Dark Reading

AUGUST 20, 2020

The charges stem from a 2016 attack in which 57 million records were breached.

CSO 85

CSO Hacking 85

CSO Magazine

MARCH 3, 2021

Sign up for CSO newsletters. ]. The flaws allow the extraction of mailbox contents and the installation of backdoors on vulnerable servers. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

CSO 117

CSO Hacking Education Internet 117

The Security Ledger

MAY 16, 2024

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments. For Hacking. Read the whole entry. »

CSO 59

CSO Risk Energy and Utilities Social Engineering 59

Security Affairs

DECEMBER 21, 2022

American identity and access management giant Okta revealed that that its private GitHub repositories were hacked this month. Okta revealed that its private GitHub repositories were hacked this month, the news was first reported by BleepingComputer which had access to ‘confidential’ email notification sent by Okta.

Hacking 102

Hacking CSO Data breaches Engineering 102

CSO Magazine

MAY 19, 2022

Case in point: A federal judge recently ordered Uber Technologies to work with its former CSO, Joseph Sullivan (who held the position from April 2015 to November 2017), and review a plethora of Uber documents that Sullivan has requested in unredacted form for use in his defense in the upcoming criminal trial.

CISO 107

CISO CSO Data breaches Media 107

The Security Ledger

OCTOBER 4, 2023

Tanya Janca of the group We Hack Purple, talks with Security Ledger host Paul Roberts about the biggest security mistakes that DevSecOps teams make, and application development’s “tragedy of the commons,” as more and more development teams lean on open source code. The post Episode 253: DevSecOps Worst Practices With Tanya Janca of We Hack.

Hacking 97

Hacking CSO Education IoT 97

CSO Magazine

AUGUST 11, 2022

[Editor's note: This article originally appeared on the CSO Germany website on July 29.] Claire Tills, senior research engineer at Tenable, describes the methods of the hacking group Lapsus$ as bold, illogical and poorly thought out. They stole data and sometimes used ransomware to extort their victims.

CSO 106

CSO Engineering Ransomware Hacking 106

CSO Magazine

SEPTEMBER 30, 2021

Sign up for CSO newsletters ! ]. The group is considered the hacking arm of Russia's foreign intelligence service, the SVR and is known for its high level of sophistication and stealth. How well do you know these 9 types of malware and how to recognize them. To read this article in full, please click here

CSO 125

CSO Malware Government Hacking 125

CSO Magazine

JUNE 3, 2021

As Roger Grimes wrote in this article about two-factor hacks three years ago, when MFA is done well it can be effective, but when IT managers take shortcuts it can be a disaster. Multi-factor authentication (MFA) continues to embody both the best and worst of business IT security practice.

Hacking 122

Hacking Accountability Authentication 122

CSO Magazine

APRIL 20, 2021

Sign up for CSO newsletters. ]. Some of the flaws date from 2019 and 2020, but one was unknown until this month. Keep up with 8 hot cyber security trends (and 4 going cold). Give your career a boost with top security certifications: Who they're for, what they cost, and which you need.

VPN 98

VPN CSO Hacking Authentication 98

Threatpost

AUGUST 21, 2020

Joseph Sullivan allegedly paid off $100K to the hackers responsible for a 2016 data breach, which exposed PII of 57 million passengers and drivers.

CSO 104

CSO Data breaches Hacking 104

CSO Magazine

NOVEMBER 2, 2021

7 ways to hack a phone. We spoke to a number of security experts to help you get a sense of the most common ways attackers might go about breaking into the powerful computers in your users’ pockets. This should hopefully give you perspective on potential vulnerabilities. Social engineering. Malvertising. Pretexting. Breaking in via Bluetooth.

Social Engineering 137

Social Engineering Hacking Engineering Malware 137

Security Boulevard

OCTOBER 7, 2022

Another major crypto hack, this time at Binance, Ferrari denies reports of a ransomware attack, Uber's former CSO found guilty of covering up attacks. The post Cybersecurity News Round-Up: Week of October 3, 2022 appeared first on Security Boulevard.

