Monthly Archives: December 2020

Non-profit founded by Gates Foundation suffers massive exposure of student records

An exposed AWS bucket left hundreds of thousands of student-related records exposed to the internet, but officials from the non-profit say most of the data was old and obsolete.

The post Non-profit founded by Gates Foundation suffers massive exposure of student records appeared first on SC Media.

Continue reading

Posted in Breach, Cloud, Data Breach, Education, Security News | Comments Off on Non-profit founded by Gates Foundation suffers massive exposure of student records

Financial services industry hit with tens of millions of attacks per day

The report found that the bad threat actors primarily used common attack paths, such as SQL injection, local file inclusion and cross-site scripting.

The post Financial services industry hit with tens of millions of attacks per day appeared first on SC Media.

Continue reading

Posted in cyberattack, Financial-services, Security News, Threat intelligence | Comments Off on Financial services industry hit with tens of millions of attacks per day

The 2020 SolarWinds reality check: As cleanup continues, community considers implications

What might go down as the most consequential story of the year for the cybersecurity community only surfaced in December. And yet, experts predict years of clean up, both physical and political, and potential shifts in how the nation secures the supply chain.

The post The 2020 SolarWinds reality check: As cleanup continues, community considers implications appeared first on SC Media.

Continue reading

Posted in Breach, Data Breach, Featured, Security News, Third-party risk, Year in Review | Comments Off on The 2020 SolarWinds reality check: As cleanup continues, community considers implications

Ticketmaster fined $10 million in corporate espionage scheme

Ticketmaster tried to steal both a client and design ideas from a competitor by logging into the back-end system with a former employer’s login credentials.

The post Ticketmaster fined $10 million in corporate espionage scheme appeared first on SC Media.

Continue reading

Posted in Breach, Corporate News, Data Breach, Legal, Legal Action, Security News | Comments Off on Ticketmaster fined $10 million in corporate espionage scheme

2021 strategy predictions: Shifts in business models, shifts in security priorities

Enhanced email security? Growth of digital identities? Vulnerability management born from mergers and acquisitions? Here, cybersecurity experts offer their take on what strategic shifts we should expect within the enterprise.

The post 2021 strategy predictions: Shifts in business models, shifts in security priorities appeared first on SC Media.

Continue reading

Posted in Email Security, Featured, Phishing, Security News, Security strategy, Year in Review | Comments Off on 2021 strategy predictions: Shifts in business models, shifts in security priorities

New Golang worm turns Windows and Linux servers into monero miners

The potential number of systems is staggering: There are 5.5 million MySQL, Tomcat, Jenkins, and WebLogic devices connected to the internet that could be vulnerable.

The post New Golang worm turns Windows and Linux servers into monero miners appeared first on SC Media.

Continue reading

Posted in Cryptocurrency, Malware, Security News | Comments Off on New Golang worm turns Windows and Linux servers into monero miners

Cerberus Cyber Sentinel buys Alpine Security

The deal, and implication of more to come, hint at increased hunger for third-party security auditing services in the face of worsening cybercrime, and an increasingly complex regulatory compliance landscape.

The post Cerberus Cyber Sentinel buys Alpine Security appeared first on SC Media.

Continue reading

Posted in Corporate News, Pen testing, Security News | Comments Off on Cerberus Cyber Sentinel buys Alpine Security

A new year, a new administration: Doors open in 2021 for public-private cooperation

While much is speculative, a few aspects of how the government’s information security interactions with the private sector have begun to crystalize.

The post A new year, a new administration: Doors open in 2021 for public-private cooperation appeared first on SC Media.

Continue reading

Posted in Featured, Government, Government/Defense, Security News, Threat intelligence, Year in Review | Comments Off on A new year, a new administration: Doors open in 2021 for public-private cooperation

Kawasaki Heavy Industries, a partner of defense companies and agencies, reports breach

Of particular concern among some cybersecurity experts is the fact that the company took several months to report to the incidents, which stemmed from unauthorized access to servers from overseas offices.

The post Kawasaki Heavy Industries, a partner of defense companies and agencies, reports breach appeared first on SC Media.

Continue reading

Posted in Breach, Data Breach, Security News, Third-party risk | Comments Off on Kawasaki Heavy Industries, a partner of defense companies and agencies, reports breach