Krebs on Security

JUNE 21, 2021

The ISAC found when it comes to IT systems tied to “operational technology” (OT) — systems responsible for monitoring and controlling the industrial operation of these utilities and their safety features — just 30.5 “Others do not have access to a cybersecurity workforce,” the report explains.

Hacking 360

Hacking Accountability Cybersecurity Technology 360

Schneier on Security

JUNE 8, 2021

A 2018 GAO report expressed concern regarding the lack of secure and patchable U.S. ” While DOD now appears aware of the issue of lack of cybersecurity requirements, they’re still not sure yet how to fix it, and in three of the five cases GAO reviewed, DOD simply chose to not include the requirements at all.

Software 363

Software Cybersecurity Backups Manufacturing 363

Digital Shadows

MARCH 17, 2025

Key Findings Even years after their disclosure, VPN-related vulnerabilities like CVE-2018-13379 and CVE-2022-40684 remain essential tools for attackers, driving large-scale campaigns of credential theft and administrative control. CVE-2018-13379: The Eternal Exploit What is CVE-2018-13379? Rated CVSS 9.8,

VPN 133

VPN Authentication Ransomware Risk 133

The Last Watchdog

SEPTEMBER 13, 2018

Of the many cybersecurity executives I’ve interviewed, Keenan Skelly’s career path may be the most distinctive. I met with Skelly at Black Hat USA 2018 and we had a thoughtful discussion about a couple of prominent cybersecurity training issues: bringing diversity into AI systems and closing the cybersecurity skills gap.

Cybersecurity 203

Cybersecurity Artificial Intelligence Technology Engineering 203

Adam Levin

APRIL 9, 2019

Israeli cybersecurity researchers have created malware capable of showing fake cancerous growths on CT and MRI scans. Medical facilities are frequently targeted by hackers, due in part to their reliance on networking technologies and their archives of sensitive personal information.

Malware 254

Malware Healthcare Technology Ransomware 254

The Last Watchdog

AUGUST 23, 2018

Business demand dictates a frenetic pace for delivering new and better technology. Meanwhile, the shortage of professionals with cybersecurity skills has long been identified as an industry problem that’s only getting more dire. However, DevOps and cybersecurity efforts aren’t necessarily at odds. New job description.

Cybersecurity 210

Cybersecurity Software Technology Education 210

CyberSecurity Insiders

JANUARY 3, 2023

Spy”-type cyberspace race as both criminals and defenders vie to gain the upper hand using new and emerging technologies. Every technology that enables our cyber teams to pinpoint and resolve threats and prevent attacks more quickly and accurately also benefits cybercriminals. Automation using AI will play an essential role.

Technology 135

Technology Cybercrime Artificial Intelligence Government 135

The Last Watchdog

JUNE 4, 2019

With the largest concentration of cybersecurity expertise –– the “oil” — in the world, Maryland is fast changing from the Old Line State into “Cybersecurity Valley.” and Tenable, which went public in 2018 with a market capitalization of approximately $4 billion. There’s oil in the state of Maryland – “cyber oil.”

Cybersecurity 193

Cybersecurity Computers and Electronics Technology Marketing 193

eSecurity Planet

APRIL 26, 2022

Achieving funding is no simple task, and cybersecurity entrepreneurs have a difficult path competing in a complex and competitive landscape. Luckily for cybersecurity startups, there’s no shortage of interest in tomorrow’s next big security vendors. Investments in cybersecurity more than doubled from $12 billion to $29.5

Cybersecurity 129

Cybersecurity Technology Marketing Healthcare 129

CyberSecurity Insiders

JUNE 2, 2023

By Jayakumar (Jay) Kurup, Global Sales Engineering Director at Morphisec Securing operational technology (OT) creates unique challenges. Sometimes this is due to cultural reasons (management’s fear of even the slightest chance of disruption); other times, it is technological.

Cyber threats 136

Cyber threats Technology Firewall Ransomware 136

The Last Watchdog

JUNE 10, 2019

I recently had the chance to discuss this with John Loucaides, vice-president of engineering at Eclypsium, a Beaverton, OR-based security startup that is introducing technology to scan for firmware vulnerabilities. It’s encouraging to see robust technologies and best practices emerging to help companies mitigating these risks.

Firmware 233

Firmware Cybersecurity Technology Engineering 233

Krebs on Security

APRIL 18, 2022

But new information confirms this pledge was always a lie, and that Conti has launched more than 200 attacks against hospitals and other healthcare facilities since first surfacing in 2018 under its earlier name, “ Ryuk.” But according to Microsoft and an advisory from the U.S.

