7 Tips for Choosing Security Metrics That Matter
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database
CVE-2020-26891PUBLISHED: 2020-10-19
AuthRestServlet in Matrix Synapse before 1.21.0 is vulnerable to XSS due to unsafe interpolation of the session GET parameter. This allows a remote...
US Counterintelligence Director & Fmr. Europol Leader Talk Election Security
The US counterintelligence lead joins a former Europol cyber chief to discuss modern election threats and the benefits of public-private collaboration.Nations worldwide have faced the challenge of maintaining trustworthy...
Prolific Cybercrime Group Now Focused on Ransomware
Cybercriminal team previously associated with point-of-sale malware and data theft has now moved almost completely into the more lucrative crimes of ransomware and extortion. An assortment of ransomware campaigns since...
Academia Adopts Mitre ATT&CK Framework
Security pros and academic researchers discuss the best ways to use MITRE's framework to inform cybersecurity efforts, analyze threats, and teach future workers.When two educators at Temple University's criminal...
Twitter Hack Analysis Drives Calls for Greater Security Regulation
New York's Department of Financial Services calls for more cybersecurity regulation at social media firms following the "jarringly easy" Twitter breach.New York's Department of Financial Services (DFS) is calling...
London Borough of Hackney Investigates ‘Serious’ Cyberattack
London's Hackney Council says some services may be slow or unavailable as it researches a cyberattack affecting services and IT systems.The London Borough of Hackney has reported that a...
Microsoft Fixes Critical Windows TCP/IP Flaw in Patch Rollout
The October 2020 Patch Tuesday fixed 87 vulnerabilities, including 21 remote code execution flaws, in Microsoft products and services.Microsoft today issued fixes for 87 vulnerabilities in its October Patch...
Ransomware Facts, Trends & Statistics for 2020
By: Eric C
Being ever-evolving as an attack tool, even the simplest form of ransomware can cost significant time and money, but more severe attacks can deal a crippling blow...
25% of BEC Cybercriminals Based in the US
While the US is known to be a prime target for BEC attacks, just how many perpetrators are based there came as a surprise to researchers.A new analysis of...
Security Firms & Financial Group Team Up to Take Down Trickbot
Microsoft and security firms ESET, Black Lotus Labs, and Symantec collaborated with the financial services industry to cut off the ransomware operation's C2 infrastructure.Technology and security companies teamed up...
