New OWASP Top 10 List Includes Three New Web Vulns  [LINK]
But dropping cross-site request forgeries from list is a mistake, some analysts say. [Read More]
3
A Call for Greater Regulation of Digital Currencies  [LINK]
A new report calls for international collaboration to create more transparency with virtual currencies and track money used for cybercrime. [Read More]
3
Symantec Patches Vulnerability in Management Console  [LINK]
Symantec has released an update to address a directory traversal vulnerability in the Symantec Management Console. read more ... [Read More]
3
Iranian Nation-State Hacker Indicted for HBO Hack, Extortion  [LINK]
'Winter is coming,' DoJ official says of overseas hackers such as the alleged HBO hacker who steal intellectual property from the US. [Read More]
3
House Committees Get Serious in New Letter to Equifax  [LINK]
The chairpersons of the House Science, Space, and Technology Committee and the House Oversight and Government Reform Committee on Monday sent a new letter (PDF) to Paulino Barros, the interim CEO of E... [Read More]
3
Code Execution Flaw Found in HP Enterprise Printers  [LINK]
Researchers have found a potentially serious remote code execution vulnerability in some of HP’s enterprise printers. The vendor claims to have already developed a patch that will be made availa... [Read More]
3
macOS Malware Spread Via Fake Symantec Blog  [LINK]
A newly observed variant of the macOS-targeting Proton malware is spreading through a blog spoofing that of legitimate security company Symantec. read more ... [Read More]
3
Has Everyone Really Been Hacked?  [LINK]
There is little doubt that fear sells security products, hikes law enforcements agency (LEA) budgets and sells newspapers. Both the security industry and government agencies benefit from sensational h... [Read More]
3
Cobalt Hackers Now Targeting Banks Directly  [LINK]
The notorious Cobalt hackers have shown a change in tactics recently, switching their attacks to targeting banks themselves, instead of bank customers, Trend Micro reports. read more ... [Read More]
3
Half of Americans Unsure of Online Shopping Safety  [LINK]
Consumers struggle to determine the safety of online shopping websites, putting them at risk for holiday hacking. [Read More]
3
U.S. Charges Iranian Over 'Game of Thrones' HBO Hack  [LINK]
The United States on Tuesday charged an Iranian computer whiz with hacking into HBO, stealing scripts and plot summaries for "Games of Thrones," and trying to extort $6 million in Bitcoin out of the n... [Read More]
3
Let's Take a Page from the Credit Card Industry's Playbook  [LINK]
Internal security departments would do well to follow the processes of major credit cards. [Read More]
3
6 Real Black Friday Phishing Lures  [LINK]
As the mega-shopping day approaches, here's a look at six examples of phishing attacks - and ways to avoid taking the bait. [Read More]
3
Final Version of 2017 OWASP Top 10 Released  [LINK]
The final version of the 2017 OWASP Top 10 was released on Monday and some types of vulnerabilities that don’t longer represent a serious risk have been replaced with issues that are more likely... [Read More]
3
Intel Chip Flaws Expose Millions of Devices to Attacks  [LINK]
Intel has conducted an in-depth security review of its Management Engine (ME), Trusted Execution Engine (TXE) and Server Platform Services (SPS) technologies and discovered several vulnerabilities. Th... [Read More]
3
Pentagon expected to invest in Open Source Software  [LINK]
The US Pentagon is expected to make a major investment in open source software, if section 886 of the National Defense Authorization Act for ... The post Pentagon expected to invest in Open Sou... [Read More]
3
North Korean Hackers Target Android Users in South  [LINK]
At least two cybersecurity firms have noticed that the notorious Lazarus threat group, which many experts have linked to North Korea, has been using a new piece of Android malware to target smartphone... [Read More]
3
MS eyeing to become the go-to cloud provider for enterprise developers  [LINK]
At Connect 2017, Microsoft introduced a preview version of its new Azure Databricks service, a big data analytics platform based on Apache Spark. It ... The post MS eyeing to become the go-to c... [Read More]
3
Researcher Finds Hole in Windows ASLR Security Defense  [LINK]
A security expert found a way to work around Microsoft's Address Space Randomization Layer, which protects the OS from memory-based attacks. [Read More]
3
Windows 8 and Later Fail to Properly Apply ASLR  [LINK]
Address Space Layout Randomization (ASLR) isn’t properly applied on versions of Microsoft Windows 8 and newer, an alert from Carnegie Mellon University-run CERT Coordination Center (CERT/CC) war... [Read More]
3
Secureworks Releases Open Source IDS Tools  [LINK]
Secureworks has released two open source tools, Flowsynth and Dalton, designed to help analysts test rules for intrusion detection systems (IDS) and intrusion prevention systems (IPS) such as Snort an... [Read More]
3
Dealing With Data Loss Your Firewall Can't Stop  [LINK]
Information security is built on the pillars of confidentiality, integrity, and availability. Confidentiality is about making sure your secrets stay secret. read more ... [Read More]
3
​Red Hat partners with AWS with OpenShift Container Platform 3.7  [LINK]
Red Hat wants to be your AWS hybrid cloud and container company as well your Linux provider. [Read More]
3
North Korea's Lazarus Group Evolves Tactics, Goes Mobile  [LINK]
The group believed to be behind the Sony breach and attacks on the SWIFT network pivots from targeted to mass attacks. [Read More]
3