Why moving to the cloud can help boost security and compliance [Q&A]

Full Article : BetaNews – https://betanews.com/2017/12/18/cloud-boost-security-complaince/ Although the adoption of cloud services has increased over the past few years, many organizations are still unwilling to make the move to the cloud due to security and compliance concerns. But Jim Hansen, VP of product marketing at security management firm AlienVault argues that … Read more

Windows 10 included a password manager complete with massive password-stealing potential

Full Article : BetaNews – https://betanews.com/2017/12/17/windows-10-keeper-vulnerability/ Microsoft has been bundling a password manager that features a dangerous flaw with some versions of Windows 10, a Google security researcher has revealed. Tavis Ormandy noticed that his copy of Windows 10 included Keeper, which he had previously found to be injecting privileged … Read more

Windows 10 gets native OpenSSH client and server

Full Article : BetaNews – https://betanews.com/2017/12/14/windows-10-native-openssh-client-server/ It’s quite interesting to see just how far Microsoft has come since Satya Nadella became CEO. The company has gotten out of its comfort zone and made its products more appealing to a wider range of customers, embracing rival platforms and the open-source community. Having … Read more

The value of personal data to companies and cyber criminals

Full Article : BetaNews – https://betanews.com/2017/12/14/personal-data-value/ Businesses rely more and more on data, but a new study shows up significant differences in the value that is placed on confidential data around the world and in different industries. The research from cyber security firm Trustwave involved more than 500 IT decision makers … Read more

Over 90 percent of security pros worry about cyber criminals using AI

Full Article : BetaNews – https://betanews.com/2017/12/14/cyber-criminal-ai-use/ While machine learning and artificial intelligence are becoming key to cyber security, a new survey shows that a majority of security professionals worry that the technology could be used against them. The study by cyber security company Webroot reveals that 91 percent are concerned … Read more

2017 — the year malware became evasive

Full Article : BetaNews – https://betanews.com/2017/12/14/2017-evasive-malware/ While 2017 saw enhancements in defenses — such as the use of artificial intelligence — it also demonstrated that cyber criminals continue to find their way around defensive measures with new evasion techniques. Anti-evasion software specialist Minerva Labs has released its Year in Review … Read more

Avast makes ‘RetDec’ machine-code decompiler open source on GitHub

Full Article : BetaNews – https://betanews.com/2017/12/13/avast-retdec-open-source-machine-code-decompiler/ Open source is the future of computing. Don’t believe me? Three of the most important technology companies — Microsoft, Apple, and Google — not only license open source software, but they contribute to open source projects too. While closed source will likely never go … Read more

Your HP laptop may be harboring a secret keylogger in Synaptics touchpad drivers

Full Article : BetaNews – https://betanews.com/2017/12/13/hp-laptop-keylogger/ If you have an HP laptop, there’s a reasonable chance that you have an keylogger installed. The tool is embedded in Synaptics touchpad drivers. Before you start panicking too much, it’s worth noting that the keylogging capabilities of the tool are disabled by default, … Read more

ForeScout integrates with IBM to protect IoT devices

Full Article : BetaNews – https://betanews.com/2017/12/13/forescout-ibm-iot/ The increase in the number and variety of connected devices has made enterprise IT environments much more complex. Maintaining security and compliance is a tricky problem and IoT security specialist ForeScout is integrating with IBM Security solutions to offer users stringer endpoint protection and … Read more

Trump signs bill banning Kaspersky software

Full Article : BetaNews – https://betanews.com/2017/12/13/trump-bans-kaspersky-software/ The distrust — at least publicly — that the US shows for Russia is well-known. Following concerns about potential espionage from the Kremlin, the government has banned the use of Kaspersky software on its systems. This ban has now been cemented into law as … Read more

Bad office habits increase the chance of a data breach

Full Article : BetaNews – https://betanews.com/2017/12/12/bad-office-habits-breach/ A new study of over 1000 US office workers finds that 99 percent of those surveyed admit to conducting at least one potentially dangerous security action, from sharing and storing login credentials to sending work documents to personal email accounts. The survey by cloud … Read more

Poor USB security leaves enterprises at risk

Full Article : BetaNews – https://betanews.com/2017/12/12/poor-enterprise-usb-security/ Security polices for USB devices are frequently outdated and inadequate, and enterprises are often failing to monitor their use, according to a new survey. The study by encrypted drive specialist Apricorn reveals that while nine out of 10 employees rely on USB devices today, … Read more

Malicious mobile apps fool consumers by imitating leading brands

Full Article : BetaNews – https://betanews.com/2017/12/12/malicious-mobile-apps-imitation/ By impersonating brands and fooling consumers, malicious mobile apps are on the increase, according to digital threat management leader RiskIQ in its latest Q3 mobile threat landscape report. Apps available outside of official stores are most likely to be malicious. Google’s percentage of malicious apps … Read more

