Infosec News

Carries news items (generally from mainstream sources) that relate to security.

Carries news items (generally from mainstream sources) that relate to security.
  1. Posted by InfoSec News on May 23

    I never expected I would be sending this note out as Christian Wright was
    one of my oldest friends outside of all things IT but also inside the
    security community and industry.

    I've been absolutely beside myself over the news and its why I have had a
    really hard time sending out InfoSec News for the last week.

    Christian was truly a great person in this community and kind, I'm really
    going to miss our talks and not running into him...
  2. Posted by InfoSec News on May 15

    https://www.cyberscoop.com/nsa-exploits-reverse-engineering-vulnerabilities-equities-process-symantec/

    By Shannon Vavra
    CYBERSCOOP
    May 14, 2019

    U.S. military commanders say that when U.S. Cyber Command and the National
    Security Agency use a capability against targets abroad, they understand it
    might eventually be used by an adversary.

    The threat of having the NSA's tools leaked has been an issue inside the agency
    for years now --...
  3. Posted by InfoSec News on May 15

    https://www.zdnet.com/article/microsoft-may-2019-patch-tuesday-arrives-with-fix-for-windows-zero-day-mds-attacks/

    By Catalin Cimpanu
    Zero Day
    ZDNet.com
    May 14, 2019

    Today, Microsoft released its monthly batch of security updates known as Patch
    Tuesday, and this month's security release includes fixes for 79
    vulnerabilities in a wide range of Microsoft products.

    The two headliners of this month's patches are CVE-2019-0863, a...
  4. Posted by InfoSec News on May 15

    https://www.cnn.com/2019/05/14/politics/shadow-war-chinese-spy/index.html

    By Jim Sciutto
    CNN Anchor and Chief National Security Correspondent
    CNN.com
    May 14, 2019

    New York (CNN) - Adapted from "The Shadow War: Inside Russia and China's Secret
    Operations to Defeat America" by Jim Sciutto. Copyright © 2019. Available from
    Harper Collins. [1]

    To his American friends and contacts, Stephen Su was an affable businessman and...
  5. Posted by InfoSec News on May 15

    https://www.wired.com/story/cisco-router-bug-secure-boot-trust-anchor/

    By Lily Hay Newman
    Security
    Wired.com
    05.13.19

    THE CISCO 1001-X series router doesn't look much like the one you have in your
    home. It's bigger and much more expensive, responsible for reliable
    connectivity at stock exchanges, corporate offices, your local mall, and so on.
    The devices play a pivotal role at institutions, in other words, including some
    that deal...
  6. Posted by InfoSec News on May 15

    https://www.cbronline.com/news/trend-micro-symantec-fxmsp

    By Ed Targett
    Editor
    Computer Business Review
    May 13, 2019

    "Immediate action was taken to quarantine the lab"

    UPDATED 23:45 GMT with amended comment from Symantec, AdvIntel.

    Trend Micro today admitted it had suffered “unauthorised access to a single
    testing lab network by a third party”. The comment came after New York-based
    threat intelligence company Advanced...
  7. Posted by InfoSec News on May 15

    https://www.csoonline.com/article/3394048/200-million-record-breach-why-collecting-too-much-data-raises-risk.html

    By J.M. Porup
    Senior Writer
    CSO
    May 14, 2019

    If you don't collect it, no one can steal it.

    Sometimes the best way to secure customer data is not to collect it in the
    first place. While it can be tempting to "collect it all" just in case, most
    enterprises need far less data on their users to market to them...
  8. Posted by InfoSec News on May 15

    https://www.cnbc.com/2019/05/14/cybersecurity-firm-crowdstrike-files-to-go-public.html

    By Jordan Novet
    CNBC.com
    May 14, 2019

    Security software vendor Crowdstrike filed to go public on Tuesday, joining a
    growing crop of richly valued technology companies hitting the public markets.

    In the year that ended on Jan. 31, Crowdstrike had a net loss of $140 million,
    while revenue more than doubled to $249.8 million, according to the company’s...
  9. Posted by InfoSec News on May 15

    https://techcrunch.com/2019/05/14/zombieload-flaw-intel-processors/

    By Zack Whittaker
    TechCrunch
    May 14, 2019

    Security researchers have found a new class of vulnerabilities in Intel chips
    which, if exploited, can be used to steal sensitive information directly from
    the processor.,

    The bugs are reminiscent of Meltdown and Spectre, which exploited a weakness in
    speculative execution, an important part of how modern processors work.
    Speculative...
  10. Posted by InfoSec News on May 13

    https://www.vice.com/en_uk/article/vb9bjj/researchers-are-liberating-thousands-of-pages-of-forgotten-hacking-history-from-the-us-government

    By Lorenzo Franceschi-Bicchierai
    Vice.com
    11 May 2019

    This article originally appeared on VICE US.

    In 1989, just a few months after the web became a reality, a computer worm
    infected thousands of computers across the world, including those of NASA. The
    worm showed a message on the screens of the infected...

logo joomla Open Source CMS   logo Magento Open Source eCommerce     logo Paypal Credit Card Processinglogo Adobe Illustrator & Photoshoplogo Google Analytics & Adwords

Login Form