Close Menu
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Facebook X (Twitter) LinkedIn
Facebook X (Twitter) LinkedIn
Information Security BuzzInformation Security Buzz
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Subscribe
Information Security BuzzInformation Security Buzz
Home - Archives for ISBuzz Team - Page 680

ISBuzz Team

ISBuzz Team
  • Website

Verizon Data Breach Report

ISBuzz TeamApril 28, 20176 Mins Read

Following the Verizon data breach report, IT security experts from Barracuda, High-Tech Bridge, Bromium and CipherCloud commented below. Wieland Alge, GM EMEA at Barracuda:  “The results of the Verizon 2017 Data Breach Investigations Report are very interesting, with many of the findings confirming what we’ve been seeing on the front lines for some time. Ransomware: The report’s finding of a 50% increase in ransomware comes as no surprise to us. Ransomware use has exploded recently as an easy way for cyber criminals to make money. As long as people keep on paying the ransoms, attackers will continue to infect users. It’s…

Read More

Linux Shishiga Malware Targeting IoT

ISBuzz TeamApril 28, 20172 Mins Read

A new strain of malware – Linux/Shishiga is targeting IoT and leverages weak, default credentials to insert itself into systems through a bruteforce attack. Bob Noel, Director of Strategic  Relationships and Marketing at Plixer International commented below. Bob Noel, Director of Strategic Relationships and Marketing at Plixer International: “Linux/Shishiga is a recent example of malware written to focus on vulnerable IoT devices.  Like many other forms of botnet malware that have proceeded it, such as Mirai and Hajime, Shishiga targets IoT devices which use default Telnet and SSH credentials.  Through a brute force attack, it can gain access to IoT devices.…

Read More

300,000 Obeying Devices: Hajime Is Conquering The Internet Of Things World

ISBuzz TeamApril 28, 20173 Mins Read

Kaspersky Lab has published the results of its investigation into the activity of Hajime – a mysterious evolving Internet of Things (IoT) malware that builds a huge peer-to-peer botnet. The botnet has recently been propagating extensively, infecting multiple devices worldwide. To date, the network includes almost 300,000 malware-compromised devices, ready to work together, to perform the malware author’s instructions without their victims’ knowledge. Still, Hajime’s real purpose remains unknown. Hajime, meaning ‘beginning’ in Japanese, showed its first signs of activity in October 2016. Since then, it has been evolving, developing new propagation techniques. The malware is building a huge peer-to-peer…

Read More

John Mcafee Reveals ‘World’s First Truly Private’ Smartphone

ISBuzz TeamApril 28, 201710 Mins Read

Cybersecurity pioneer John McAfee has revealed plans to produce the “world’s first truly private smartphone,” which he claims will be the most hack-proof smartphone ever manufactured. McAfee, creator of the eponymous antivirus program, plans to release the John McAfee Privacy Phone later this year through MGT, a cybersecurity firm that he heads. He shared details about the Privacy Phone exclusively with Newsweek. IT security experts from cyber security companies DomainTools, Tripwire, ESET, AlienVault, Cylance, Comparitech.com, Synopsys and AlertLogic discuss smartphone security and whether there is a need for such a device. Kyle Wilhoit, Senior Security Researcher at DomainTools: “I’m a proponent…

Read More

NYCRR: State Regulations Around Cybersecurity

ISBuzz TeamApril 28, 20172 Mins Read

Effective March 1st of this year, the New York Department of Financial Services introduced one of the harshest cybersecurity regulations to hit companies in the U.S. – 23 NYCRR Part 500 aka the Cybersecurity Requirements for Financial Services Companies, a regulation designed to tighten cybersecurity practices across a wide selection of companies. Five other states are also set to introduce similar regulations including Hawaii, Illinois, New Mexico, Texas, and North Dakota.  Announcements from those states are expected over the next couple of weeks. 23 NYCRR Part 500 covers anyone “operating under or required to operate under a license, registration, charter, certificate, permit, accreditation…

Read More

Chinese And Russian Cyber Communities Dig Into Malware From April Shadow Brokers Release

