Security – Page 268 – PossibleThreat Articles

Will XDR Improve Security?

July 29, 2019 0 Comments Managed Detection and Response, Security, XDR

Credit to Author: Jon Clay (Global Threat Communications)| Date: Mon, 29 Jul 2019 14:06:36 +0000

Cybercriminals and malicious hackers have been shifting their tactics, techniques, and procedures (TTPs) to improve their ability to infiltrate an organization and stay under the radar of security professionals and solutions. Moving to more targeted attack methods appears to be a mainstay among threat actors, which requires organizations to improve their visibility into the entire…

The post Will XDR Improve Security? appeared first on .

Security Wired

WannaCry Hero Marcus Hutchins Won’t Go to Jail for Old Hacking Crimes

July 27, 2019 0 Comments Security, Security / Security News

Credit to Author: Brian Barrett| Date: Sat, 27 Jul 2019 13:00:00 +0000

Russian election hacks, Amazon’s police partnerships, and more security news this week.

Security Wired

How to Get Your Equifax Settlement Money

July 27, 2019 0 Comments Security, Security / Security News

Credit to Author: Lily Hay Newman| Date: Fri, 26 Jul 2019 17:09:06 +0000

A settlement with the FTC means Equifax will pay victims of its breach $125 or more. Make sure it pay ups.

ComputerWorld Independent

Android security: Analysis, advice, and next-level knowledge

July 26, 2019 0 Comments Android, Mobile Security, Security

Credit to Author: JR Raphael| Date: Fri, 26 Jul 2019 09:39:00 -0700

It’s tough to talk about Android security without venturing into sensational terrain.

A large part of that is due to the simple fact that the forces driving most Android security coverage are companies that make their money by selling Android security software — and thus companies with strong interests in pushing the narrative that every Android phone is on the perpetual brink of grave, unfathomable danger. Plus, let’s face it: A headline about 70 gazillion Android phones being vulnerable to the MegaMonsterSkullCrusher Virus is far more enticing than one explaining the nuanced realities of Android security.

In actuality, though, Android security is a complex beast — one with multiple layers in place to protect you and one that almost never warrants an alarmist attitude. I’ve been covering Android security closely since the platform’s earliest days, and I’ve busted more myths and called out more shameless publicity stunts than I can even count at this point.

To read this article in full, please click here

Security TrendMicro

Windows Server 2008 End of Support: Are you Prepared?

July 26, 2019 0 Comments Network, Security, Vulnerabilities & Exploits

Credit to Author: Pawan Kinger (Director, Deep Security Labs)| Date: Fri, 26 Jul 2019 13:42:36 +0000

On July 14th, 2015, Microsoft’s widely deployed Windows Server 2003 reached end of life after nearly 12 years of support. For millions of enterprise servers, this meant the end of security updates, leaving the door open to serious security risks. Now, we are fast approaching the end of life of another server operating system –…

The post Windows Server 2008 End of Support: Are you Prepared? appeared first on .

ComputerWorld Independent

Mozilla blames 'interlocking complex systems' and confusion for Firefox's May add-on outage

July 26, 2019 0 Comments Browsers, Security, Software

Credit to Author: Gregg Keizer| Date: Fri, 26 Jul 2019 03:00:00 -0700

Mozilla has issued multiple after-action reports analyzing the major mix-up in May that crippled most Firefox add-ons. The reports also made recommendations for preventing similar incidents in the future.

The fiasco started just after 8 p.m. ET on Friday, May 3, when a certificate used to digitally sign Firefox extensions expired. Because Mozilla had neglected to renew the certificate, Firefox assumed add-ons could not be trusted – that they were potentially malicious – and disabled any already installed. Add-ons could not be added to the browser for the same reason.

To read this article in full, please click here

ComputerWorld Independent

Researchers to launch intentionally ‘vulnerable’ blockchain at Black Hat

July 25, 2019 0 Comments Blockchain, Emerging Technology, Security

Credit to Author: Lucas Mearian| Date: Thu, 25 Jul 2019 14:06:00 -0700

Hoping to raise awareness about blockchain vulnerabilities, cybersecurity firm Kudelski Security next week plans to launch the industry’s first “purposefully vulnerable” blockchain – and will demo it at next month’s Black Hat conference.

Kudelski Security’s FumbleChain project is aimed at highlighting vulnerabilities in blockchain ecosystems, according to Nathan Hamiel, head of cybersecurity research at Kudelski.

The flawed blockchain ledger is written in Python 3.0, making it easy for anyone to read and modify its source code, and it’s modular – allowing users to hack and add new challenges to promote continuous learning.

To read this article in full, please click here

Security Wired