Healthcare 339

Healthcare Ransomware Cybersecurity Malware 339

Schneier on Security

FEBRUARY 22, 2021

The 2018 National Defense Authorization Act included funding for the Departments of Defense, Homeland Security and Transportation to jointly conduct demonstrations of various alternatives to GPS, which were concluded last March. A report on the technologies was submitted to Congress last week. It needs to be more secure.

Backups 268

Backups Technology Hacking Cybersecurity 268

Schneier on Security

FEBRUARY 2, 2023

The researchers have since commercialized the technology, which is now busily defending networks for customers like the U.S. AIs would improve every year because all of the core technologies are continually improving. In 2018, I wrote about how AI could change the attack/defense balance in cybersecurity.

Artificial Intelligence 326

Artificial Intelligence Technology Software Hacking 326

Cisco Security

APRIL 29, 2021

We then compiled their answers into an e-Book, Lifting Each Other Up: A Celebration of Women in Cybersecurity and Their Advocates. . This resource illuminates how some of today’s leading infosec women experts got started in the cybersecurity industry and embraced the common goal of creating a more secure world for everyone.

Cybersecurity 144

Cybersecurity Education Technology InfoSec 144

The Last Watchdog

JANUARY 9, 2024

Augmented reality (AR) and virtual reality (VR) technologies provide intriguing opportunities for immersive and interactive experiences in cybersecurity training. AR and VR technologies can create distinct immersive experiences by merging digital reality with the physical world.

Technology 203

Technology Cybersecurity Risk Mobile 203

Schneier on Security

AUGUST 31, 2018

This is a current list of where and when I am scheduled to speak: I'm giving a book talk on Click Here to Kill Everybody at the Ford Foundation in New York City, on September 5, 2018. The Aspen Institute's Cybersecurity & Technology Program is holding a book launch for Click Here to Kill Everybody on September 10, 2018 in Washington, DC.

Technology 152

Technology Risk Cybersecurity 152

CyberSecurity Insiders

OCTOBER 31, 2022

Matt Keogh, Minister for external affairs and defense, confirmed the news and added the stolen data was of 2018 and belonged to about 40,000 veterans. The post Cybersecurity news headlines trending on Google appeared first on Cybersecurity Insiders.

Cybersecurity 129

Cybersecurity Media Ransomware Malware 129

Krebs on Security

NOVEMBER 19, 2019

A source close to the investigation told KrebsOnSecurity that NVA was hit with Ryuk , a ransomware strain first spotted in August 2018 that targets mostly large organizations for a high-ransom return. The technology team continues to set up interim workstations at each affected hospital while they prepare to rebuild servers.”

Ransomware 262

Ransomware Technology Malware Software 262

eSecurity Planet

JULY 28, 2021

Whether perceived or real, a lack of understanding about blockchain technology has slowed the adoption of advanced distributed database technology in the past decade. We’ll look at what blockchain technology is, how its development relates to cybersecurity, and the state of blockchain-based security solutions.

Cybersecurity 136

Cybersecurity Cryptocurrency Technology Energy and Utilities 136

Krebs on Security

JULY 21, 2023

Many things have changed since 2018, such as the names of the companies in the Fortune 100 list. This is actually down from five of the Fortune 100 in 2018, the last time KrebsOnSecurity performed this analysis. “But that critical separation is violated every day with the CISO or CSO reporting to the heads of technology.”

CSO 241

CSO CISO Insurance Risk 241

CSO Magazine

MAY 10, 2022

In late February, the National Institute of Standards and Technology (NIST) issued a request for information (RFI) to evaluate and enhance its Cybersecurity Framework, or CSF, first produced in 2014 and last updated in 2018. In its RFI, NIST asked a series of questions about how to improve the use of the framework.

Cybersecurity 107

Cybersecurity Risk Technology 107

eSecurity Planet

JANUARY 22, 2021

A universe of devices and technology has fallen into our laps at a speed that organizations struggle to manage effectively. Last month’s passage of the IoT Cybersecurity Improvement Act of 2020 means all IoT devices used by government agencies will soon have to comply with strict NIST standards. By 2025, we expect 21.5

IoT 145

IoT Cybersecurity Manufacturing Government 145

eSecurity Planet

JUNE 14, 2022

With the plunge in tech stocks and the freeze in the IPO market, the funding environment for cybersecurity startups has come under pressure. Despite those headwinds, there are some interesting deals getting done in the cybersecurity market. Also read: Top VC Firms in Cybersecurity for 2022. Devo Technology.

Cybersecurity 126

Cybersecurity Marketing Technology Digital transformation 126

SecureWorld News

NOVEMBER 12, 2024

In a recent SecureWorld Remote Sessions webcast, cybersecurity expert Roger Grimes of KnowBe4 shed light on a pervasive and insidious cyber threat: North Korea's "IT Army." A complex and widespread scheme According to recent reports by Recorded Future and Mandiant , Google's cybersecurity unit, this incident is part of a larger pattern.

