%term

Can a passenger hack an airplane? Ethical hacker Ken Munro has the answer

Nov 24, 2023 By 1Password In 1Password

Hollywood would have us believe that an airplane can be hacked by a tech-savvy passenger. But can they really? Ethical hacker Ken Munro decided to dig into airplane security and answer some common movie questions, like ‘what can a hacker do from seat 23A?’

Read Post

1Password

Read more about Can a passenger hack an airplane? Ethical hacker Ken Munro has the answer

Friday Flows Episode 14: Analyze phishing email senders, URLs, and attachments

Nov 24, 2023 By Tines In Tines

It took us 14 episodes but we're finally highlighting the #1 most popularly used story in the Tines Library. Investigating phishing email senders, URLs, and attachments can eat up hours of an analyst’s time - this Tines story demoed by Michael Tolan does everything for you. Connecting services like VirusTotal, urlscan.io, and EmailRep from Sublime Security across multiple story forks, it includes several options for submitting suspicious emails and displaying the results.

View Video

Tines

Read more about Friday Flows Episode 14: Analyze phishing email senders, URLs, and attachments

Delaware Life Insurance MOVEit Breach Exposes Producer and Client Data

Nov 24, 2023 By Steven In IDStrong

Group 1001 is the parent company of Delaware Life, a long-term financial consultant for organizations. Delaware Life uses a third-party vendor, Pension Benefit Information (PBI), for analysis and research services. PBI, in turn, operates with software created by industry-standard developers; Progress Software’s MOVEit file transfer application is one of these.

Read Post

IDStrong

Read more about Delaware Life Insurance MOVEit Breach Exposes Producer and Client Data

Trustwave MailMarshal Email Security Protects Against WinRAR Vulnerability CVE-2023-38831

Nov 24, 2023 By Trustwave In Trustwave

The importance of email security cannot be understated. Proof of this can be seen in some recent research conducted by the Trustwave SpiderLabs team around our email security product MailMarshal. The team recently ran an experiment on known Zero Day CVE-2023-38831 found in RARLabs WinRAR that is currently being exploited in the wild in WinRAR versions 6.23 and earlier. WinRAR is a compression, archiving, and archive managing software tool.

Read Post

Trustwave

Read more about Trustwave MailMarshal Email Security Protects Against WinRAR Vulnerability CVE-2023-38831

Work Management Company NSC Tech, Suffers 50k Employee Record Breach

Nov 24, 2023 By IDStrong In IDStrong

NSC Technologies is a workforce management solution pairing perfect prospective candidates with companies desiring long-term employees. NSC has more than 30 locations nationwide, with the majority in Indiana. They are reportedly a 1% performing acquisition staffing firm; that may change following their recent data breach.

Read Post

IDStrong

Read more about Work Management Company NSC Tech, Suffers 50k Employee Record Breach

3 tips from our Internet Security Report on how to protect your network

Nov 24, 2023 By WatchGuard Lab In WatchGuard

More and more companies are realizing the importance of a unified cybersecurity system to shield against threats. Perhaps that's why cyberattacks on the network are becoming less common, dropping by almost 80% this quarter, according to our latest Internet Security Report (ISR). Even so, for SMBs, despite progress shown in adopting cybersecurity systems, the sheer volume of malware, as well as its rapid ability to change and evolve, poses a danger to company network systems.

Read Post

WatchGuard

Read more about 3 tips from our Internet Security Report on how to protect your network

Weekly Cybersecurity Recap November 24

Nov 24, 2023 By Steven In IDStrong

This week, the cybersecurity environment continued to be rocked by the global MOVEit data breach. Various Stanford Health groups had information taken in the MOVEit event, up to 1.6 million patient records. AutoZone also announced MOVEit’s involvement in a 185,000-person security incident. Delaware Life Insurance suffered a similar breach from MOVEit, although the number of records lost remains unknown.

Read Post

IDStrong

Read more about Weekly Cybersecurity Recap November 24

The Significance of Honeypots and the Rise of Honeytokens

Nov 24, 2023 By Guest Expert In GitGuardian

Discover the roles and risks of honeypots and honeytokens in cybersecurity with this article. Understand how they work, the benefits they bring to your security strategy, and the precautions needed to avoid potential pitfalls.

Read Post

GitGuardian

Read more about The Significance of Honeypots and the Rise of Honeytokens

Enterprise Software Security: Challenges and Best Practices

Nov 23, 2023 By SecuritySenses In SecuritySenses

In an age where digital information is critical, enterprise software security is more important than ever. As organizations increasingly rely on complex software systems to manage their operations, the risks and vulnerabilities associated with these systems are growing. This article examines the key challenges in enterprise software security and outlines best practices for mitigating these risks.

Read Post

SecuritySenses

Read more about Enterprise Software Security: Challenges and Best Practices

How Cybercriminals Use the Dark Web to Undermine Security

Nov 23, 2023 By SecuritySenses In SecuritySenses

Major search engines merely scratch the surface, exploring 4% of the vast web. Concealed within the deep web, the dark web emerges as a hub for cybercriminal activities. This covert digital underworld operates anonymously outside conventional browsers, providing an ideal haven for cybercriminal coordination beyond law enforcement's grasp.

Read Post