September 20, 2017
Fifth Domain Staff, fifthdomain.com, September 18, 2017
Government remained among the most targeted industries for web application attacks during the second quarter of 2017, according to recent data released by cybersecurity company Positive Technology. The report details the most common types of web application attacks by industry sector, as well as the objectives, intensity and time distribution of web application attacks.
Alison DeNisco, techrepublic.com, September 19, 2017
Negligent employees are the no. 1 cause of data breaches at small and medium-sized businesses (SMBs) across North America and the UK, according to a new study from Keeper Security and the Ponemon Institute, released Tuesday. Of the 1,000 IT professionals surveyed, 54% said careless workers were the root cause of cybersecurity incidents, followed by poor company password policies.
Devesh Panchwagh, deltarisk.com, September 12, 2017
In the hospital setting, there is no tolerance for poor hygiene. Frequently washing your hands and using hand sanitizer can drastically decrease the chances of contamination, the spread of disease, and infection rates. It’s just as important to commit to cyber hygiene to slow down attackers who are looking to infect your mission-critical systems.
Tom Sullivan, healthcareitnews.com, September 15, 2017
I stepped into the Healthcare Security Forum this week in Boston hoping to walk away with perhaps a few nuggets of optimism, even small ones. That didn’t exactly happen but, instead, a new message emerged: the conversation about how cybersecurity is so negative that it only triggers tension and hostility among infosec pros, executives and end users.
David Bisson, tripwire.com, September 14, 2017
Equifax made headlines on September 7, 2017, when it announced its discovery of a data breach earlier in the year. In the security incident, computer criminals leveraged a “U.S. website application vulnerability” to view some of the consumer credit reporting agency’s files, access which helped them compromise 143 million U.S. consumers’ Social Security Numbers, dates of birth, and other sensitive personal information.
Ben Johnson, darkreading.com, September 14, 2017
The slew of data leakage incidents involving Amazon Web Services this summer made for good headlines, but what should security professionals learn from them? Despite the good work by the UpGuard researchers who discovered unsecured AWS S3 buckets, it’s hard to say whether malicious actors have found the sensitive data or not.
Tom Sullivan, healthcareitnews.com, September 13, 2017
When the National Cyber Security Alliance asked 18- to 26-year-olds what skills they are looking for in a career, researchers uncovered a list that would, if framed properly, forge cybersecurity professionals.
Maritza Santillan, tripwire.com, September 15, 2017
A new phishing campaign is targeting LinkedIn users, leveraging hacked accounts to send malicious links via the platform’s private messaging feature. According to security researchers at Malwarebytes, the campaign abuses Premium membership accounts, which can message other LinkedIn users – regardless of whether they’re connected or not.
Zack Whittaker, zdnet.com, September 14, 2017
A cache of voter records on over a half-million Americans has been found online. The records, totaling 593,328 individual sets of records, appear to contain every registered voter in the state of Alaska, according to security researchers at the Kromtech Security Research Center, who found the database.