GE Scott Knauss - Security Guy

3,627 Added | 4 Magazines | 48 Likes | 3 Following | 528 Followers | @immauss | CEO Immauss Technology Solutions

Inside Job: SunTrust Ex-Employee Takes Info on 1.5 Million Customers

Preventing inside data theft may be inconvenient. So is loosing a lot of customer information.<p>Facebook, Grindr, Equifax: data breaches have become a normal part of modern life. The latest is SunTrust. The Atlanta-based bank told 1.5 million customers that their data may have been stolen.<p>What makes …

Identity Theft

Hackers once stole a casino's high-roller database through a thermometer in the lobby fish tank

LONDON — Hackers are increasingly targeting "internet of things" devices to access corporate systems, using things like CCTV cameras or air-conditioning units, according to the CEO of a cybersecurity firm.<p>The internet of things refers to devices hooked up to the internet, and it has expanded to …

Internet of Things

Thousands of compromised websites spreading malware via fake updates

Malicious hackers have been exploiting thousands of legitimate websites since at least December 2017 in a sophisticated campaign that has disguised …

Malware

Securing DNS across all of my devices with Pi-Hole + DNS-over-HTTPS + 1.1.1.1

DNS is the protocol that makes the web work. It's how we convert easy to remember names like facebook.com into hard to remember IP addresses like …

Linux

Sears Delta Airlines Are Latest Victims of Third-Party Security Breach

An insecure ecosystem of third parties connected to an enterprise network poses a growing risk, security analysts say.<p>Looks like you've hit your …

Information Security

Android Patches Can Skip a Beat

Researchers have found that some Android devices are skipping patches and lying about it.<p>When a device isn't patched to the most current OS level, it …

Information Security

How To: Create Custom Wordlists for Password Cracking Using the Mentalist

Beginners learning brute-forcing attacks against WPA handshakes are often let down by the limitations of default wordlists like RockYou based on …

White Hat

Panera Bread Leaves Millions of Customer Records Exposed Online

Personal information exposed in plain text for months on Panerabread.com and the company's response failed to rise to the challenge.<p>Panera Bread, the …

Information Security

TLS version 1.3: Change is here and Encrypted Traffic Analytics has got your back

Networks are becoming increasingly opaque via encrypted sessions, greatly benefiting end users because it ensures privacy and authenticity of the connection between applications over networks where we must assume zero trust. The bad news is that threat actors are also benefiting from pervasive …

Information Security

AMD issues chip patches for Spectre flaw

The chipmaker releases microcode updates to contain a variant of Spectre. Also, Microsoft is releasing an update for Windows 10.<p>Chipmaker AMD issued updates Tuesday to combat a variant of the Spectre flaw, which makes computer processors vulnerable to attacks that could reveal sensitive information …

Information Security

Iran hit by global cyber attack that left U.S. flag on screens

DUBAI (Reuters) - Hackers have attacked networks in a number of countries including data centers in Iran where they left the image of a U.S. flag on screens along with a warning: "Don't mess with our elections", the Iranian IT ministry said on Saturday.<p>"The attack apparently affected 200,000 router …

Cybersecurity

How to Build a Cybersecurity Incident Response Plan

Being hit by a cyberattack is going to be painful. But it can be less painful if you're prepared, and these best practices can help.<p>When it comes to …

Information Security

The government seizes Backpage.com

Visitors to Backpage.com today were greeted by a simple message from the U.S. Department of Justice, noting that it had seized the classifieds site. According to the static image, the move was a joint effort that included the FBI, IRS and the U.S Postal Inspection Service.<p>The action, while brash, …

Crime

The Billion-Dollar Hacking Group Behind a String of Big Breaches

This week, Saks Fifth Avenue, Saks Off 5th, and Lord & Taylor department stores—all owned by The Hudson’s Bay Company—acknowledged a data breach …

Cybersecurity

Woman discovers via Ancestry.com that her biological father was her parents' fertility doctor

A 36-year-old woman who innocently sent her DNA to Ancestry.com opened a box of unpleasant surprises for the entire family when it was revealed her father is the fertility doctor who was helping her parents get pregnant in the late '70s.<p>Kelli Rowlette, a Washngton state resident, claims in a …

Sperm

Intel: We now won't ever patch Spectre variant 2 flaw in these chips

A handful of CPU families that Intel was due to patch will now forever remain vulnerable.<p>Intel is dropping plans to patch certain CPU families …

Computer Hardware

Cracking Passwords up to 256 Characters with Hashcat

Think your 12 character passwords are still strong enough? One of the top password cracking programs can now crack password up to 256 characters!The …

Information Security

Do you need any help with CloudForms?

We all know that sometimes we need some help with any tool we want to set up, and in CloudForms we are having such a great momentum because we …

Quantum Mechanics

Meltdown patches from Microsoft made Windows 7 and Windows Server 2008 less secure

If you're running Windows 7 and you've not yet installed the March updates, now is very much the time to do so. It turns out that the Meltdown …

Information Security

Baltimore Hit with Hack on 911 System

An attack took down part of Baltimore's 911 system for 17 hours over the weekend, and details are still in short supply.

Information Security

Total Meltdown: How Microsoft's Meltdown patch created an even bigger flaw for hackers

The vulnerability affects Windows 7 and Windows Server 2008 R2, and gives complete memory access to hackers.<p>Building a slide deck, pitch, or …

Information Security

Drupalgeddon: Highly Critical Flaw Exposes Million Drupal Websites to Attacks

<b>All versions of the Drupal content management system are affected by a highly critical vulnerability that can be easily exploited to take complete</b> …

Information Security

Apple macOS Bug Reveals Passwords for APFS Encrypted Volumes in Plaintext

A severe programming bug has been found in APFS file system for macOS High Sierra operating system that exposes passwords of encrypted external …

Information Security

Ransomware, other cyberattacks hit US cities, states, companies

Video<p>Atlanta's recovery from ransomware attack<p>U.S. cities, states and companies increasingly find themselves at risk for cyberattacks and breaches involving so-called ransomware, which place them at the mercy of hackers demanding money.<p>Recent examples have taken place in computer networks serving …

Cyber-attacks

Cisco critical flaw: At least 8.5 million switches open to attack, so patch now

Cisco patches a severe flaw in switch deployment software that can be attacked with crafted messages sent to a port that's open by default.<p>Cisco has …

Information Security

A Cyberattack Hobbles Atlanta, and Security Experts Shudder

ATLANTA — The City of Atlanta’s 8,000 employees got the word on Tuesday that they had been waiting for: It was O.K. to turn their computers on.<p>But as the city government’s desktops, hard drives and printers flickered back to life for the first time in five days, residents still could not pay their …

Cybersecurity

Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-002

Project: Drupal coreDate: 2018-March-28Security risk: <b>Highly critical</b> 24∕25 AC:None/A:None/CI:All/II:All/E:Exploit/TD:DefaultVulnerability: Remote …

Drupal

Almost six out of 10 organizations suffer ransomware attacks

New research reveals that 56 percent of surveyed decision makers from IT and risk, fraud or compliance functions report that their organization has …

Cybersecurity

New Ransomware Attacks Endpoint Defenses

AVCrypt tries to disable anti-malware software before it can be detected and removed.<p>A newly discovered ransomware variant attempts to remove any …

Malware

CCleaner Malware Targeted Tech Giants Cisco, Google, Microsoft

The backdoor discovered in Avast's CCleaner targeted top tech companies including Google, Microsoft, Samsung, Sony, VMware, and Cisco.<p>When Cisco …

Information Security