Tools & Practices November 7, 2016 FittedCloud Joins AWS Partner Network and Makes Cloud Cost Optimization Solution Available on AWS Marketplace Acton, MA-based FittedCloud, one of the leading providers of cloud optimization and management solutions, has announced it has now joined the AWS Partner Network (APN) ... Read more
Security Breaches November 4, 2016 BEC Attack on El Paso Resulted in Theft of $3.2 Million The threat from business email compromise attacks has been clearly highlighted by the recently discovered BEC attack on El Paso, TX. According to the Mayor ... Read more
Compliance November 4, 2016 Infosec Institute Makes TrainingIndustry.com’s Top 20 List for 6 Years in a Row The Elmwood Park, IL-based Infosec Institute is an accelerated IT training school founded in 1998. The company has trained more than 45,000 individuals through 99 ... Read more
Security Breaches November 3, 2016 Windows Flaw Already Being Exploited by Hackers Russian hackers have been actively exploiting two zero-day vulnerabilities prior to Google’s announcement of the flaws. Google’s Threat Analysis Group announced the flaws, including how ... Read more
Trends & Reports November 2, 2016 MediaPro Included in 2016 Gartner Magic Quadrant for Security Awareness CTB Vendors MediaPro has announced it has been included in the 2016 Gartner Magic Quadrant for Security Awareness Computer-Based Training Vendors. MediaPro is a leading provider of ... Read more
Cyber Threats November 1, 2016 Computer Virus Results in Cancellation of All Operations in Three UK Hospitals A National Health Service Trust in the United Kingdom has reported being attacked with a computer virus. The incident was so severe it has forced ... Read more
Security Breaches November 1, 2016 SSL-Based DDoS Attacks ‘Trend of Q3’, says Kaspersky Lab According to the latest threat intelligence report from Kaspersky Lab, cybercrime-as-a-service has proliferated in recent months and the cybercrime trend of the quarter is SSL-based ... Read more
Trends & Reports November 1, 2016 PhishLine Included in Gartner Magic Quadrant for Security Awareness Computer-Based Training Anti-phishing training company PhishLine has been recognized by Gartner as a leader in the field of security awareness training having been added to the Gartner ... Read more
Security Breaches October 31, 2016 Joomla Website Attacks Increase as Hackers Reverse Engineer Patches Two recently discovered critical vulnerabilities in the Joomla content management system are now being used by hackers in a wave of attacks on Joomla websites. ... Read more
Trends & Reports October 31, 2016 UK Government to Commit £1.9bn to Cybersecurity Defenses The increasing threat to the UK’s critical infrastructure has prompted the government to commit more funds to cybersecurity defenses. In a recent speech, the UK ... Read more
Cyber Threats October 27, 2016 NetSkope Performs Analysis of CloudFanta Malware A new report published by NetSkope Threat Research Labs casts some light on CloudFanta malware, which is currently being spread via spearphishing campaigns. CloudFanta malware ... Read more
Security Breaches October 27, 2016 Beazley Data Breach Insights Report Highlights Extent of Ransomware Problem The Beazley Data Breach Insights Report is an annual publication summarizing the data breaches experienced by the company’s clients in the first nine months of ... Read more
Security Breaches October 27, 2016 New Locky Ransomware Variant Detected in Three Major Campaigns Locky ransomware continues to spread at an alarming pace, in part due to the number of different Locky ransomware variants that have now been released. ... Read more
Compliance October 27, 2016 Hacktivist Indicted for Hospital DDoS Attacks DDoS attacks rarely result in prosecution; however, this week the hacktivist allegedly behind a series of major hospital DDoS attacks in 2014 has been indicted ... Read more
Tools & Practices October 27, 2016 Critical Joomla Vulnerabilities Addressed in New Security Release Two critical Joomla vulnerabilities and a 2-factor authentication bug have been addressed this week. A new version of Joomla 3x was released on Tuesday – ... Read more
Compliance October 27, 2016 Emergency Flash Player Update Issued to Address Critical Flaw An emergency Flash Player update has been issued by Adobe to plug a critical vulnerability that is currently being exploited in the wild. The flaw ... Read more
Trends & Reports October 27, 2016 Cloud Cruiser Survey Highlights Need for a Solution to Monitor and Analyze Cloud Usage Cloud Cruiser has published the results of a survey conducted at the recent Microsoft Ignite conference in Atlanta, Georgia that has revealed there is a ... Read more
Compliance October 26, 2016 Cisco Email Security Appliance Flaws Patched On Wednesday this week, updated software was released to address nine Cisco email security appliance flaws. Cisco has not uncovered any evidence to suggest that ... Read more
Security Breaches October 26, 2016 4.3 Million IoT Devices Recalled in Effort to Curb DDoS Attacks Hangzhou Xiongmai Technology – a major Chinese electronics company – has announced it is recalling thousands of IoT devices after they were hijacked by hackers ... Read more
Cyber Threats October 26, 2016 MediaPro Report Shows 88% of Employees Lack Understanding of Cyber Threats MediaPro has recently conducted a survey on 1,000 employees and members of the public to find out more about the general level of security awareness. ... Read more
Compliance October 25, 2016 Healthcare Industry at Risk from More than 200 Ransomware Families Healthcare ransomware attacks have increased dramatically in 2016, and so has the number of threats. While healthcare organizations work hard at improving their defenses to ... Read more
Trends & Reports October 25, 2016 St. Jude Medical Faces New Allegations of Medical Device Vulnerabilities In August, Muddy Waters published a report that alleged certain St. Jude Medical devices were susceptible to cytberattacks that placed the safety of patients at ... Read more
Compliance October 25, 2016 Warning Issued on Fake Microsoft Security Essentials Installer A fake Microsoft Security Essentials installer is being used by scammers to fool users into calling a bogus tech support team. The fake Microsoft Security ... Read more
Tools & Practices October 25, 2016 Guidance on HIPAA and the FTC Act The Federal Trade Commission (FTC) in conjunction with the Department of Health and Human Services’ Office for Civil Rights (OCR) has issued guidance on HIPAA ... Read more
Cyber Threats October 24, 2016 Cloud Hosting Services Used to Host and Spread Malware Major cloud services including Amazon’s AWS and the Google cloud platform are being used to distribute malware, according to security researchers. Georgia Tech graduate student ... Read more
Cyber Threats October 24, 2016 Phishing Scam Fools Baystate Health Employees and Exposes PHI Phishing is a technique commonly used by cybercriminals as an easy way of gaining access to healthcare data. The aim of the scam is to ... Read more
Compliance October 21, 2016 Healthcare Data Breaches Occurring at an Alarming Rate Healthcare data breaches are increasing at the year goes on, according to the latest Breach Barometer report from Protenus. As if the breach tally for ... Read more
Cyber Threats October 21, 2016 Dirty Cow Linux Kernel Security Flaw Being Actively Exploited The Dirty Cow Linux kernel security flaw (CVE-2016-5195) discovered by a security researcher at software vendor Red Hat is being actively exploited in the wild. ... Read more
Compliance October 21, 2016 Critical VeraCrypt Flaws Patched: Users Urged to Upgrade Critical VeraCrypt flaws that were recently uncovered by cybersecurity firm QuarksLab have now been patched in version 1.19 of the popular full-disk encryption software. Users ... Read more
Security Breaches October 21, 2016 Lack of Skilled CyberSecurity Experts Hampering Breach Response The nation faces a serious shortage of skilled cybersecurity professionals and the lack of skilled staff is making it hard for organizations to prevent cyber-attacks ... Read more