News Archives - Page 3 of 2360

News

Facebook users will be notified when their credentials are used for third-party app logins

January 16, 2020

Facebook will (finally!) explicitly tell users who use Facebook Login to log into third-party apps what information those apps are harvesting from their FB account. At the …

Embedding security, the right way

January 16, 2020

As organizations proceed to move their processes from the physical world into the digital, their risk profile changes, too – and this is not a time to take risks. By not …

Emotet remains the dark market leader for delivery-as-a-service

January 16, 2020

The vast majority of nationally sponsored cybersecurity incidents take the form of espionage through data exfiltration, with frequent employment of remote access tool Plug-X, …

Six trends attracting the attention of enterprise technology leaders

January 16, 2020

Organizations around the world will accelerate enterprise technology investment in 2020, leveraging digital improvements to make them more competitive, improve connections …

Global security services industry to experience spend growth of more than $80 billion

January 16, 2020

The global security services industry is poised to experience spend growth of more than $80 billion between 2019-2024 at a CAGR of over 8% during the forecast period, …

High-risk Google account owners can now use their iPhone as a security key

January 15, 2020

Google users who opt for the Advanced Protection Program (APP) to secure their accounts are now able to use their iPhone as a security key. About Google’s Advanced Protection …

Kubernetes bug bounty program open to anyone, rewards up to $10,000

January 15, 2020

The Cloud Native Computing Foundation is inviting bug hunters to search for and report vulnerabilities affecting Kubernetes. Offered bug bounties range between $100 to …

Companies increasingly reporting attacks attributed to foreign governments

January 15, 2020

More than one in four security managers attribute attacks against their organization to cyberwarfare or nation-state activity, according to Radware. Nation-state intrusions …

Cyber attackers turn to business disruption as primary attack objective

January 15, 2020

Over the course of 2019, 36% of the incidents that CrowdStrike investigated were most often caused by ransomware, destructive malware or denial of service attacks, revealing …

Budgetary, policy, workforce issues influencing DOD and intelligence community IT priorities

January 15, 2020

Information Technology spending by Department of Defense (DOD) and Intelligence Community (IC) agencies will continue to grow as they work to keep pace with the evolution of …

January 2020 Patch Tuesday: Microsoft nukes Windows crypto flaw flagged by the NSA

January 14, 2020

As forecasted, January 2020 Patch Tuesday releases by Microsoft and Adobe are pretty light: the “star of the show” is CVE-2020-0601, a Windows flaw flagged by the …

Security pitfalls to avoid when programming using an API

January 14, 2020

OWASP’s API Security Project has released the first edition of its top 10 list of API security risks. The most common and perilous API security risks API abuse is an …

News

Facebook users will be notified when their credentials are used for third-party app logins

Embedding security, the right way

Emotet remains the dark market leader for delivery-as-a-service

Six trends attracting the attention of enterprise technology leaders

Global security services industry to experience spend growth of more than $80 billion

High-risk Google account owners can now use their iPhone as a security key

Kubernetes bug bounty program open to anyone, rewards up to $10,000

Companies increasingly reporting attacks attributed to foreign governments

Cyber attackers turn to business disruption as primary attack objective

Budgetary, policy, workforce issues influencing DOD and intelligence community IT priorities

January 2020 Patch Tuesday: Microsoft nukes Windows crypto flaw flagged by the NSA

Security pitfalls to avoid when programming using an API

Don't miss

Did Apple drop end-to-end encrypted iCloud backups because of the FBI?

Honeywell Maxpro VMS/NVR systems vulnerable to hijacking

Container security requires continuous security in new DevSecOps models

Email security industry miss rates when encountering threats are higher than 20%

First patches for the Citrix ADC, Gateway RCE flaw released