SecurityWeek

Latest IT Security News and Expert Insights Via RSS Feed
  1. Grammarly, the popular service for checking grammar and spelling, this week announced the launch of a public bug bounty program.

    Grammarly has been running a private bug bounty program with HackerOne for more than a year. The program has nearly 1,500 participants and resulted in payouts totaling $50,000.

    read more

  2. A new variant of the destructive Shamoon malware was uploaded to VirusTotal this week, but security researchers haven’t linked it to a specific attack yet.

    read more

  3. Equifax Could Have Prevented Massive Data Breach, Report From U.S. House Says

    read more

  4. California-based Super Micro told customers on Tuesday that it has conducted a thorough investigation in response to a Bloomberg article claiming that Chinese spy chips had been planted on its servers, but found no evidence of malicious hardware.

    read more

  5. Misconfigured databases with poor or absent access controls on both cloud and in-house servers is a known and common problem. Where these databases are exposed to the internet, anybody -- with or without cyber expertise -- can access the database and its content. While there is no 'hack' involved, such instances should still be called a breach since there is often no way of knowing whether the data contained has been accessed by malicious actors.

    read more

  6. SAP this week released its December 2018 set of security updates to address a dozen vulnerabilities in its products, including a Critical flaw in Hybris Commerce. 

    read more

  7. As we near the end of 2018, another wave of massive cyber-attacks has exposed personally identifiable information belonging to hundreds of millions of people and will cost the impacted businesses untold amounts of dollars in lost revenue, settlements, and fines.

    read more

  8. Industrial cybersecurity firm Claroty on Tuesday announced significant enhancements to its threat detection product, along with technology integrations with several cybersecurity, network infrastructure and industrial automation providers.

    read more

  9. Experts believe that the Windows kernel zero-day vulnerability fixed this week by Microsoft with its Patch Tuesday updates has been exploited by several threat actors, including a new group.

    read more

  10. Biometric screening is expanding to the rental car industry.

    Hertz said Tuesday it is teaming up with Clear, the maker of biometric screening kiosks found at many airports, in an effort to slash the time it takes to pick up a rental car. Clear hopes it will lead more travelers to its platform, which has 3 million members in the U.S.

    read more

  11. Microsoft’s Patch Tuesday updates for December 2018 address nearly 40 vulnerabilities, including a zero-day flaw affecting the Windows kernel.

    read more

  12. The December 2018 Patch Tuesday updates released by Adobe address a total of 87 vulnerabilities affecting the company’s Acrobat software.

    read more

  13. A newly identified exploit kit is targeting home and small office routers in an attempt to compromise the mobile devices or desktop computers connected to the routers, according to Trend Micro.

    read more

  14. The U.S. House of Representatives’ Committee on Energy and Commerce has released a report identifying strategies for the prevention and mitigation of cybersecurity incidents.

    read more

  15. Several critical infrastructure organizations in Russia have been targeted by hackers believed to be financially-motivated cybercriminals rather than state-sponsored cyberspies.

    read more

  16. Italian oil and gas services company Saipem reported on Monday that some of its servers were hit by a cyberattack.

    read more

  17. Secure messaging applications such as Telegram, Signal and WhatsApp can expose user messages through a session hijacking attack, Cisco’s Talos security researchers warn. 

    read more

  18. WASHINGTON (AP) — Google's CEO faces a grilling from U.S. lawmakers on how the web search giant handled an alarming data breach and whether it may bend to Chinese government censorship demands.

    read more

  19. Organizations are getting better at detecting intrusions on their own, but it still takes them a long time to do it, according to a new report published on Tuesday by endpoint security firm CrowdStrike.

    read more

  20. 7,000 Twitter Amplification Bots Found in One Day's Search

    read more

Website Copyright 1998-2018 by PCBest. All Rights Reserved.
we accept credit cards