Top

Category: Security


Operations Security, Security

The real reason you’re failing at PCI DSS compliance

December 8, 2017

Via: CIO

For nine years, Verizon has released its annual Payment Security Report about the state of Payment Card Industry Data Security Standard (PCI DSS) compliance. For nine years, the pattern has remained the same: Many companies don’t comply with the standard, […]


Operations Security, Security

macOS High Sierra 10.13.2 is here with enterprise and security updates

December 7, 2017

Via: ArsTechnica

Rounding out several days of OS updates that included iOS 11.2, tvOS 11.2, and watchOS 4.2, Apple today rolled out macOS High Sierra 10.13.2 for supported Macs. You can download the update now from the Mac App Store. The update […]


Attacks & Breaches, Security

100,000-strong botnet built on router 0-day could strike at any time

December 5, 2017

Via: ArsTechnica

Attackers have used an advanced new strain of the Mirai Internet-of-things malware to quietly amass an army of 100,000 home routers that could be used at any moment to wage Internet-paralyzing attacks, a researcher warned Monday. Botnet operators have been […]


Mobile Security, Security

Mobile apps demand collides with security concerns

December 1, 2017

Via: FCW

Mobile apps are embedded in the lives of service members, on and off duty, driving a demand for mission and third-party apps — and increasing security exposure across government. Tom Karygiannis, the product VP for Kryptowire, said the company has […]


Networking Security, Security

How CIOs can relieve the tension between security and network operations

November 30, 2017

Via: CIO

In almost every conversation I have with CIOs, a common theme comes up: how to get the silos within IT to work together. The relationships between the different groups vary, but the one that seems to have the most tension […]


Attacks & Breaches, Security

Will new breach reporting rules make defense firms more secure?

November 30, 2017

Via: FCW

New information security rules governing defense industrial base firms take effect on Dec. 31. The rules require compliance with the new standard for protecting “controlled unclassified information” from the National Institute of Standards and Technology and set time limits on […]


Attacks & Breaches, Security

Windows security: New BSOD scam emerges from fake tech-support swamp

November 30, 2017

Via: ZDnet

The scams tricked people into thinking they had viruses and malware, and charged them for unnecessary repairs. Tech-support scammers are using fake blue screen of death (BSOD) messages and a bogus ‘Troubleshooter for Windows’ application to dupe victims into paying […]


Attacks & Breaches, Security

Hacker pleads guilty to huge Yahoo hack, admits helping Russia’s FSB

November 29, 2017

Via: ArsTechnica

A Canadian man has pleaded guilty to hacking charges related to a 2014 spear-phishing operation of Yahoo employees. The hack ultimately compromised 500 million Yahoo accounts. The operative, Karim Baratov, appeared in a San Francisco federal court on Tuesday afternoon. […]


Operations Security, Security

Apple releases a macOS security update to fix huge login security flaw

November 29, 2017

Via: Tech Crunch

Apple has just released a security update for macOS High Sierra and you should update right now (Apple will automatically push the security patch later today). This update fixes yesterday’s very concerning vulnerability that let anyone log into your Mac […]


Attacks & Breaches, Security

New NSA leak exposes Red Disk, the Army’s failed intelligence system

November 28, 2017

Via: ZDnet

The contents of a highly sensitive hard drive belonging to a division of the National Security Agency have been left online, ZDNet has learned. The virtual disk image contains over 100 gigabytes of data from an Army intelligence project, codenamed […]