Category Archives: Network Security
New cyber council tackles infosec challenges from a tech perspective
Cybercrime is a plague on all industries, but a technology-borne problem at its core. So it makes sense that leading IT experts and infosec solution providers would step up to provide key advice to the tech community on how to protect customers from prevalent cyberthreats. To that end, the nonprofit IT trade association CompTIA this month officially…
The post New cyber council tackles infosec challenges from a tech perspective appeared first on SC Media.
Hackers hijacked cloud accounts of high-tech and aviation firms, hid in systems for years
The effectiveness of this operation serves as a reminder of the risks of openly sharing and storing plain-text network credentials or sensitive network access instructions on internet-accessible apps or servers.
The post Hackers hijacked cloud accounts of high-tech and aviation firms, hid in systems for years appeared first on SC Media.
SolarWinds attack opened up 4 separate paths to a Microsoft 365 cloud breach
Tactics expose the need for organizations to develop cohesive playbooks for breaches affecting hybrid environments.
The post SolarWinds attack opened up 4 separate paths to a Microsoft 365 cloud breach appeared first on SC Media.
7 vulnerabilities in popular DNS forwarding software open door to range of attacks
Researchers at JSOF have discovered distinct spoofing and buffer overflow vulnerabilities associated with DNSMasq, used in networking devices to cache and forward Domain Name System requests.
The post 7 vulnerabilities in popular DNS forwarding software open door to range of attacks appeared first on SC Media.
Free cyber career training coursework emerges as a perk in tough times
New complimentary offerings are helping current, aspiring and unemployed infosec professionals gain an upper hand in a down economy, while aiding an industry facing a growing skills gap.
The post Free cyber career training coursework emerges as a perk in tough times appeared first on SC Media.
NSA urges use of enterprise resolvers to protect DNS traffic on corporate networks
NSA advises security pros to use designated enterprise DNS resolvers to lock down DoH on corporate networks.
The post NSA urges use of enterprise resolvers to protect DNS traffic on corporate networks appeared first on SC Media.
Apple nixes feature that let its apps skip VPNs and firewalls, after criticism from researchers
The software essentially exempted Apple’s own programs from being routed through its Network Extension Framework, which the company created for third-party security products to monitor and filter network traffic.
The post Apple nixes feature that let its apps skip VPNs and firewalls, after criticism from researchers appeared first on SC Media.
Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities
Google’s Project Zero this week introduced a six-part series that offers an analysis of four zero-day vulnerabilities on Windows and Chrome, and known-day Android exploits it found during the team’s extensive research last year.
The post Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities appeared first on SC Media.
Complexity and cost chip away at SOCs’ perceived return on investment
51% of 17,200 surveyed IT and security practitioners said that
their SOC’s ROI has gotten worse.
The post Complexity and cost chip away at SOCs’ perceived return on investment appeared first on SC Media.