- Did Companies Fail to Disclose Being Affected by SolarWinds Breach?by Jai Vijayan Contributing Writer on June 21, 2021 at 10:35 pm
The SEC has sent out letters to some investment firms and publicly listed companies seeking information, Reuters says.
- A Bug in the Android Google App Put Privacy at Riskby Brian Barrett on June 19, 2021 at 1:00 pm
Plus: Airbnb's safety squad, a fake pharmacy crackdown, and more of the week's top security news.
- How Cyber Safe is Your Drinking Water Supply?by BrianKrebs on June 21, 2021 at 6:36 pm
Amid multiple recent reports of hackers breaking into and tampering with drinking water treatment systems comes a new industry survey with some sobering findings: A majority of the 52,000 separate drinking water systems in the United States still haven't inventoried some or any of their information technology systems -- a basic first step in protecting networks from cyberattacks.
- Wegmans Exposes Customer Data in Misconfigured Databasesby Lisa Vaas on June 21, 2021 at 9:52 pm
Cleanup in aisle "Oops": The supermarket chain said that it misconfigured two cloud databases, exposing customer data to public scrutiny.
- The Future of Machine Learning and Cybersecurityby Bruce Schneier on June 21, 2021 at 11:31 am
The Center for Security and Emerging Technology has a new report: “Machine Learning and Cybersecurity: Hype and Reality.” Here’s the bottom line: The report offers four conclusions: Machine learning can help defenders more accurately detect and triage potential attacks. However, in many cases these technologies are elaborations on long-standing methods — not fundamentally new approaches — that bring new attack surfaces of their own. A wide range of specific tasks could be fully or partially automated with the use of machine learning, including some forms of vulnerability discovery, deception, and attack disruption. But many of the most transformative of these possibilities still require significant machine learning breakthroughs. ...
- Do you want speed or security as expected? Spectre CPU defenses can cripple performance on Linux in testsby Thomas Claburn on June 22, 2021 at 3:02 am
All depends on whether your workload is making a lot of system calls or not The mitigations applied to exorcise Spectre, the family of data-leaking processor vulnerabilities, from computers hinders performance enough that disabling protection for the sake of speed may be preferable for some.…
- Windows 10 KB5003690 Cumulative Update released with gaming fixesby Lawrence Abrams on June 22, 2021 at 1:39 am
Microsoft has released the optional KB5003690 Preview cumulative update for Windows 10 2004, Windows 10 20H2, and Windows 10 21H1. [...]
- 5 Critical Steps to Recover From a Ransomware Attackby noreply@blogger.com (The Hacker News) on June 21, 2021 at 4:46 pm
Hackers are increasingly using ransomware as an effective tool to disrupt businesses and fund malicious activities. A recent analysis by cybersecurity company Group-IB revealed ransomware attacks doubled in 2020, while Cybersecurity Venture predicts that a ransomware attack will occur every 11 seconds in 2021. Businesses must prepare for the possibility of a ransomware attack affecting their
- 7 ways technical debt increases security riskby John Edwards on June 21, 2021 at 9:00 am
Two in three CISOs believe that technical debt, the difference between what's needed in a project and what's finally deployed, to be a significant cause of security vulnerability, according to the 2021 Voice of the CISO report, sponsored by Proofpoint.To read this article in full, please click here(Insider Story)