Close Menu
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Facebook X (Twitter) LinkedIn
Facebook X (Twitter) LinkedIn
Information Security BuzzInformation Security Buzz
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Subscribe
Information Security BuzzInformation Security Buzz
Home - Archives for ISBuzz Team - Page 658

ISBuzz Team

ISBuzz Team
  • Website

RaaS For Mac

ISBuzz TeamJune 14, 20172 Mins Read

News has broken today that two new forms of malware have emerged (one spyware, the other ransomware) that target Macs specifically and are being offered for free on the dark web by their creators. Pete Turner, Consumer Security Expert at Avast commented below. Pete Turner, Consumer Security Expert at Avast:   “The discovery of new ransomware and spyware variants which target Mac OS is hardly surprising, given the increase in open-source ransomware programs and licensed malware development found on hacking forums. “Despite the smaller install base of Mac OS making any malware or ransomware strains less profitable for cybercriminals, it was…

Read More

Urgent Call For Regulatory Action Around Defibrillator Drones

ISBuzz TeamJune 14, 20172 Mins Read

With the news that defibrillator drones are being used to save lives before ambulances arrive, Colin Bull, Principal Consultant Manufacturing and Product Development at SQS, the software quality specialist, discussing the possibility of these devices becoming compromised by cyber criminals. Colin is advocating the introduction of regulation around the use of drones to ensure that these devices which are intended to save lives, don’t become targets for hackers to infiltrate, reroute or even take down, potentially leading to the loss of life. Colin Bull, Principal Consultant Manufacturing and Product Development at SQS: “The news that drones carrying defibrillators could start saving lives…

Read More

How To Secure You Start-Up Without The Extra Stress Or Expense

ISBuzz TeamJune 14, 20174 Mins Read

 When you’re in the process of launching a start-up, security is usually at the bottom of the checklist, if not a completely non existent concern. Most entrepreneurs tend to think that small businesses are safer than big companies as they’re less likely to be on the hacking radar, but the 2016 Internet Security Threat Report by Symantec revealed that 43 percent of all phishing attacks were targeted at small businesses in 2015, which is nearly a 10 percent rise from the figures in 2014. In reality, small businesses tend to be an easier target because, unlike big corporations they have…

Read More

Lieberman Software Secures Offline Systems By Automatically Updating Local Account Passwords On Disconnected Machines

ISBuzz TeamJune 14, 20172 Mins Read

New Industry-Unique Capability Extends Privileged Identity Management Benefits to Systems Disconnected From the Corporate Network LOS ANGELES and NATIONAL HARBOR, MD – Lieberman Software Corporation today announced its patent-pending Disconnected Account Management capability for cross-platform password management of offline systems. This new capability is included in the company’s privileged identity management product, Lieberman RED – Rapid Enterprise Defense™ Identity Management. Lieberman Software is premiering this technology in booth #615 at the Gartner Security & Risk Management Summit this week in National Harbor, MD. Prior to the release of Lieberman Software’s Disconnected Account Management, privileged identity management products could only manage permanently connected systems. This left…

Read More

Today’s File Security Is So 80’s – Imperva’s Hacker Intelligence Initiative Report

ISBuzz TeamJune 13, 20172 Mins Read

Imperva, a leading voice in the world of data and application security solutions, has released a new report that researches the inability of access control to adequately limit an attacker’s scope for inflicting damage on an organisation. The new Hacker Intelligence Initiative (HII) report reveals three primary reasons why the traditional approach to file security no longer works: Permissions are granted, but rarely revoked Users do not touch most files to which they have permitted access Enterprise-level file permissions have become increasingly complex The report demonstrates that relying on access control alone broadens the risk surface and is not a sustainable method for securing…

