Information

09 Aug

Serious Security: Why learning to touch-type could protect you from audio snooping

by Paul Ducklin Audio recordings are dangerously easy to make these days, whether by accident or by design. You could end up with your own permanent copy of something you thought you were discussing privately, preserved indefinitely in an uninterestingly-named file on your phone or laptop, thanks to hitting “Record” by mistake. Someone else could end up with a permanent transcript of something you didn’t want preserved at all, thanks to them hitting “Record” on…

08 Aug

Rapid7 Announces Layoffs, Office Closings Under Restructuring Plan

Information, News

Rapid7 (NASDAQ: RPD) is the latest cybersecurity vendor to announce layoffs, with the Boston-based firm announcing a restructuring plan late Tuesday that will result in an 18% reduction in employee headcount. In total, approximately 500 employees could be impacted based on the roughly 2,700-person headcount at the end of 2022, with more than 700 people in its Boston headquarters. The company also said in and SEC filing that it would close certain office locations, but…

08 Aug

Microsoft Patch Tuesday, August 2023 Edition

Information, Insights

Microsoft Corp. today issued software updates to plug more than 70 security holes in its Windows operating systems and related products, including multiple zero-day vulnerabilities currently being exploited in the wild. Six of the flaws fixed today earned Microsoft’s “critical” rating, meaning malware or miscreants could use them to install software on a vulnerable Windows system without any help from users. Last month, Microsoft acknowledged a series of zero-day vulnerabilities in a variety of Microsoft…

08 Aug

Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’

Information, Insights

WormGPT, a private new chatbot service advertised as a way to use Artificial Intelligence (AI) to write malicious software without all the pesky prohibitions on such activity enforced by the likes of ChatGPT and Google Bard, has started adding restrictions of its own on how the service can be used. Faced with customers trying to use WormGPT to create ransomware and phishing scams, the 23-year-old Portuguese programmer who created the project now says his service…

07 Aug

Cyberinsurance Firm Resilience Raises $100 Million to Expand Its Cyber Risk Platform

Information, News

Resilience Cyber Insurance Solutions has raised $100 million through a Series D funding round to support global expansion of its cyber risk platform that was launched earlier this year. By connecting leaders in finance, risk, and security, the Resilience Solution helps cyberinsurance policyholders to quantify their cyber risk and prioritize their security program based on a return-on-investment (ROI) analysis of their controls. “The increase in ransomware attacks proves that there are longstanding gaps in today’s cybersecurity and cyber…

05 Aug

Fingerprints all over: Can browser fingerprinting increase website security?

Information

Browser fingerprinting is supposedly a more privacy-conscious tracking method, replacing personal information with more general data. But is it a valid promise?

05 Aug

Check cybersecurity pre-invest – Week in security with Tony Anscombe

Information

When you invest in a company, do you check its cybersecurity? The U.S. Securities and Exchange Commission has adopted new cybersecurity rules.

04 Aug

“Crocodile of Wall Street” and her husband plead guilty to giant-sized cryptocrimes

Information

by Paul Ducklin Back in August 2016, Heather Morgan, a.k.a. Razzlekhan, a.k.a. the Crocodile of Wall Street (actually, there’s a double-barrelled expletive in front of the word ‘crocodile’, but this is a family-friendly website so we’ll leave you to extrapolate for yourself), and her husband Ilya Lichtenstein got their hands on 120,000 of your finest bitcoins. At the time, BTC was trading at about $600, so their stash was worth a cool $72,000,000. For a…

04 Aug

A Cyberattack Has Disrupted Hospitals and Health Care in Five States

Information, News

A cyberattack has disrupted hospital computer systems in several states, forcing some emergency rooms to close and ambulances to be diverted, and many primary care services remained closed on Friday as security experts worked to determine the extent of the problem and resolve it. The “data security incident” began Thursday at facilities operated by Prospect Medical Holdings, which is based in California and has hospitals and clinics there and in Texas, Connecticut, Rhode Island and…

04 Aug

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability

Information, News

SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we will curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and…

Serious Security: Why learning to touch-type could protect you from audio snooping

Rapid7 Announces Layoffs, Office Closings Under Restructuring Plan

Microsoft Patch Tuesday, August 2023 Edition

Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’

Cyberinsurance Firm Resilience Raises $100 Million to Expand Its Cyber Risk Platform

Fingerprints all over: Can browser fingerprinting increase website security?

Check cybersecurity pre-invest – Week in security with Tony Anscombe

“Crocodile of Wall Street” and her husband plead guilty to giant-sized cryptocrimes

A Cyberattack Has Disrupted Hospitals and Health Care in Five States

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability

Search

The 6 Stages of a Vulnerability Management Process

Get Cybersecurity Alerts

Read More

Categories

Site Navigation

Resources