September 20, 2017

Report: Government Among Most Targeted for Web Application Attacks

Fifth Domain Staff,, September 18, 2017

Government remained among the most targeted industries for web application attacks during the second quarter of 2017, according to recent data released by cybersecurity company Positive Technology. The report details the most common types of web application attacks by industry sector, as well as the objectives, intensity and time distribution of web application attacks.

Read More

Negligent Employees are No.1 Cause of Cybersecurity Breaches

Alison DeNisco,, September 19, 2017

Negligent employees are the no. 1 cause of data breaches at small and medium-sized businesses (SMBs) across North America and the UK, according to a new study from Keeper Security and the Ponemon Institute, released Tuesday. Of the 1,000 IT professionals surveyed, 54% said careless workers were the root cause of cybersecurity incidents, followed by poor company password policies.

Read More

Top 10 Cyber Hygiene Tips for Healthcare IT and Security Professionals

Devesh Panchwagh,, September 12, 2017

In the hospital setting, there is no tolerance for poor hygiene. Frequently washing your hands and using hand sanitizer can drastically decrease the chances of contamination, the spread of disease, and infection rates. It’s just as important to commit to cyber hygiene to slow down attackers who are looking to infect your mission-critical systems.

Read More

[Opinion] Cybersecurity is Hard, Got It? But Let’s Stop Blaming Hospitals for Every Breach

Tom Sullivan,, September 15, 2017

I stepped into the Healthcare Security Forum this week in Boston hoping to walk away with perhaps a few nuggets of optimism, even small ones. That didn’t exactly happen but, instead, a new message emerged: the conversation about how cybersecurity is so negative that it only triggers tension and hostility among infosec pros, executives and end users.

Read More

4 Credit Bureau Data Breaches that Predate the 2017 Equifax Hack

David Bisson,, September 14, 2017

Equifax made headlines on September 7, 2017, when it announced its discovery of a data breach earlier in the year. In the security incident, computer criminals leveraged a “U.S. website application vulnerability” to view some of the consumer credit reporting agency’s files, access which helped them compromise 143 million U.S. consumers’ Social Security Numbers, dates of birth, and other sensitive personal information.

Read More

Cloud Security’s Shared Responsibility is Foggy

Ben Johnson,, September 14, 2017

The slew of data leakage incidents involving Amazon Web Services this summer made for good headlines, but what should security professionals learn from them? Despite the good work by the UpGuard researchers who discovered unsecured AWS S3 buckets, it’s hard to say whether malicious actors have found the sensitive data or not.

Read More

[Opinion] Cybersecurity Term Might Be Scaring Off Young Talent

Tom Sullivan,, September 13, 2017

When the National Cyber Security Alliance asked 18- to 26-year-olds what skills they are looking for in a career, researchers uncovered a list that would, if framed properly, forge cybersecurity professionals.

Read More

Hacked LinkedIn Accounts Spreading Malicious Links via InMail

Maritza Santillan,, September 15, 2017

A new phishing campaign is targeting LinkedIn users, leveraging hacked accounts to send malicious links via the platform’s private messaging feature. According to security researchers at Malwarebytes, the campaign abuses Premium membership accounts, which can message other LinkedIn users – regardless of whether they’re connected or not.

Read More

Yet Another Trove of Sensitive US Voter Records Has Leaked

Zack Whittaker,, September 14, 2017

A cache of voter records on over a half-million Americans has been found online. The records, totaling 593,328 individual sets of records, appear to contain every registered voter in the state of Alaska, according to security researchers at the Kromtech Security Research Center, who found the database.

Read More
financial newsletterhealthcare newsletter
Infosecurity Newsletter Archive

top cyber incident pain points