Latest Cybersecurity News

Latest Information and Cybersecurity News including Analytics, CISO, Cloud Security, Cybercrime, Data Security, DevOps, GRC, IoT, Social Engineering, Threats & Breaches and more.

Security Boulevard's 5 Most Read Stories for the Week, April 16-20

Security Boulevard’s 5 Most Read Stories for the Week, April 16-20

A new week, a new crop of security stories. Last week, sophisticated attackers, desktop security, healthcare data breaches and data security in GDPR made headlines, as well as Multi-Factor Authentication featured in the our latest cartoon series called, “Shimmytoons.” Missed out on any of the news? Here are the five ... Read More
Oracle Fixes Critical Vulnerabilities in Business Applications

Oracle Fixes Critical Vulnerabilities in Business Applications

Oracle has released a new quarterly critical patch update (CPU) for its product portfolio, fixing 254 vulnerabilities across 20 product families. More than two-thirds of those flaws are located in business-critical applications and 42 are rated critical. According to security firm Onapsis, the business applications with critical vulnerabilities include Communications ... Read More
Widely Used WebEx Clients Have Critical Vulnerability

Widely Used WebEx Clients Have Critical Vulnerability

Cisco Systems has released security updates for the software clients installed by users who attend WebEx-based meetings to fix a critical vulnerability that could allow remote attackers to compromise their computers. “An attacker could exploit this vulnerability by providing meeting attendees with a malicious Flash (.swf) file via the file-sharing ... Read More
Mobile Surveillance Malware Found on Google Play

Mobile Surveillance Malware Found on Google Play

Researchers have found sophisticated Android mobile surveillance programs created by cyberespionage groups on Google’s official Play store. Such malware is generally distributed in targeted attacks by tricking victims into downloading and installing trojanized apps from third-party sources, but the ability of attackers to host them on Google Play makes them ... Read More
Security Boulevard's 5 Most Read Stories for the Week, April 9-13

Security Boulevard’s 5 Most Read Stories for the Week, April 9-13

A new week, a new crop of security stories. Last week, sophisticated attackers, desktop security, healthcare data breaches and data security in GDPR made headlines, as well as Multi-Factor Authentication featured in the our latest cartoon series called, “Shimmytoons.” Missed out on any of the news? Here are the five ... Read More
Cisco Strengthens Cloud Security Service

Cisco Strengthens Cloud Security Service

Cisco Systems at RSA Conference 2018 significantly expanded its Advanced Malware Protection (AMP) for Endpoints cloud security service by adding support for machine learning algorithms, analytics and modeling capabilities that collectively serve to thwart spear phishing and other types of cyberattacks launched via email. In addition, Cisco announced it has ... Read More
Stealing Infrastructure Cryptomining Attacks

Hackers Exploit Drupal Vulnerability to Install Cryptocurrency Miners

A highly critical vulnerability patched in the popular Drupal content management system two weeks ago is seeing a wave of exploits, some of which install cryptocurrency mining malware on servers. The vulnerability tracked as CVE-2018-7600 but also dubbed Drupalgeddon2, affects all versions of Drupal since version 6.x and was patched ... Read More
Many Android Devices Miss Patches But Are Still Hard to Hack

Many Android Devices Miss Patches But Are Still Hard to Hack

New research shows that many Android devices are missing some security patches despite displaying patch levels that should include them. That said, implementing remote code execution attacks that can compromise Android devices without user interaction is very difficult, which is why cybercriminals continue to prefer social engineering over technical exploitation, ... Read More
Employee Convenience Trumps InfoSec

Microsoft Fixes 66 Vulnerabilities Across Its Products

Microsoft’s April security updates include fixes for 66 vulnerabilities in Windows components, the Edge and Internet Explorer browsers, the Office suite, the Hyper-V hypervisor, Visual Studio and even a wireless keyboard. Of the 66 flaws, 22 are rated critical. “The majority of the Microsoft critical vulnerabilities are in browsers and ... Read More
New Document Attack Exploits Design Behavior Rather than Macros

New Document Attack Exploits Design Behavior Rather than Macros

Malicious Microsoft Word documents sent via email are a hacker favorite when it comes to infecting computers, but researchers have recently observed an attack campaign that uses first-stage docs without any active malicious code. Instead of using macros or other embedded shellcode that might get blocked by Word’s security settings ... Read More
Loading...