MGySgt Scott Stalker’s 2020 Reading List
InfoSec News
by William Knowles
4y ago
MGySgt Scott H. Stalker’s 2020 Reading List By William Knowles @c4i Senior Editor InfoSec News July 8, 2020 One of the interesting parts of the COVID-19 pandemic with the number of experts on television and online video conferences have been what books are on their bookshelves. I’ve found myself on more than a few occasions taking screenshots to look and decipher them later.  One longstanding habit of mine is learning about various business leaders and military personnel’s reading lists. While looking for one thing on the USCYBERCOM website, I stumbled across MGySgt Scott Stalker’s ..read more
Visit website
Citrix patches 11 critical bugs
InfoSec News
by William Knowles
4y ago
Citrix patches 11 critical bugs By William Knowles @c4i Senior Editor InfoSec News July 8, 2020 In a breath of fresh air for this week, software vendor Citrix released patches for 11 vulnerabilities, quickly applying the lesson learned six months ago and not wanting a repeat with malicious hackers looking for ways to exploit the vulnerability. Citrix Chief Information Security Officer, Fermin J. Serna released a bulletin on Tuesday, July 7, which covered a set of vulnerabilities in Citrix’s products— Citrix ADC, Citrix Gateway, and Citrix SD-WAN WANOP edition. Standard procedure for ..read more
Visit website
USCYBERCOM urgently recommends F5 customers to patch CVE-2020-5902 and 5903 NOW
InfoSec News
by William Knowles
4y ago
By William Knowles @c4i Senior Editor InfoSec News July 6, 2020 Just in case you accidentally had your work phone and duty pager in a Faraday bag all July 4th holiday weekend long, you have one heckuva surprise waiting for you! As F5 reminds everyone that 48 of Fortune 50 companies are F5 customers, F5 has published a security advisory warning to their customers to patch a critical flaw in their BIG-IP product and proof-of-concept attacks are already starting to show up on Twitter. The Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Re ..read more
Visit website
National Security Agency releases Securing IPsec Virtual Private Networks
InfoSec News
by William Knowles
4y ago
By William Knowles @c4i Senior Editor InfoSec News July 3, 2020 On the heels of the tweet from USCYBERCOM earlier in the week advising users of Palo Alto Networks to patch all devices affected by CVE-2020-2021 immediately, especially if SAML is in use. On Thursday, the National Security Agency released Securing IPsec Virtual Private Networks. Many organizations currently utilize IP Security (IPsec) Virtual Private Networks (VPNs) to connect remote sites and enable telework capabilities. These connections use cryptography to protect sensitive information that traverses untrusted netw ..read more
Visit website
New Zealand CERT issues advisory on ransomware campaign
InfoSec News
by William Knowles
4y ago
New Zealand CERT issues advisory on ransomware campaign By William Knowles Senior Editor InfoSec News June 18, 2020 The New Zealand Computer Emergency Response Team (CERT NZ) has released an advisory on a ransomware campaign leveraging remote access technologies. Unknown malicious cyber bad actors are targeting organizations’ networks through remote access tools, such as Remote Desktop Protocol and virtual private networks, to exploit unpatched vulnerabilities and weak authentication. After gaining access, these cyber bad actors use various tools including mimikatz, PsExec, Cobalt Strike, and ..read more
Visit website
Defense Contractor Compromised with MAZE Ransomware
InfoSec News
by William Knowles
4y ago
By William Knowles @c4i Senior Editor InfoSec News June 8, 2020 Troubling Cybersecurity/National Security news via Sky News, which is reporting that criminal hackers have stolen confidential information from Westech International. Westech serves as a U.S. military contractor for a number of Washington D.C. based companies such as Northrop Grumman, Booz Allen Hamilton, General Dynamics Information Technology (GDIT), and Science Applications International Corporation. Westech International provides U.S. government and military clients a wide of services like Testing and Evaluation for the Army ..read more
Visit website
Cyber criminals cook up another data breach of 8 million Home Chef customers
InfoSec News
by William Knowles
4y ago
By William Knowles @c4i Senior Editor InfoSec News May 21, 2020 Just as Chicago can’t go a whole week without a gang-related shooting, there’s another data breach in the news, sadly this data breach happened down the road from InfoSec News’ office in Chicago Illinois. In a security alert posted on Home Chef’s website on Wednesday, May 20th, the Chicago-based, Kroger owned meal company had learned of a data breach and the following was stolen, email address, name and phone number, encrypted passwords, The last four digits of credit card numbers and other account information such as frequency of ..read more
Visit website
Texas Department of Transportation reports ransomware attack on agency network
InfoSec News
by William Knowles
4y ago
By William Knowles @c4i Senior Editor InfoSec News May 16, 2020 The Texas Department of Transportation in a statement on Twitter says they were the victims of a ransomware attack on their agency network. On May 14, 2020, there was unauthorized access to the network in a ransomware event and TxDot took immediate steps to isolate the incident and shut down any further unauthorized access. “We believe we have a duty to inform our fellow Texans and our fellow state agencies of this unfortunate incident,” executive director James Bass said. “We want every Texan to rest assured that we are ..read more
Visit website
Ransomware attack disables Texas Supreme Court’s website
InfoSec News
by William Knowles
4y ago
  By William Knowles @c4i Senior Editor InfoSec News May 13, 2020 On Friday, May 8th, the Office of Court Administration (OCA), the information technology (IT) provider for the appellate courts and state judicial agencies within the Texas Judicial Branch, identified a serious security event in the branch network, which was later determined to be a ransomware attack. The attack began during the overnight hours and was first discovered in the early morning hours on Friday. The attack is unrelated to the courts’ migration to remote hearings amid the coronavirus pandemic. Immediately upon di ..read more
Visit website
Potential data breach reported at hard-hit Ontario long-term care home
InfoSec News
by William Knowles
4y ago
  By William Knowles @c4i Senior Editor InfoSec News May 11, 2020 Ontario’s Minister of Long-term Care Dr. Merrilee Fullerton reported a potential data breach at a Pickering, Ontario long-term care home on Saturday evening on Twitter. “I’m learning of disturbing news out of Pickering’s Orchard Villa LTC home. There is a possibility of a significant privacy breach regarding individual resident personal health info. My heart goes out to the residents and families, during what is already a very difficult time” Dr. Fullerton tweets “Our government takes personal privacy very s ..read more
Visit website

Follow InfoSec News on FeedSpot

Continue with Google
Continue with Apple
OR