CSO 94

CSO Cybersecurity Ransomware Hacking 94

CSO Magazine

MARCH 19, 2021

The group behind the malware is known for using manual hacking techniques and open-source tools to move laterally through private networks and gain administrative access to as many systems as possible before initiating the file encryption. Get the latest from CSO by signing up for our newsletters. ]

Ransomware 98

Ransomware CSO Encryption Government 98

CSO Magazine

FEBRUARY 7, 2022

Social engineering is the art of exploiting human psychology, rather than technical hacking techniques, to gain access to buildings, systems, or data. Get the latest from CSO by signing up for our newsletters. ] Get the latest from CSO by signing up for our newsletters. ] What is social engineering?

Social Engineering 98

Social Engineering Engineering CSO Passwords 98

CSO Magazine

MAY 28, 2021

The Russian hacking group behind the supply chain attack that poisoned software updates for the SolarWinds Orion platform has been perfecting its email-based attacks over the past few months to plant backdoors inside organizations. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

CSO 105

CSO Government Marketing Hacking 105

The Last Watchdog

JULY 25, 2024

SolarWinds redux In many ways, CrowdStrike was a repeat of the SolarWinds supply chain hack. Dimitri Chichlo , CSO, BforeAI Chichlo Our networks remain fragile because of interdependence and the assumption that technology always works.

Technology 317

Technology Ransomware Software Cyber Attacks 317

CSO Magazine

MARCH 21, 2022

We've assembled eight truly disastrous IT security failures over the past decade, with the goal of finding not just clever hacks, but real mistakes on the part of the victims. Sign up for CSO newsletters. ]. Hopefully you'll come away with some ideas on how not to suffer a disaster of your own.

Social Engineering 113

Social Engineering CSO Engineering Data breaches 113

The Security Ledger

SEPTEMBER 25, 2018

Everybody worries about hacked voting machines. In this week’s podcast (#113): Everybody worries about hacked voting machines. A shadowy hacking group calling itself the “Broken Eagle Task Force” (or BETF) is protesting the ‘global order,’ and looking to disrupt voting within the city’s environs. SAP CSO Justin Somaini.

CSO 40

CSO Hacking Security Awareness Password Management 40

Security Affairs

AUGUST 10, 2018

Researchers demonstrated how a sophisticated threat actor can hack a brand new Apple Mac computer in enterprise environments through MDM. The security duo reported the hacking technique to Apple in April and early May Apple acknowledged it. Securi ty Affairs – mobile device management, hacking). Pierluigi Paganini.

Hacking 70

Hacking CSO Advertising Mobile 70

CSO Magazine

OCTOBER 6, 2022

Yesterday, a federal jury handed down a guilty verdict to Joe Sullivan, the former CSO on charges of “obstruction of the proceedings of the Federal Trade Commission and misprision of felony in connection with the attempted cover-up of a 2016 hack at Uber” according to a notice published by the Department of Justice (DOJ).

CSO 91

CSO CISO Data breaches Hacking 91

Security Affairs

FEBRUARY 22, 2021

“Clubhouse cannot provide any privacy promises for conversations held anywhere around the world,” said Alex Stamos, director of Stanford Internet Observatory and former Facebook CSO. Lets talk about the Clubhouse 'hack' which wasn't. SecurityAffairs – hacking, Clubhouse). ” reported Bloomberg.

CSO 124

CSO Internet Internet Surveillance 124

CSO Magazine

OCTOBER 24, 2022

The Atomic Energy Organization of Iran on Sunday confirmed that an email server at its Bushehr Nuclear Power Plant was hacked. The organization blamed a foreign country, but an Iranian hacking group that goes by the name Black Reward has claimed responsibility for the breach.

Hacking 84

Hacking Media 84

CSO Magazine

APRIL 5, 2022

In an SEC filing made on Monday, Cash App parent company Block, Inc., said that it was working to contact roughly 8.2 million past and present customers of its investment services, as names, brokerage portfolio values and account numbers were compromised in a data breach.

Hacking 118

Hacking Data breaches Passwords Accountability 118

CSO Magazine

MARCH 1, 2022

Cyber Partisans of Belarus claim train hacks. Another hacktivist group known as AgainstTheWest claims to have hacked a steady stream of Russian websites and corporations, including Russian Government contractor promen48.ru, Presumed hacktivists hacked Russian EV charging stations. AgainstTheWest targeted Russian interests.

