GE Scott Knauss - Security Guy
3,627 Added | 4 Magazines | 48 Likes | 3 Following | 528 Followers | @immauss | CEO Immauss Technology Solutions
Inside Job: SunTrust Ex-Employee Takes Info on 1.5 Million Customers
Preventing inside data theft may be inconvenient. So is loosing a lot of customer information.<p>Facebook, Grindr, Equifax: data breaches have become a normal part of modern life. The latest is SunTrust. The Atlanta-based bank told 1.5 million customers that their data may have been stolen.<p>What makes …
Identity TheftHackers once stole a casino's high-roller database through a thermometer in the lobby fish tank
LONDON — Hackers are increasingly targeting "internet of things" devices to access corporate systems, using things like CCTV cameras or air-conditioning units, according to the CEO of a cybersecurity firm.<p>The internet of things refers to devices hooked up to the internet, and it has expanded to …
Internet of ThingsThousands of compromised websites spreading malware via fake updates
Malicious hackers have been exploiting thousands of legitimate websites since at least December 2017 in a sophisticated campaign that has disguised …
MalwareSecuring DNS across all of my devices with Pi-Hole + DNS-over-HTTPS + 1.1.1.1
DNS is the protocol that makes the web work. It's how we convert easy to remember names like facebook.com into hard to remember IP addresses like …
LinuxSears Delta Airlines Are Latest Victims of Third-Party Security Breach
An insecure ecosystem of third parties connected to an enterprise network poses a growing risk, security analysts say.<p>Looks like you've hit your …
Information SecurityAndroid Patches Can Skip a Beat
Researchers have found that some Android devices are skipping patches and lying about it.<p>When a device isn't patched to the most current OS level, it …
Information SecurityHow To: Create Custom Wordlists for Password Cracking Using the Mentalist
Beginners learning brute-forcing attacks against WPA handshakes are often let down by the limitations of default wordlists like RockYou based on …
White HatPanera Bread Leaves Millions of Customer Records Exposed Online
Personal information exposed in plain text for months on Panerabread.com and the company's response failed to rise to the challenge.<p>Panera Bread, the …
Information SecurityTLS version 1.3: Change is here and Encrypted Traffic Analytics has got your back
Networks are becoming increasingly opaque via encrypted sessions, greatly benefiting end users because it ensures privacy and authenticity of the connection between applications over networks where we must assume zero trust. The bad news is that threat actors are also benefiting from pervasive …
Information SecurityAMD issues chip patches for Spectre flaw
The chipmaker releases microcode updates to contain a variant of Spectre. Also, Microsoft is releasing an update for Windows 10.<p>Chipmaker AMD issued updates Tuesday to combat a variant of the Spectre flaw, which makes computer processors vulnerable to attacks that could reveal sensitive information …
Information SecurityIran hit by global cyber attack that left U.S. flag on screens
DUBAI (Reuters) - Hackers have attacked networks in a number of countries including data centers in Iran where they left the image of a U.S. flag on screens along with a warning: "Don't mess with our elections", the Iranian IT ministry said on Saturday.<p>"The attack apparently affected 200,000 router …
CybersecurityHow to Build a Cybersecurity Incident Response Plan
Being hit by a cyberattack is going to be painful. But it can be less painful if you're prepared, and these best practices can help.<p>When it comes to …
Information SecurityThe government seizes Backpage.com
Visitors to Backpage.com today were greeted by a simple message from the U.S. Department of Justice, noting that it had seized the classifieds site. According to the static image, the move was a joint effort that included the FBI, IRS and the U.S Postal Inspection Service.<p>The action, while brash, …
CrimeThe Billion-Dollar Hacking Group Behind a String of Big Breaches
This week, Saks Fifth Avenue, Saks Off 5th, and Lord & Taylor department stores—all owned by The Hudson’s Bay Company—acknowledged a data breach …
CybersecurityWoman discovers via Ancestry.com that her biological father was her parents' fertility doctor
A 36-year-old woman who innocently sent her DNA to Ancestry.com opened a box of unpleasant surprises for the entire family when it was revealed her father is the fertility doctor who was helping her parents get pregnant in the late '70s.<p>Kelli Rowlette, a Washngton state resident, claims in a …
SpermIntel: We now won't ever patch Spectre variant 2 flaw in these chips
A handful of CPU families that Intel was due to patch will now forever remain vulnerable.<p>Intel is dropping plans to patch certain CPU families …
Computer HardwareCracking Passwords up to 256 Characters with Hashcat
Think your 12 character passwords are still strong enough? One of the top password cracking programs can now crack password up to 256 characters!The …
Information SecurityDo you need any help with CloudForms?
We all know that sometimes we need some help with any tool we want to set up, and in CloudForms we are having such a great momentum because we …
Quantum MechanicsMeltdown patches from Microsoft made Windows 7 and Windows Server 2008 less secure
If you're running Windows 7 and you've not yet installed the March updates, now is very much the time to do so. It turns out that the Meltdown …
Information SecurityBaltimore Hit with Hack on 911 System
An attack took down part of Baltimore's 911 system for 17 hours over the weekend, and details are still in short supply.
Information SecurityTotal Meltdown: How Microsoft's Meltdown patch created an even bigger flaw for hackers
The vulnerability affects Windows 7 and Windows Server 2008 R2, and gives complete memory access to hackers.<p>Building a slide deck, pitch, or …
Information SecurityDrupalgeddon: Highly Critical Flaw Exposes Million Drupal Websites to Attacks
<b>All versions of the Drupal content management system are affected by a highly critical vulnerability that can be easily exploited to take complete</b> …
Information SecurityApple macOS Bug Reveals Passwords for APFS Encrypted Volumes in Plaintext
A severe programming bug has been found in APFS file system for macOS High Sierra operating system that exposes passwords of encrypted external …
Information SecurityRansomware, other cyberattacks hit US cities, states, companies
Video<p>Atlanta's recovery from ransomware attack<p>U.S. cities, states and companies increasingly find themselves at risk for cyberattacks and breaches involving so-called ransomware, which place them at the mercy of hackers demanding money.<p>Recent examples have taken place in computer networks serving …
Cyber-attacksCisco critical flaw: At least 8.5 million switches open to attack, so patch now
Cisco patches a severe flaw in switch deployment software that can be attacked with crafted messages sent to a port that's open by default.<p>Cisco has …
Information SecurityA Cyberattack Hobbles Atlanta, and Security Experts Shudder
ATLANTA — The City of Atlanta’s 8,000 employees got the word on Tuesday that they had been waiting for: It was O.K. to turn their computers on.<p>But as the city government’s desktops, hard drives and printers flickered back to life for the first time in five days, residents still could not pay their …
CybersecurityDrupal core - Highly critical - Remote Code Execution - SA-CORE-2018-002
Project: Drupal coreDate: 2018-March-28Security risk: <b>Highly critical</b> 24∕25 AC:None/A:None/CI:All/II:All/E:Exploit/TD:DefaultVulnerability: Remote …
DrupalAlmost six out of 10 organizations suffer ransomware attacks
New research reveals that 56 percent of surveyed decision makers from IT and risk, fraud or compliance functions report that their organization has …
CybersecurityNew Ransomware Attacks Endpoint Defenses
AVCrypt tries to disable anti-malware software before it can be detected and removed.<p>A newly discovered ransomware variant attempts to remove any …
MalwareCCleaner Malware Targeted Tech Giants Cisco, Google, Microsoft
The backdoor discovered in Avast's CCleaner targeted top tech companies including Google, Microsoft, Samsung, Sony, VMware, and Cisco.<p>When Cisco …
Information Security