Monthly Archives: January 2021

SolarWinds hack: Amid hardened security, attackers seek softer targets

Experts disagree that election security efforts detracted from supply chain security. But there are still lessons to be learned.

The post SolarWinds hack: Amid hardened security, attackers seek softer targets appeared first on SC Media.

Continue reading

Posted in Featured, Network Security, Security awareness, Security News, SolarWinds hack, Third-party risk | Comments Off on SolarWinds hack: Amid hardened security, attackers seek softer targets

White House unveils maritime cybersecurity standards for government and industry

Contributing $5.4 trillion to the U.S. economy, the maritime transportation system will adhere to guidelines for threat information sharing, creating a cybersecurity workforce, and establishing a risk framework for operational technology.

The post White House unveils maritime cybersecurity standards for government and industry appeared first on SC Media.

Continue reading

Posted in Critical Infrastructure, Government, Government/Defense, ICS security, Security News | Comments Off on White House unveils maritime cybersecurity standards for government and industry

Survey says, women in cyber make 31 percent less than men

The ever-widening cyber skills gap necessitates the closing of the gender pay gap, say experts. A few new initiatives attempt to do that.

The post Survey says, women in cyber make 31 percent less than men appeared first on SC Media.

Continue reading

Posted in Careers, Featured, Security News, Women in IT Security | Comments Off on Survey says, women in cyber make 31 percent less than men

After widespread hospital attacks, targeting of health care industry continues to rise

In the two months following a highly publicized series of ransomware attacks against UHS last year, cyber attacks of all stripes against healthcare facilities worldwide shot up 45%.

The post After widespread hospital attacks, targeting of health care industry continues to rise appeared first on SC Media.

Continue reading

Posted in Featured, Healthcare, Ransomware, Security News | Comments Off on After widespread hospital attacks, targeting of health care industry continues to rise

Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux

A new remote access trojan (RAT) lures cryptocurrency users to download trojanized apps by promoting the apps in dedicated online forums and on social media.

The post Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux appeared first on SC Media.

Continue reading

Posted in Cryptocurrency, Malware, Security News, Threat intelligence | Comments Off on Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux

Chinese espionage group APT27 moves into ransomware

The Chinese espionage group APT27 has moved into more financially-motivated cybercrimes, using ransomware to encrypt core servers at major gaming companies worldwide.

The post Chinese espionage group APT27 moves into ransomware appeared first on SC Media.

Continue reading

Posted in APT, Ransomware, Security News | Comments Off on Chinese espionage group APT27 moves into ransomware

SolarWinds hack poses risk to cloud services’ API keys and IAM identities

The SolarWinds hack endangers not just organizations’ on-premises systems but also their cloud-based infrastructure.

The post SolarWinds hack poses risk to cloud services’ API keys and IAM identities appeared first on SC Media.

Continue reading

Posted in Breach, Cloud, Cloud Security, Cyberespionage, Database security, Security News, SolarWinds hack | Comments Off on SolarWinds hack poses risk to cloud services’ API keys and IAM identities

Fourth breach at T-Mobile puts focus on security of post mergers

T-Mobile reported a breach that compromised customer data – the company’s fourth in three years – raises questions about whether the mobile carrier’s massive merger with Sprint left the combined company more vulnerable. Indeed, when companies merge, particularly sizable ones, the integration of technology systems and networks can often introduce new security considerations. “The volume…

The post Fourth breach at T-Mobile puts focus on security of post mergers appeared first on SC Media.

Continue reading

Posted in Breach, Data Breach, Mobile, Mobile Security, Phishing, Security News | Comments Off on Fourth breach at T-Mobile puts focus on security of post mergers

SolarWinds, top executives hit with class action lawsuit over Orion software breach

Stockholders who purchased company shares in 2020 are suing the IT management software company for materially misleading investors about their security practices.

The post SolarWinds, top executives hit with class action lawsuit over Orion software breach appeared first on SC Media.

Continue reading

Posted in Breach, Featured, Legal, Legal Action, Security News, SolarWinds hack, Third-party risk | Comments Off on SolarWinds, top executives hit with class action lawsuit over Orion software breach