Top

Tag: Security


Network security

SSDP amplification attacks rose 639%

January 22, 2019

Via: Help Net Security

The Nexusguard Q3 2018 Threat Report has revealed the emergence of an extremely stealthy DDoS attack pattern targeting communications service providers (CSPs). This new vector exploits the large attack surface of ASN-level (autonomous system number) CSPs by spreading tiny attack […]


Cloud security, Network security

Shadow IT, IaaS & the Security Imperative

January 22, 2019

Via: Dark Reading

Organizations must strengthen their security posture in cloud environments. That means considering five critical elements about their infrastructure, especially when it operates as an IaaS. Shadow IT, the use of technology outside the IT purview, is becoming a tacitly approved […]


Privacy protection

France watchdog fines Google with $57 million under the EU GDPR

January 22, 2019

Via: Security Affairs

The French data protection watchdog CNIL announced a fine of 50 million euros ($57 million) for US search giant Google under GDPR. “On 21 January 2019, the CNIL’s restricted committee imposed a financial penalty of 50 Million euros against the […]


Vulnerabilities

A flaw in MySQL could allow rogue servers to steal files from clients

January 22, 2019

Via: Security Affairs

A rogue MySQL server could be used to steal files from clients due to a design flaw in the popular an open source relational database management system (RDBMS). The flaw resides in the file transfer process between a client host […]


Cloud security

Beware the man in the cloud: How to protect against a new breed of cyberattack

January 21, 2019

Via: Help Net Security

One malicious tactic that has become quite prevalent in recent years is known as a ‘man in the cloud’ (MitC) attack. This attack aims to access victims’ accounts without the need to obtain compromised user credentials beforehand. Below, this article […]


Network security

Cybercrime could cost companies trillions over the next five years

January 21, 2019

Via: Help Net Security

Companies globally could incur $5.2 trillion in additional costs and lost revenue over the next five years due to cyberattacks, as dependency on complex internet-enabled business models outpaces the ability to introduce adequate safeguards that protect critical assets, according to […]


Vulnerabilities

Unpatched Cisco critical flaw CVE-2018-15439 exposes small Business Networks to hack

January 21, 2019

Via: Security Affairs

Unpatched critical flaw CVE-2018-15439 could be exploited by a remote, unauthenticated attacker to gain full control over the device. Cisco Small Business Switch software is affected by a critical and unpatched vulnerability (CVE-2018-15439) that could be exploited by a remote, […]


Network security

Millions of Oklahoma Gov Files Exposed by Wide-Open Server

January 17, 2019

Via: Threat Post

Millions of sensitive files on a storage server belonging to the Oklahoma Department of Securities were left exposed for a week – including credentials, internal docs and personal data stretching back decades. Researchers at UpGuard who discovered the data leak […]


Cloud security, Malware

Cryptomining Malware Uninstalls Cloud Security Products

January 17, 2019

Via: Threat Post

Researchers say they have discovered a unique malware family capable of gaining admin rights on targeted systems by uninstalling cloud-security products. Instances of the malicious activity are tied to coin-mining malware targeting Linux servers. Palo Alto Networks’ Unit 42, which […]


Network security

Encryption is key to protecting information as it travels outside the network

January 17, 2019

Via: Help Net Security

A new Vera report reveals stark numbers behind the mounting toll of data breaches triggered by cybercrime and accidents. One of the most recognized and mandated security controls, installed encryption tools protect just four percent of breached files. Meanwhile, compliance-focused […]