Information

07 Aug

Cyberinsurance Firm Resilience Raises $100 Million to Expand Its Cyber Risk Platform

Resilience Cyber Insurance Solutions has raised $100 million through a Series D funding round to support global expansion of its cyber risk platform that was launched earlier this year. By connecting leaders in finance, risk, and security, the Resilience Solution helps cyberinsurance policyholders to quantify their cyber risk and prioritize their security program based on a return-on-investment (ROI) analysis of their controls. “The increase in ransomware attacks proves that there are longstanding gaps in today’s cybersecurity and cyber…

05 Aug

Check cybersecurity pre-invest – Week in security with Tony Anscombe

Information

When you invest in a company, do you check its cybersecurity? The U.S. Securities and Exchange Commission has adopted new cybersecurity rules.

05 Aug

Fingerprints all over: Can browser fingerprinting increase website security?

Information

Browser fingerprinting is supposedly a more privacy-conscious tracking method, replacing personal information with more general data. But is it a valid promise?

04 Aug

“Crocodile of Wall Street” and her husband plead guilty to giant-sized cryptocrimes

Information

by Paul Ducklin Back in August 2016, Heather Morgan, a.k.a. Razzlekhan, a.k.a. the Crocodile of Wall Street (actually, there’s a double-barrelled expletive in front of the word ‘crocodile’, but this is a family-friendly website so we’ll leave you to extrapolate for yourself), and her husband Ilya Lichtenstein got their hands on 120,000 of your finest bitcoins. At the time, BTC was trading at about $600, so their stash was worth a cool $72,000,000. For a…

04 Aug

A Cyberattack Has Disrupted Hospitals and Health Care in Five States

Information, News

A cyberattack has disrupted hospital computer systems in several states, forcing some emergency rooms to close and ambulances to be diverted, and many primary care services remained closed on Friday as security experts worked to determine the extent of the problem and resolve it. The “data security incident” began Thursday at facilities operated by Prospect Medical Holdings, which is based in California and has hospitals and clinics there and in Texas, Connecticut, Rhode Island and…

04 Aug

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability

Information, News

SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we will curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and…

04 Aug

Teach a Man to Phish and He’s Set for Life

Information, Insights

One frustrating aspect of email phishing is the frequency with which scammers fall back on tried-and-true methods that really have no business working these days. Like attaching a phishing email to a traditional, clean email message, or leveraging link redirects on LinkedIn, or abusing an encoding method that makes it easy to disguise booby-trapped Microsoft Windows files as relatively harmless documents. KrebsOnSecurity recently heard from a reader who was puzzled over an email he’d just…

04 Aug

Threat Actors Abuse Cloudflare Tunnel for Persistent Access, Data Theft

Information, News

Threat actors have been observed abusing an open source tool named Cloudflared to maintain persistent access to compromised systems and to steal information without being detected, cybersecurity firm GuidePoint Security reports. Cloudflared is a command-line client for Cloudflare Tunnel, a tunneling daemon for proxying traffic between the Cloudflare network and the user’s origin. The tool creates an outbound connection over HTTPS, with the connection’s settings manageable via the Cloudflare Zero Trust dashboard. Through Cloudflared, services…

03 Aug

The grand theft of Jake Moore’s voice: The concept of a virtual kidnap

Information

With powerful AI, it doesn’t take much to fake a person virtually, and while there are some limitations, voice-cloning can have some dangerous consequences.

03 Aug

S3 Ep146: Tell us about that breach! (If you want to.)

Information

by Paul Ducklin WEIRD BUT TRUE No audio player below? Listen directly on Soundcloud. With Doug Aamoth and Paul Ducklin. Intro and outro music by Edith Mudge. You can listen to us on Soundcloud, Apple Podcasts, Google Podcasts, Spotify and anywhere that good podcasts are found. Or just drop the URL of our RSS feed into your favourite podcatcher. READ THE TRANSCRIPT DOUG. Firefox updates, another Bug With An Impressive Name, and the SEC demands disclosure.…

Cyberinsurance Firm Resilience Raises $100 Million to Expand Its Cyber Risk Platform

Check cybersecurity pre-invest – Week in security with Tony Anscombe

Fingerprints all over: Can browser fingerprinting increase website security?

“Crocodile of Wall Street” and her husband plead guilty to giant-sized cryptocrimes

A Cyberattack Has Disrupted Hospitals and Health Care in Five States

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability

Teach a Man to Phish and He’s Set for Life

Threat Actors Abuse Cloudflare Tunnel for Persistent Access, Data Theft

The grand theft of Jake Moore’s voice: The concept of a virtual kidnap

S3 Ep146: Tell us about that breach! (If you want to.)

Search

The 6 Stages of a Vulnerability Management Process

Get Cybersecurity Alerts

Read More

Categories

Site Navigation

Resources