DDOS 115

DDOS Hacking Media CSO 115

CSO Magazine

JUNE 5, 2023

A cyberattack on crypto wallet Atomic Wallet has resulted in at least $35 million worth of crypto assets being stolen since June 2, according to ZachXBT, an independent on-chain investigator known for tracing stolen crypto funds and assisting with hacked projects. The five most significant losses account for $17 million.

Hacking 96

Hacking Accountability 96

CSO Magazine

APRIL 1, 2022

Two teenagers from the UK have been charged by police over hacking offenses in relation to an international investigation into the LAPSUS$ group. In a statement , Detective Inspector Michael O’Sullivan, City of London Police, said: “The City of London Police has been conducting an investigation into members of a hacking group.

Hacking 93

Hacking Data breaches Authentication Software 93

CSO Magazine

MARCH 29, 2022

Ethical hacking, also known as penetration testing , is legally breaking into computers and devices to test an organization's defenses. From the penetration tester's point of view, there is no downside: If you hack in past the current defenses, you’ve given the client a chance to close the hole before an attacker discovers it.

Hacking 88

Hacking Penetration Testing Technology 88

CSO Magazine

JULY 20, 2021

Following a push by the White House to address the ransomware crisis emanating from Russia and the imposition of sanctions on Russia for its spree of malicious cyber actions, the Biden administration has launched a multi-part strategy to shame another digital security adversary, China, into halting its digital malfeasance.

Hacking 134

Hacking Ransomware 134

CSO Magazine

APRIL 5, 2021

Details of the 2020 SolarWinds attack continue to unfold, and it may be years before the final damages can be tallied.

Hacking 128

Hacking Software Risk 128

CSO Magazine

FEBRUARY 28, 2023

Password management company LastPass, which was hit by two data breaches last year , has revealed that data exfiltrated during the first intrusion, discovered in August, was used to target the personal home computer of one of its devops engineers and launch a second successful cyberatttack, detected in November.

Data breaches 133

Data breaches Engineering Password Management Hacking 133

GlobalSign

OCTOBER 7, 2022

Another major crypto hack, this time at Binance, Ferrari denies reports of a ransomware attack, Uber's former CSO found guilty of covering up attacks

CSO 59

CSO Cybersecurity Ransomware Hacking 59

CSO Magazine

JUNE 24, 2022

RCS Lab spyware uses known exploits to install harmful payloads and steal private user data, according to a Google report.

Spyware 125

Spyware Hacking 125

CSO Magazine

MAY 10, 2022

The second is a collaboration with cybersecurity training and upskilling platform Hack The Box to assist the development of offensive security capabilities. The first is a partnership with cyber workforce optimization platform Immersive Labs to support the development of defensive and offensive security skills.

Hacking 79

Hacking Cybersecurity Information Security 79

The Security Ledger

AUGUST 7, 2024

Related Stories Cyber Attack Halts Production at Ag Equipment Maker AGCO Fendt Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk China Calls Out U.S. For Hacking. The post At Nebraska Event, FBI Calls Out Cyber Threats To Agriculture appeared first on The Security Ledger with Paul F.

Cyber threats 52

Cyber threats CSO Cyber Attacks Cyber Risk 52

CSO Magazine

APRIL 26, 2023

Iranian state-sponsored threat actor, Educated Manticore, has been observed deploying an updated version of Windows backdoor PowerLess to target Israel for phishing attacks, according to a new report by Check Point. Researchers have also linked Educated Maticore hackers to APT Phosphorus, which operates in the Middle East and North America.

Phishing 102

Phishing Education Hacking 102

The Security Ledger

JULY 22, 2024

For Hacking. Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk Episode 256: Recursive Pollution? The post Security Teams Lean Into AI As Cyber Worker Shortage Persists appeared first on The Security Ledger with Paul F. Related Stories China Calls Out U.S. Data Feudalism? Gary McGraw On LLM Insecurity

Artificial Intelligence 52

Artificial Intelligence CSO Hacking Risk 52