Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup.
Lock the vote (election insecurity), “Spamalot” returns for a second act, and SamSam hits a grand slam as a heavy ransomware hitter.
via Tim Mackey, Synopsys Software Integrity Blog: Russia and other nation-states are looking to hack your vote in the upcoming midterm elections. So who’s going to fix it? Concerns about protecting voting machines from hacking continue, and securing voter registration databases creates other issues. Your vote is a right you have earned, and in response to the proven threats to election security, many states are taking action to protect and preserve this right. Watch this segment to learn why it’s trending.
via F-Secure: There’s a plethora of attack vectors available to online criminals these days. Despite that, they still choose spam as their returning act. It just can’t seem to quit working. Haven’t we learned not to open unknown attachments? Haven’t we trained our employees—and our parents—not to click on unknown links? Why is spam still around after multiple decades? And why does it still work? See why when you watch this segment.
via Mark Stockley, Naked Security: SamSam has hit a grand slam, an estimated $6 million one. Previously, experts thought the ransomware, live for over 2 ½ years now, was targeting the public sector (healthcare, government, education). As recently as March, estimates of payments were in the high five figures. But when researchers tracked payments to SamSam, they found a different story. It turns out the private sector has been hit much harder—though they’ve responded more quietly. The result: SamSam has raked in six times more than earlier estimates. Learn why the story is trending when you watch this segment.
*** This is a Security Bloggers Network syndicated blog from Software Integrity authored by Beth Gannett. Read the original post at: https://www.synopsys.com/blogs/software-security/lock-vote-spam-samsam-ransomware/