ISBuzz TeamApril 27, 20172 Mins Read

As of April 15, the Chinese cyber community had begun to investigate the most recent release of malware from the Shadow Brokers group. Security researchers and cyber actors reversed several of the tools and were particularly interested in the exploit framework (named FUZZBUNCH), the SMB malware (ETERNALBLUE), and the privilege escalation tool (ETERNALROMANCE). Chinese-speaking actors additionally focused on the unique malware trigger point and some claimed that the patches for CVE-2017-0143 through -0148 were insufficient because they did not address the base code weaknesses. Mentions of one of the tools, ETERNALBLUE, on the Chinese language web over time. Mentions of…

Read More

Do We Really Need Anti-Virus Software?

ISBuzz TeamApril 27, 20174 Mins Read

The online world is ablaze with a discussion about whether having anti-virus software on a computer could actually pose a greater risk than the malware it is intended to safeguard against. It was Robert O’Callahan, formerly head developer at Mozilla, who got the ball rolling. He advised computer users to disable all virus scanners from their computers and not to purchase any new security software. O’Callahan only allows Microsoft’s free “basic protection” Windows Defender (because apparently Microsoft developers are clearly more competent in all security matters than all other AV producers. And the argumentation is especially interesting. For the former…

Read More

FalseGuide Malware Dupes 600,000 Android Users Into Joining Botnet

ISBuzz TeamApril 27, 20173 Mins Read

An estimated 600,000 users have mistakenly downloaded malware from Google Play, the official app store for Android devices. The malware attempts to build a botnet which delivers fraudulent mobile adware and earns money for the cybercriminals who created it. IT security experts from Positive Technologies, ESET, Avast and Tenable Network Security commented below. Alex Mathews, Lead Security Evangelist at Positive Technologies: “This story shows that even official markets can be source of malware sometimes. However, it is up to users to protect themselves from malicious apps. There are not that many techniques used by malware apps to attack users, and most…

Read More

Forcepoint Identify New Banking Malware Variant Targeting The UK

ISBuzz TeamApril 27, 20172 Mins Read

Forcepoint Security Labs has identified a new variant of the Geodo/Emotet banking malware which has been targeting people in the UK. The campaign recorded appeared to peak on 18 April 2017 and primarily targeted email addresses associated with the .UK domain. The subject line of the emails sent varied slightly but the content took the form of fake billing notification emails, using an abnormally high billing amount to drive customers to click the link. Similar to previously recorded Geodo campaigns, these emails were formatted using images hosted by legitimate operator websites.  Carl Leonard, Principal Security Analyst at Forcepoint commented below.  Carl…

Read More

HipChat Hack

ISBuzz TeamApril 27, 20172 Mins Read

HipChat, Atlassian’s workplace chat platform, was hacked over the weekend. The hackers leveraged a vulnerability in a third-party library that HipChat uses to get in to see messages and content rooms. Michael Patterson, CEO at Plixer International commented below. Michael Patterson, CEO at Plixer International: “The security status of ChatOps tools like HipChat is serious business.  ChatOps tools are used to support a DevOps and collaboration culture, meaning that teams of people as well as technology systems are dynamically connected and critical business processes can be automated.  When a ChatOps tool becomes compromised, there is a high likelihood that the…

Read More
Previous 1 … 678 679 680 681 682 … 1,258 Next
ISB-Bora-Side-Bar

No se ha podido establecer conexión. Error 429

 
ISB-Bora-Side-Bar
Black ISB Logo

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics

X (Twitter) LinkedIn Facebook RSS

Working With Us

  • About Us
  • Advertise With Us
  • Contact Us

Write For Us

  • How To Contribute

The Pages

  • Privacy Policy
  • Cookie Policy
  • AI Policy
  • Terms & Conditions
  • Copyright Notice

Information Security Buzz and all its contents are copyright © 2014-2025. All rights reserved. All third-party trademarks are recognized.

Type above and press Enter to search. Press Esc to cancel.

Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}