Cyber Security Newsfeeds from around the world
. On January 14, 2020, Microsoft will end support for Windows 7, Windows 2008, and Windows Mobile, leaving untold millions of Internet of Medical Things (IoMT) devices vulnerable to new exploits that can no longer be resolved with security patches.
Jo…
Continue ReadingA popular endpoint security strategy for users who have access to important data is to implement a physical air gap, also known as “Privileged Access Workstations” (PAW) or “Secure Access Workstations” (SAW). With PAWs, each end user has a separate lap…
Continue ReadingWhile election officials across North America have stepped up their efforts to block hackers from influencing the US 2020 elections, Wisconsin officials are still showing laxity in improving their Cybersecurity measures which could negatively influence…
Continue ReadingBy Rick Anderson, delivery director, Wind River. While ATM security is not necessarily “life critical” as with many other industries (think transportation, medical and some industrial applications) there are certainly financial and identity theft risks…
Continue ReadingThis is a comprehensive report on ransomware-related events covering a timeframe of January 2017 through June 2018. The incidents herein are visually broken down into categories, including new ransomware, updates of existing strains, decryptors release…
Continue ReadingHEROPOINT RANSOMWARE DISSECTED In-dev sample called HeroPoint appends random numbers to filenames and demands $20 worth of Bitcoin for recovery. FILE-LOCKER RANSOMWARE TWEAK This Korean ransomware switches from using the .locked file extension to .razy…
Continue ReadingAmbassador Averell Harriman proudly received the plaque and had it mounted on the wall of the study in his Moscow residence. But the plaque wasn’t all it seemed – it was a bug, a passive listening device that could only be activated when a radio signal…
Continue ReadingBut while you can’t guarantee complete safety against your information being exposed in a data breach, you can take steps to protect your personal email accounts and their passwords. And the best news? Doing this relies mostly on common-sense strategie…
Continue ReadingHoneypots can be useful tools for gathering information on current attack techniques. Conversely, they can be an overwhelming source of data if you don’t have a specific goal in mind. I have been running a series of honeypots with rsync, FTP, SMB, and …
Continue ReadingCurrent Description. An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability can allow an unprivileged functi…
Continue Reading