Government 103

Government VPN Education Cyber threats 103

Security Affairs

JULY 10, 2024

Multiple cybersecurity agencies released a joint advisory warning about a China-linked group APT40 ‘s capability to rapidly exploit disclosed security flaws. Cybersecurity agencies from Australia, Canada, Germany, Japan, New Zealand, South Korea, the U.K., and the U.S.

Cybersecurity 128

Cybersecurity Hacking Software Government 128

Krebs on Security

FEBRUARY 10, 2021

” Weiss was just one of a half-dozen experts steeped in the cybersecurity aspects of industrial control systems that KrebsOnSecurity spoke with this week. ” There is nothing in the law that requires such facilities to report cybersecurity incidents, such as the one that happened in Oldsmar this past weekend.

Hacking 359

Hacking Media Cybersecurity Ransomware 359

Joseph Steinberg

MAY 12, 2021

Over the ensuing years, experts have repeatedly pointed out that not only were many of the technology systems being deployed to improve the efficiency of fuel distribution infrastructure management introducing dangerous vulnerabilities, but that a cyber-attack against the operator of a fuel pipeline was eventually going to both occur and succeed.

Energy and Utilities 219

Energy and Utilities Ransomware Artificial Intelligence Cyber Attacks 219

SiteLock

AUGUST 27, 2021

Our most recent cybersecurity research is now available in the “ Cybersecurity Trends in 2019: Protecting Websites in the Age of Stealth Attacks ” report. To compile this cybersecurity industry report, we analyzed 6 million individual websites using an algorithm our team developed to evaluate website vulnerability.

Cybersecurity 98

Cybersecurity Engineering Firewall Malware 98

SecureWorld News

JULY 17, 2024

The event not only showcases athletic prowess but also presents a significant challenge for cybersecurity professionals. The Olympics are a prime target for cyberattacks due to their high profile, the involvement of numerous stakeholders, and the extensive use of digital technologies.

Cybersecurity 127

Cybersecurity Phishing Mobile Media 127

CyberSecurity Insiders

FEBRUARY 25, 2022

Late last summer, T-Mobile, a major cellphone service carrier, once again made negative headlines on the cybersecurity front. This attack marked its fifth breach since 2018 and, in fact, the company suffered yet another breach – albeit apparently a small one — late in December. By Robert Ackerman Jr. Detection and analysis.

Cybersecurity 119

Cybersecurity Data breaches Identity Theft Cyber Attacks 119

BH Consulting

MARCH 3, 2022

Smart technologies that manage and self-regulate the built environment and its operations help businesses to enhance occupants’ convenience, reduce costs, and drive sustainability. As we’ll explore in this blog, it’s essential that cybersecurity isn’t just a coat of paint on top but is part of the design and embedded into the foundations.

Cybersecurity 98

Cybersecurity Technology IoT Digital transformation 98

Adam Levin

JANUARY 25, 2019

Trojan horse-based malware attacks and spyware rose sharply in 2018 as ransomware-based attacks declined, according to a new report published by Malwarebytes. Kaspersky and McAfee Labs both reported a 30% decline in ransomware attacks in 2018. “[T]he

Spyware 212

Spyware Ransomware Malware Banking 212

SecureWorld News

DECEMBER 10, 2021

Hundreds of thousands of organizations have downloaded the cybersecurity framework since the National Institute of Standards and Technology created it in 2014. In 2018, NIST published the only major update to the framework and now NIST says another update is coming in 2022. The 2022 NIST cybersecurity framework update.

Cybersecurity 98

Cybersecurity Technology Cyber Risk CISO 98

eSecurity Planet

SEPTEMBER 7, 2023

Much like the rest of technology, merger and acquisition (M&A) activity for cybersecurity companies has been in a slump this year. Startup Runways Dwindle A key factor that will likely drive more dealmaking activity is that CEOs of cybersecurity startups may not have much of a choice. And this may happen sooner than later.

Cybersecurity 121

Cybersecurity Marketing Software DDOS 121

Security Affairs

JANUARY 18, 2021

National Security Agency has appointed Rob Joyce as the agency’s new director of cybersecurity, who has long experience in US cybersecurity. The National Security Agency (NSA) has appointed US cybersecurity official Rob Joyce as the new chief of the Cybersecurity Directorate.

Cybersecurity 136

Cybersecurity Hacking Technology Information Security 136

The Last Watchdog

AUGUST 23, 2021

While every business needs to prioritize cybersecurity, doing so is becoming increasingly complicated. As of 2018, more than 2 million people were working abroad for U.S. Here are five unique cybersecurity challenges you should know about. If any of these are security-related, it can be a cybersecurity risk.

Internet 223

Internet Internet Government Risk 223