Security Experts:

WRITE FOR US

IT Security News Headlines

rss icon

French Virus Tracing App Goes Live Amid Debate Over Privacy
Several Exim Vulnerabilities Exploited in Russia-Linked Attacks
Android's June 2020 Patches Fix Critical RCE Vulnerabilities
VMware Cloud Director Vulnerability Has Major Impact for Cloud Providers
Microsoft Sponsors 2020 Machine Learning Security Evasion Competition
long dotted

More Security Headlines

IP-in-IP Vulnerability Affects Devices From Cisco and Others
A vulnerability related to the IP-in-IP tunneling protocol that can be exploited for DoS attacks and to bypass security controls has been found to impact devices from Cisco and other vendors. [Read More]
Apple Patches Recent iPhone Jailbreak Zero-Day
Apple releases security patches to address a zero-day vulnerability that had been used to jailbreak iPhones running iOS 13.5. [Read More]
Hackers Leak Data Stolen From UK Electricity Market Administrator Elexon
The cybercriminals behind the Sodinokibi/REvil ransomware have started leaking data stolen from UK electricity market administrator Elexon. [Read More]
Hackers Disrupt Minneapolis Systems, But No Evidence of Breach
A DDoS attack crippled the websites and systems of Minneapolis late last week, but no data appears to have been breached. [Read More]
Zscaler Acquires Microsegmentation Firm Edgewise Networks
Zscaler has acquired Edgewise Networks, a company that helps customers secure application-to-application communications using a zero-trust approach through microsegmentation. [Read More]
Data From Joomla Resources Directory Exposed via Unprotected AWS Bucket
An unprotected AWS S3 bucket exposed the data of 2,700 users who signed up for the Joomla Resources Directory. [Read More]
Researcher Claims Apple Paid $100,000 for 'Sign in With Apple' Vulnerability
A security researcher claims Apple paid a $100,000 bug bounty reward for a critical vulnerability in “Sign in with Apple,” the company’s privacy-focused authentication system. [Read More]
New Technique Improves Effectiveness of Timing Channel Attacks
Two researchers have discovered a new timing channel attack technique that remains effective even if multiple processes are running on a system. [Read More]
Amtrak Discloses Security Incident Involving Guest Reward Accounts
Amtrak is informing some customers that their personal information may have been compromised after someone accessed their Guest Reward account. [Read More]
VMware Fixes Fusion Vulnerability Introduced by Previous Patch
VMware has updated the macOS version of Fusion to fix a privilege escalation vulnerability introduced by a previous patch. [Read More]

SecurityWeek Experts

rss icon

Galina Antova's picture
3 Ways Effective OT Security Enables Your Business
Galina Antova - SCADA / ICS
When your core business operations, digital transformation initiatives and workers’ ability to do their jobs are at risk, effective OT security must become just as ubiquitous
Read full story
John Maddison's picture
Realizing the Potential of AI-Driven Security Operations
John Maddison - Incident Response
By combining ML and AI with a team of advanced cybersecurity professionals to deploy true AI-driven security operations, organizations can stay a step ahead of cybercriminals.
Read full story
Laurence Pitt's picture
Protecting Online Retail in the Face of COVID-19 and Beyond
Laurence Pitt - Network Security
Every business is likely to be subject to cyberattacks at some point, and the option is to either take on the cost of putting measures in place before it happens or paying to clean up after.
Read full story
Torsten George's picture
On the Rise: The Enemy From Within
Torsten George - Identity & Access
Today’s economic climate exacerbates risks of insider threats, as pending furloughs or pay cuts may tempt employees to exfiltrate data to secure a new job, make up for income losses, etc.
Read full story
Joshua Goldfarb's picture
Seven Ways to Improve Efficiency in Your Security Metrics Program
Joshua Goldfarb - Management & Strategy
Most security organizations realize that, regardless of how much progress they’ve made towards improving maturity and efficiency, there is still more work to be done.
Read full story
Idan Aharoni's picture
Why You May Not Need to Monitor the Dark Web
Idan Aharoni - Cybercrime
Many organizations are steadfast in their belief that dark web monitoring is a critical part of their security operations and the security industry is happy to fuel that belief.
Read full story
Marc Solomon's picture
Data is the Key to Understand Whatever Life Brings
Marc Solomon - Incident Response
With an extensible platform and flexible data model, you can take full advantage of the volume and variety of data to gain insights, and the technologies in your ecosystem to accelerate detection and response and mitigate risk.
Read full story
Alastair Paterson's picture
Beware of Sick Behavior Masquerading as Coronavirus
Alastair Paterson - Cybercrime
Researchers have undertaken a deep dive into the shadowy, cyber world of those whose work involves abusing others online through trickery, extortion, fraud, and theft resulting from COVID-19.
Read full story
Galina Antova's picture
Three Tips to Help CISOs Close the IT-OT Security Gap, Part 2
Galina Antova - SCADA / ICS
Eliminate complexity, align IT and OT teams, and simplify governance are my top three recommendations for how to bridge the IT-OT security gap.
Read full story
Jim Ducharme's picture
Now That Everyone's Working From Home, How's Your Helpdesk Holding Up?
Jim Ducharme - Incident Response
Heightened anxiety is a normal consequence of drastic change, and it’s natural for the entire organization to be stressed by the shift to a fully remote work environment.
Read full story