News Feed

• Backdoor code found in 11 Ruby libraries
  RubyGems staff have removed 18 malicious Ruby library versions that have been downloaded 3,584 times since July 8.
• Microsoft makes Chromium-based Edge beta available for Windows and macOS
  Microsoft is taking another step with its Chromium-based Edge browser by officially releasing the beta version for Windows 10, 8, 7 and macOS.
• Apple Card launches in the US, adds Uber to 3 percent cash back list
  The wait is over for those who've been waiting for an Apple Card invite.
• Dell launches OptiPlex 7070 Ultra, crams desktop into monitor stand
  Dell is increasingly aiming its PC portfolio at end users with strong design as well as IT departments looking to navigate everything from upgrades to open floor plan issues.
• Citrix Managed Desktops moves into general availability
  The Desktop as a Service offering simplifies the delivery of Windows apps and desktops from Azure to devices.
• Dorm food: Delivery robots coming to 100 college campuses
  As municipalities hesitate, robot delivery companies strike creative deals.
• Raspberry Pi gets MIT's Scratch 3 programming language for Raspbian
  MIT Media Lab's Scratch 3 programming language is now available to install on Raspberry Pi.
• Unpatchable security flaw found in popular SoC boards
  Xilinx Zynq UltraScale+ SoCs are normally used in automotive, aviation, consumer electronics, industrial, and military components.
• YubiKey 5Ci: The world’s first Lightning-compatible security key
  The new YubiKey 5Ci is the world’s first security key that features both USB-C and Lightning connectors on a single key.
• Windows 10 Edge gets autoplay block but users also want to hide Bing bar
  Microsoft Edge testers want to hide the Bing bar on new tabs and to be able to sign in with a Google account.
• Dell launches Alienware Aurora R9, G5 gaming desktops at Gamescom 2019
  The Aurora R9 is Alienware's first desktop built around its Legend industrial design aesthetic, while the G5 is the first desktop in Dell's budget gaming G Series.
• Vulnerabilities in Google Nest Cam IQ can be used to hijack the camera, leak data
  The indoor security device was subject to bugs which threatened user privacy.
• iPhone warning: Apple blunder spawns new jailbreak, security threats
  Apple breaks earlier patch in iOS 12.4, leading to new iOS jailbreak and security risks for iPhone and iPad users.
• Broadband: Three switches on 5G, but takes a different approach to rivals
  Mobile operator starts with a 5G-powered home broadband service, with smartphone services to come later.
• Why the US has lost to Russia in these top coding trials for almost a decade
  For the big ICPC competition, Russian teams are trained by ex-champions. But that's not the whole story.
• Nearly half of exports from UK tech companies go to Europe
  As Brexit looms, new data shows how close the ties are between UK tech innovation and Europe.
• Must-have Bluetooth speakers for students under $75
  It is difficult for me to choose a favorite from this list of speakers -- but one of these will hit the spot for sure, delivering decent sounds when you are back at college.
• Adult website data leak connected private users to content uploads
  An open database provided full access to user emails and the content they uploaded, liked, and shared.
• These robot snakes designed by AI could be the next big thing in the operating theatre
  Researchers at the Australian Centre for Robotic Vision have developed snakebots that are designed to be as individual as the patient they're used on.
• I installed five flavours of Linux on my new laptop: One month on, here's what I've learned
  Using Linux on a laptop used to be so tricky and tedious: that's clearly no longer the case.

