File transfer service WeTransfer alerts users after discovering that some file transfer emails were sent to the wrong individuals. [Read More]
Ex-Senate Aide Sentenced to 4 Years in Prison for Data Leak
A former congressional staffer was sentenced to four years in prison Wednesday after pleading guilty to illegally posting online the home addresses and telephone numbers of five Republican senators who backed Brett Kavanaugh’s Supreme Court nomination. [Read More]
U.S. Struck Iranian Military Computers This Week: AP Sources
U.S. military cyber forces launched a strike against Iranian military computer systems on as President Donald Trump backed away from plans for a more conventional military strike in response to Iran's downing of a U.S. surveillance drone, U.S. officials said. [Read More]

ICS Cyber Security Conference

SecurityWeek Experts

rss icon

Devon Kerr's picture
Tales From the SOC: Healthcare Edition
Devon Kerr - Incident Response
How healthcare organizations used a trail of digital evidence to identify the type of attack they were experiencing and developed a remediation strategy.
Read full story
Barak Perelman's picture
Mission Possible: ICS Attacks On Buildings Are a Reality
Barak Perelman - SCADA / ICS
Since Building Management Systems (BMS) are integrated with and interconnected to both hardwired and cloud based solutions, as well as third party applications, their attack surface is large and getting larger.
Read full story
Alastair Paterson's picture
Why Diversity of Thought in the Workplace Matters
Alastair Paterson - Management & Strategy
Diversity of thought fosters psychological safety, which is a shared belief among teams that they perceive they are safe to take risks, and is one of the core indicators of highly effective teams.
Read full story
Jim Gordon's picture
Security Doesn't Have to be a Losing Battle
Jim Gordon - Management & Strategy
While I have blogged pretty frequently in the past, this is my first official column for any sort of major publication, and I am grateful for the opportunity from SecurityWeek.
Read full story
Marc Solomon's picture
Investigation and Response is a Team Sport
Marc Solomon - Incident Response
Security teams should be able to detect threats faster and use that knowledge to pivot and accelerate parallel investigations that are separate but related.
Read full story
Torsten George's picture
Another World Password Day Has Passed and Little Has Changed
Torsten George - Identity & Access
Companies should consider moving to a Zero Trust approach, powered by additional security measures such as multi-factor authentication, to stay ahead of the security curve and leave passwords behind for good.
Read full story
Ashley Arbuckle's picture
Converging on a Better Approach to Security
Ashley Arbuckle - Risk Management
The convergence of security products and services is a welcomed development and will lead to improved security.
Read full story
Laurence Pitt's picture
Security First in the Cloud Wars
Laurence Pitt - Cloud Security
“The Cloud Wars” may be dominating IT news headlines, but what does this phrase actually mean? And is it something that an enterprise needs to be concerned with?
Read full story
Joshua Goldfarb's picture
How Insecurity Can Bolster Your Security Program
Joshua Goldfarb - Management & Strategy
Five examples of how insecurity can actually help bolster a security program by allowing an organization to continually learn and make changes, thus improving.
Read full story
Gunter Ollmann's picture
The Symbiosis Between Public Cloud and MSSPs
Gunter Ollmann - Cloud Security
To the surprise of many, public cloud appears to be driving a renaissance in adoption and advancement of managed security service providers (MSSP).
Read full story