World’s biggest botnet delivers new ransomware threat

Full Article : BetaNews – https://betanews.com/2017/12/11/biggest-botnet-ransomware/ The latest Global Threat Index from cyber security specialist Check Point reveals that the Necurs spam botnet — reckoned to be the largest in the world — is being used to distribute one of the latest ransomware threats. During the Thanksgiving holiday in the … Read more

Toplip – A Very Strong File Encryption And Decryption CLI Utility

Full Article : OSTechNix – https://www.ostechnix.com/toplip-strong-file-encryption-decryption-cli-utility/ There are numerous file encryption tools available on the market to protect your files. We have already reviewed some encryption tools such as Cryptomater, Cryptkeeper, CryptGo, Cryptr, Tomb, and GnuPG etc. Today, we will be discussing… The post Toplip – A Very Strong File Encryption … Read more

Chrome 63 is more secure than ever — and uses even more memory

Full Article : BetaNews – https://betanews.com/2017/12/09/chrome-63-site-isolation/ Google’s Chrome browser has something of a reputation for being memory-hungry. With the released of Chrome 63 this image is not going to be shed — a new security feature increases memory usage even further. The latest desktop version of the browser includes a … Read more

Huge Janus bug leaves Android apps open to unauthorized code modification

Full Article : BetaNews – https://betanews.com/2017/12/09/android-janus-security-vulnerability/ Researchers from security firm GuardSquare have discovered an Android vulnerability that allows for app code to be edited with affecting the apps’ signature. Dubbed Janus, the vulnerability has massive potential for malicious use, and affects Android 5.0 onwards. The security hole would allow an … Read more

Deception Security: Modern maturity for automated detection and response

Full Article : BetaNews – https://betanews.com/2017/12/08/deception-security-modern-maturity-for-automated-detection-and-response/ Deception in its various embodiments is becoming a critical part of organizations’ security infrastructure. According to Gartner, the need for better detection and response is creating new opportunities for security stack automation, integration, consolidation and orchestration while also driving the emergence of new segments … Read more

‘New Mafia’ cyber attacks on businesses up 23 percent in 2017

Full Article : BetaNews – https://betanews.com/2017/12/08/new-mafia-cyber-attacks/ A new report from anti-malware specialist Malwarebytes says that the volume and sophistication of cyber attacks is growing thanks to an increase in organized cyber crime it dubs the ‘New Mafia’. Ransomware attacks up to the end of October have surpassed total figures for … Read more

Three quarters of retail organizations lack a breach response plan

Full Article : BetaNews – https://betanews.com/2017/12/07/retail-breach-response/ As online retailers gear up for their busiest period of the year, how prepared are they to face the threat of cyber attacks? A new study from cyber security company Tripwire reveals that just 28 percent of respondents say they have a fully tested … Read more

Financial services organizations fail to properly secure SSH keys

Full Article : BetaNews – https://betanews.com/2017/12/07/finance-unsecure-ssh/ Secure Shell (SSH) provides a secure channel for communication over unsecured networks and is therefore a popular technology in the financial services sector. But a new study for machine identity protection company Venafi shows that even though SSH keys provide the highest levels of … Read more

‘Doppelgänging’ attack hides malware from security tools

Full Article : BetaNews – https://betanews.com/2017/12/07/process-doppelganging-malware/ Endpoint protection company EnSilo has used this week’s Black Hat Europe conference in London to reveal how Microsoft Windows features can be used to slip malicious ransomware and other threats past most updated, market-leading AV products. EnSilo researchers demonstrated how, by manipulating how Windows … Read more

Privacy: Popular ai.type keyboard leaks personal details of 31 million users

Full Article : BetaNews – https://betanews.com/2017/12/06/ai-type-personal-data-leak/ Third-party Android and iOS keyboard ai-type is at the center of something of a privacy nightmare after a misconfigured database leaked the personal details of more than 31 million of its users. Researchers at Kromtech Security Center discovered an unprotected database had been exposed … Read more

Cryptocurrency apps have severe security vulnerabilities, but do investors care?

Full Article : BetaNews – https://betanews.com/2017/12/05/crypto-apps-major-vulnerabilities/ A market cap of over $350 billion, daily volumes in excess of $10 billion, fast rising prices, a growing number of investors and little to no regulation all combine to make the cryptocurrency space a prime target for hackers. What’s more, security is not … Read more

WebGoat Teaches You To Fix Web Application Flaws In Real-time

Full Article : OSTechNix – https://www.ostechnix.com/webgoat-teaches-fix-web-application-flaws-real-time/ Good day, web developers! Today, we are going to discuss about a super useful application that teaches you web application security lessons. Say hello to WebGoat, a deliberately insecure web application developed by OWASP, with… The post WebGoat Teaches You To Fix Web Application … Read more