News

By Gerald Beuchelt, CISO at LogMeInDespite the well-publicised growth in cyber-attacks every year, both in number and complexity, businesses are still struggling to implement effective security policies. It’s no secret that weak passwords are a leading security threat and bad password habits are far too common.Yet businesses are struggling to quantify their own level of password risk, even those that use password managers. Why? They lack proof of their policies’ effectiveness. They’re missing visibility into...

By Gerald Beuchelt, CISO at LogMeIn Despite the well-publicised growth in cyber-attacks every year, both in number and complexity, businesses are still struggling to implement effective security policies. It’s no secret that weak passwords are a leading security threat and bad password habits are far too common. Yet businesses are struggling to quantify their own level of password risk, even those that use password managers. Why? They lack proof of their policies’ effectiveness. They’re missing...

A leading UK cyber security firm has joined forces with an Australian pioneer in payment card control technology to fight against the rise of global ATM Cashout fraud. Australian-based Tranwall’s transaction security software will be offered with Foregenix’s Managed Detection and Response (MDR) and Threat Sweep. Both services provide security visibility of business critical assets in a single pane ofglass and prevent advanced targeted attacks with early detection and skilled response. Tranwall software will provide a...

Apple and Google have removed TikTok, which allows users to create and share videos, from their app stores in India. Source: BBC News

Indian IT services company Wipro is investigating a phishing attack, which hit some staff email accounts and launched attacks on customer environments Source: Computer Weekly

A new study from Outpost24 has discovered that almost one in four (23%) organizations do not carry out any form of security testing on their products before they are launched into the market. Source: Infosecurity

A new ransomware family called NamPoHyu Virus or MegaLocker Virus is targeting victims a bit differently than other ransomware. Instead of an executable running on a victim's computer, the attacker is running the ransomware locally and having it remotely encrypt accessible Samba servers. Source: Bleeping Computer

Bug affects only Chrome for iOS, not Safari and not any other Chrome version. Source: ZDnet

New threat intelligence from F5 Labs has highlighted the increasing vulnerability of a programming language used in over 80% of the world’s websites. According to F5 Labs’ data partner Loryka, 81% of malicious traffic monitored in the wild in 2018 was PHP-related. This represents a 23% rise compared to 2017. Monitoring focused on initial reconnaissance campaigns looking for admin surfaces to compromise as part of a broader attack chain. Featuring in the first instalment F5...

Nyotron, provider of the industry's first OS-Centric Positive Security solution to strengthen endpoint protection, today published the results of its study of the efficacy of leading antivirus (AV) solutions against known malware, including samples that first appeared over 20 years ago, such as 2001’s infamous ILOVEYOU virus. The top findings: even for decades-old malware, detection rarely lives up to vendors’ claims of 99.9% efficacy, and that rate drops dramatically with easy file modification or when...