Microsoft Patches Zero-Day Under Active Attack by APT

October 10, 2018

Via: Threat Post

A zero-day vulnerability tied to the Window’s Win32k component is under active attack, warns Microsoft. Microsoft has issued a patch for a zero-day bug being actively exploited in the wild, as part of its Patch Tuesday security bulletin. The vulnerability […]

Network security, Vulnerabilities

DoD Weapon Systems Contain Security Vulnerabilities

October 10, 2018

Via: Dark Reading

GAO report outlines challenges for the US Department of Defense to handle security flaws in weapon systems. US military weapon systems are more vulnerable to cyberattacks than ever as they rely more on software and networks, according to a new […]


SAP Patches Critical Vulnerability in BusinessObjects

October 10, 2018

Via: Security Week

This week, SAP released its October 2018 set of patches, which includes the first Hot News security note for SAP BusinessObjects in over five years. SAP included 11 security notes in its October 2018 Security Patch Day, to which it […]

Network security, Security

New HITRUST program helps start-ups with information privacy and security

October 9, 2018

Via: Help Net Security

HITRUST is helping start-up companies make information privacy and security a foundational component while still focusing on growing their business with the introduction of the RightStart Program. The newly introduced program helps start-ups accelerate their adoption of the risk management, […]

Cloud security, Security

Race to the Cloud Creates Security Complexity

October 9, 2018

Via: Symantec Connect

Cloud computing has gone mainstream as more organizations shift their applications and workloads from on-premise data centers to public cloud platforms. Almost every company in the world—96 percent, according to one annual survey[1]—has moved some part, if not the majority, […]

Application security, Security

Picking the right focus for web application security testing

October 9, 2018

Via: Computer Weekly

In a perfect world, you would have the time and the money needed to test all of your software for security flaws. From websites to enterprise applications to the cloud and everything in between, you would know exactly where things […]

Cloud security, Malware

Keeping your cloud malware-free: What you need to know

October 8, 2018

Via: Help Net Security

This year we’ve seen massive malware attacks spanning from nation-state campaigns originating in North Korea and Russia to popular restaurants and everything in between. Each new incident serves as a grim reminder to business leaders that hackers will not relent. […]

Network security

Global spending on security solutions to reach $133.7 billion in 2022

October 8, 2018

Via: Help Net Security

Worldwide spending on security-related hardware, software, and services is forecast to reach $133.7 billion in 2022, according to IDC. Although spending growth is expected to gradually slow over the 2017-2022 forecast period, the market will still deliver a compound annual […]

Vulnerabilities, Wireless security

MikroTik routers with default credentials can be easily compromised

October 8, 2018

Via: Help Net Security

If you own a MikroTik router and you haven’t updated its RouterOS in the last month, you should do so now: Tenable Research has released details about four vulnerabilities they found in the OS, including an authenticated remote code execution […]

Hacker, Network security

Hackers fly under the radar for two years after infecting chiropractic clinic with malware

October 5, 2018

Via: Hot for Security

Chiropractors may not be regarded as full-blown medical doctors, but hackers don’t discriminate when targeting the health sector, as one chiropractor in Tillamook, Oregon will tell you. A report published by local publication Tillamook County Pioneer reveals that on August […]