Read More

Flaw In Virgin Media Super Hub Leaves It Open To Attack

ISBuzz TeamJune 13, 20172 Mins Read

Researchers from Context Information Security have discovered a flaw in Virgin Media wireless home routers, allowing them to gain unauthorised administrative-level access to the devices. After reverse engineering software from the Super Hub 2 and Super Hub 2AC, manufactured by Netgear, Context’s Jan Mitchell and Andy Monaghan discovered vulnerabilities in a feature allowing users to create backups of their custom configurations – such as port forwarding and dynamic DNS settings – which could be restored at a later date. While configuration backups were encrypted, the researchers found that the private encryption key was the same across all hubs in the UK.…

Read More

Authentication Bypass And OEM Backdoors In WiMAX Routers

ISBuzz TeamJune 13, 20171 Min Read

According to this link, SEC Consult has found a vulnerability in several WiMAX routers, distributed by WiMAX ISPs to subscribers. The vulnerability allows an attacker to change the password of the admin user. An attacker can gain access to the device, access the network behind it and launch further attacks, add devices into a Mirai-like botnet or just simply spy on the user. Andrew Clarke, EMEA Director at One Identity commented below. Andrew Clarke, EMEA Director at One Identity:  “Devices such as firewalls and routers and more recently IoT devices are connected to a network with default settings – this includes…

Read More

High-Tech Bridge Releases Application Security Trends Research For Q1 And Q2, 2017

ISBuzz TeamJune 13, 20176 Mins Read

High-Tech Bridge, a leading provider of web and mobile application security testing services and a “ Gartner Cool Vendor 2017” and winner of SC Europe’s Best Emerging Technology category last week, released a summary on application security trends for Q1 – Q2 2017. Statistical data mentioned in the research largely comes from the ImmuniWeb® Application Security Testing Platform and High-Tech Bridge’s free web security services, but also leverages a wealth of data from various open sources. The most interesting or important trends High-Tech Bridge is highlighting include: Bug Bounty fatigue trend is one that will continue The term “Bug Bounty fatigue” was…

Read More

Synopsys Research Highlights The Pervasive Use Of Outdated And Insecure Third-Party Software Components

ISBuzz TeamJune 13, 20173 Mins Read

Analysis of More Than 120,000 Applications Found that Half of Third-Party Software Components in Use Are Outdated LONDON, UK. Synopsys, Inc. (Nasdaq: SNPS) today released its report, “The State of Software Composition 2017,” which analysed real-world data to investigate the security of the software supply chain ­ one of the most significant challenges the software industry faces today. The report summarises the analysis of 128,782 software applications, which identified 16,868 unique versions of open source and commercial software components containing almost 10,000 unique security vulnerabilities. Synopsys used its software composition analysis product, Protecode™ SC, to analyse applications scanned from January 1, 2016 through December 31,…

Read More

Industroyer: Biggest Threat To Industrial Control Systems Since Stuxnet

ISBuzz TeamJune 13, 20175 Mins Read

The 2016 attack on Ukraine’s power grid that deprived part of its capital, Kiev, of power for an hour was caused by a cyberattack. ESET researchers have since analyzed samples of malware, detected by ESET as Win32/Industroyer, capable of performing exactly that type of attack. Whether the same malware was really involved in what cybersecurity experts consider to have been a large-scale test is yet to be confirmed. Regardless, the malware is capable of doing significant harm to electric power systems and could also be refitted to target other types of critical infrastructure. Industroyer is a particularly dangerous threat, since it is capable of…

Read More
Previous 1 … 656 657 658 659 660 … 1,258 Next
ISB-Bora-Side-Bar

 
ISB-Bora-Side-Bar
Black ISB Logo

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics

X (Twitter) LinkedIn Facebook RSS

Working With Us

  • About Us
  • Advertise With Us
  • Contact Us

Write For Us

  • How To Contribute

The Pages

  • Privacy Policy
  • Cookie Policy
  • AI Policy
  • Terms & Conditions
  • Copyright Notice

Information Security Buzz and all its contents are copyright © 2014-2025. All rights reserved. All third-party trademarks are recognized.

Type above and press Enter to search. Press Esc to cancel.

Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}