Posts From CCME
Google Searches Reveal the 15-Year Decline of AV
The past 15 years has seen huge changes in the cybersecurity-related search terms internet users are deploying to find out more about the industry, with anti-virus supplanted by emerging next-gen solutions, according to new data from Redscan. Taking its cue
Facebook confirmed a new Instagram data-leaking bug that puts user data under risk. The vulnerability lets hackers access sensitive information such as account details and phone numbers. The vulnerability in Instagram was discovered by an Israeli hacker with Twitter handle
Over Half of UK Firms Still Not GDPR Compliant
Over half of UK businesses aren’t compliant with the GDPR more than 15 months after its introduction, despite many reporting data security incidents to the ICO, according to new research from Egress. The security vendor polled 250 “GDPR decision-makers” from
Iran-linked Cobalt Dickens APT group carried out a spear-phishing campaign aimed at tens of universities worldwide. Researchers at Secureworks’ Counter Threat Unit (CTU) uncovered a phishing campaign carried out by the Iran-linked Cobalt Dickens APT group (also known as Silent
The Wikimedia Foundation has received a $2.5m donation to boost its cybersecurity efforts following a major DDoS attack that left Wikipedia unavailable across much of the world last weekend. The non-profit relies on charitable donations and volunteers to keep the
Security researchers at Fortinet uncovered a malspam campaign aimed distributing the LokiBot malware at a US manufacturing company. FortiGuard SE Team experts uncovered a malspam campaign aimed distributing the LokiBot malware at a US manufacturing company. The Lokibot malware has
Operation reWired – 281 Email Scammers Arrested Worldwide for Attacking Hundreds of Business and Individuals
The FBI and federal authorities announced that they have arrested 281 Email Scammers worldwide in a coordinated effort by law enforcement agencies. The Operation dubbed Operation reWired is a multi-agency effort to dismantle scammers around the globe. The operation results
Experts discovered a flaw dubbed NetCAT (Network Cache ATtack) that affects all Intel server-grade processors and allows to sniff sensitive data over the network. Researchers from VUSec group at Vrije Universiteit Amsterdam have discovered a new vulnerability that can be
New Platform Aims to Keep Kids Safe Online
A new platform designed to keep young people safe while browsing the internet was launched today by Slovakian cybersecurity company ESET. Safer Kids Online was developed in consultation with cybersecurity experts and a child psychologist. The multilingual platform offers guidance
Implementing identity and access management (IAM) can lend several procedures for the roll out of privileged access management (PAM). Speaking at the Gartner Security and Risk Management Summit in London, Alan Radford, technical director of One Identity, and a representative
Organizations are failing to adequately support secure remote working practices, according to new research from digital services provider Capita. Despite the undoubted productivity benefits stemming from more flexible working practices, only half (52%) of the 2000 UK knowledge workers Capita
Speaking at the Gartner Security and Risk Management Summit in London, Gartner director analyst Sam Olyaei said that the topic of “questions on security and risk that you must be prepared to answer at your board meetings” was one of
Information Security Risks assisted Business models for banking & financial services(BFS) institutions have evolved from being a monolithic banking entity to multi-tiered service entity. What this means to BFS companies is that they need to be more updated and relevant
Hackers using Captcha to hide the presence of malware and to evade email security gateways. By using this technique attackers show that email is sent human and evades detection. Attackers use various social engineering methods to trick the users to
Microsoft Fixes 79 Vulnerabilities Including Two Active Zero-Days Exploits and 4 Critical RDP Flaws
Microsoft released security updates for September that addresses 79 security vulnerabilities, out of the 17 are critical, 61 rated as important and one classified as Moderate. The update covers two active Elevation of Privilege Zero-Days Vulnerabilities CVE-2019-1215 & CVE-2019-1214. CVE-2019-1214
At the Gartner Security & Risk Management Summit 2019 in London, Andy Powell, CISO at Maersk, outlined the key lessons learned from the NotPetya malware attack the company, along with many others, suffered in 2017. “Maersk was not alone [in