• Cyberthreats Against Financial Services Up 56%
  Financial institutions interacting with customers online must prepare for a broader, more sophisticated variety of threats.
• Who Gets Privileged Access & How to Enforce It
  Let's begin by re-evaluating IT infrastructures to determine who has access to what, why, and when.
• Towns Across Texas Hit in Coordinated Ransomware Attack
  The state government and cybersecurity groups have mobilized to respond to a mass ransomware attack that simultaneously hit 23 different towns statewide.
• US Chamber of Commerce, FICO Report National Risk Score of 688
  While the score was up for large businesses and down for small firms, the report urges all to prioritize third-party risk management.
• European Central Bank Website Hit by Malware Attack
  The website was infected with malware that stole information on subscribers to a bank newsletter.
• Beat the Heat: Dark Reading Caption Contest Winners
  Phishing, token codes, training, MFA, polluted data entry, and whales. And the winners are ...
• Behind the Scenes at ICS Village
  ICS Village co-founder Bryson Bort reveals plans for research-dedicated events that team independent researchers, critical infrastructure owners, and government specialists.
• More Than 20 Data Breaches Reported Per Day in First Half of 2019
  But incidents involving SSNs, addresses, birth dates were smaller than in previous years.
• New Research Finds More Struts Vulnerabilities
  Despite aggressive updating and patching, many organizations are still using versions of Apache Struts with known -- and new -- vulnerabilities.
• The Flaw in Vulnerability Management: It's Time to Get Real
  Companies will never be 100% immune to cyberattacks. But by having a realistic view of the basics, starting with endpoint vulnerabilities, we can build for a safer future.
• The Mainframe Is Seeing a Resurgence. Is Security Keeping Pace?
  The old-school technology is experiencing new popularity, but too many people assume mainframes are inherently secure.
• Financial Phishing Grows in Volume and Sophistication in First Half of 2019
  Criminals are using the tools intended to protect consumers to attack them through techniques that are becoming more successful with each passing month.
• Stronger Defenses Force Cybercriminals to Rethink Strategy
  Researchers see the rise of new relationships and attack techniques as criminals put companies' resilience to the test.
• Why Companies Fail to Learn from Peers' Mistakes (and How They Can Change)
  Far too often, there's a new breach in the headlines. Companies need to start learning some obvious lessons.
• Attackers Try to Evade Defenses with Smaller DDoS Floods, Probes
  Cybercriminals are initiating more attacks using low-bandwidth techniques, but the tactics expand the gray area between DDoS attacks and popular methods of mass scanning.
• GitHub Named in Capital One Breach Lawsuit
  A new lawsuit says that GitHub bears responsibility for the Capital One breach because it actively encourages hacking and stored stolen data.
• Apple's New Bounty Program Has Huge Incentives, Big Risks
  Industry observers applaud the program's ability to find exploits but fear unintended consequences.
• Barracuda Buys Bot-Battling Tech from InfiSecure
  The intellectual property acquired will add to Barracuda's bot-detection capabilities.
• The California Consumer Privacy Act's Hidden Surprise Has Big Legal Consequences
  The CCPA's provision devoted to 'reasonable' cybersecurity procedures and policies could trip up your business. Get ready now.
• 700K Guest Records Stolen in Choice Hotels Breach
  Cybercriminals reportedly stole the information from an exposed MongoDB database on a third-party server.

• Cyberthreats Against Financial Services Up 56%
  Financial institutions interacting with customers online must prepare for a broader, more sophisticated variety of threats.
• Who Gets Privileged Access & How to Enforce It
  Let's begin by re-evaluating IT infrastructures to determine who has access to what, why, and when.
• 5 Ways to Improve the Patching Process
  So many software vulnerabilities, so little time. But failure to patch them can have serious consequences. Here's help for overwhelmed security teams.
• Towns Across Texas Hit in Coordinated Ransomware Attack
  The state government and cybersecurity groups have mobilized to respond to a mass ransomware attack that simultaneously hit 23 different towns statewide.
• Tough Love: Debunking Myths about DevOps & Security
  It's time to move past trivial 'shift left' conceptions of DevSecOps and take a hard look at how security work actually gets accomplished.
• Project Zero Turns 5: How Google's Zero-Day Hunt Has Grown
  At Black Hat USA, Project Zero's team lead shared details of projects it has accomplished and its influence on the security community.
• European Central Bank Website Hit by Malware Attack
  The website was infected with malware that stole information on subscribers to a bank newsletter.
• Behind the Scenes at ICS Village
  ICS Village co-founder Bryson Bort reveals plans for research-dedicated events that team independent researchers, critical infrastructure owners, and government specialists.
• NSA Researchers Talk Development, Release of Ghidra SRE Tool
  NSA researchers took the Black Hat stage to share details of how they developed and released the software reverse-engineering framework.
• Adware, Trojans Hit Education Sector Hard
  Students continue to be weak links for schools and universities, according to data from security firm Malwarebytes.
• New Research Finds More Struts Vulnerabilities
  Despite aggressive updating and patching, many organizations are still using versions of Apache Struts with known -- and new -- vulnerabilities.
• Financial Phishing Grows in Volume and Sophistication in First Half of 2019
  Criminals are using the tools intended to protect consumers to attack them through techniques that are becoming more successful with each passing month.
• Attackers Try to Evade Defenses with Smaller DDoS Floods, Probes
  Cybercriminals are initiating more attacks using low-bandwidth techniques, but the tactics expand the gray area between DDoS attacks and popular methods of mass scanning.
• BioStar 2 Leak Exposes 23GB Data, 1M Fingerprints
  Thousands of organizations, including banks, governments, and the UK Metropolitan Police, use the biometric security tool to authenticate users.
• Microservices Flip App Security on Its Head
  With faster application deployment comes increased security considerations.
• Orgs Doing More App Security Testing but Fixing Fewer Vulns
  On average, US organizations took nearly five months to fix critical vulnerabilities according to WhiteHat Security's annual vulnerability report.
• Moving on Up: Ready for Your Apps to Live in the Cloud?
  Among the complications: traditional security tools work poorly or not at all in the cloud, and if a company screws up, the whole Internet will know.
• More Focus on Security as Payment Technologies Proliferate
  Banks and merchants are expanding their payment offerings but continue to be wary of the potential fraud risk.
• 6 Security Considerations for Wrangling IoT
  The Internet of Things isn't going away, so it's important to be aware of the technology's potential pitfalls.
• Is My Development Environment at Risk?
  Development environments pose a few unique risks to the organization.

$199 ENROLLS YOU INTO OUR SELF PACED COURSE – LFS264 – OPNFV FUNDAMENTALS!