Latest News
US CERT Warns of DHS Phishing Scam
An email phishing scam tries to dupe its victims by appearing to be from the Department of Homeland Security (DHS).
High-Risk Vulnerabilities in iOS, Android Apps
The vast majority of mobile apps store data insecurely, according to Positive Technologies researchers who discovered high-risk security vulnerabilities in
California Suffered Highest Number of Breaches
Over the past decade, California has had the highest number of data breaches and the greatest number of records exposed,
OWASP Top 10 Proactive Security Controls For Software Developers to Build Secure Software
Proactive Controls for Software developers describing the more critical areas that software developers must focus to develop a secure application.
Samba Vulnerability Leads to DoS in DNServer and Can Crash Active Directory Services
Samba released security updates for a couple of vulnerabilities that could cause Denial of Service in dnsserver and LDAP server
Florida City Pays $600K to Ransomware Authors
A Florida city has agreed to pay cyber-criminals $600,000 to regain access to computer systems encrypted with ransomware, highlighting the
UK Identity Fraud Jumps 8% to New All-Time High
Identity fraud rose by 8% in the UK last year to hit an all-time high, with both the very young
CISOs Struggling With 50+ Separate Security Tools
Organizations are struggling to gain real-time visibility into their security technologies and suffering from an excessive number of tools running
Bouncing Golf Cyberespionage Campaign Targets Android Users in Middle East
According to security researchers at Trend Micro, a cyberespionage campaign is targeting Android users in Middle Eastern countries. Security researchers
WINSpect – Powershell Based Windows Security Auditing Toolbox
WINSpect is the PowerShell based windows auditing tool to enumerate and identify security weaknesses with windows platform and results of
Oracle Patched Another Zero-Day Vulnerability that Can be Exploited Without Authentication
Oracle released an emergency security update for another critical remote code execution vulnerability that can be exploited by the remote
SACK Panic Vulnerability in Linux
Researchers at Netflix have discovered new denial-of-service (DoS) vulnerabilities in Linux and FreeBSD kernels, including a severe vulnerability called SACK
Security Should Be Business Focused, Says ISF
A security assurance program that focuses on business needs can help organizations meet the needs of business stakeholders, according to
Only Quarter of IaaS Users Can Audit Config Settings
Most global organizations benefit from better security in the cloud than on-premise, with some key exceptions, including data loss prevention
Eatstreet, The Online Food Ordering Service Disclosed a Security Breach
Eatstreet, the online food ordering service, disclosed a security breach that exposed customer payment card data and details of partners
Modular Plurox Backdoor Can Spread Over Local Network
Kaspersky experts recently discovered a backdoor dubbed Plurox that can spread itself over a local network and can allow installing
