SQL Injection loses #1 spot as most dangerous attack technique

SQL Injection loses #1 spot as most dangerous attack technique

The Common Weakness Enumeration (CWE), a community-developed compilation of the most critical errors leading to vulnerabilities in software, has lowered SQL Injection from its #1 spot as the most dangerous attack technique ...
Ransomware Attacks Targeting U.S. Cities

Ransomware Attacks Targeting U.S. Cities

Targeted ransomware attacks on local US government entities—cities, schools, and police stations—are on the rise. In this blog learn you'll learn why ransomware attacks are successful, what you can do to minimize ...
US Homeland Security Wants Subpoena Power to Get Data from ISPs about Vulnerable Systems

US Homeland Security Wants Subpoena Power to Get Data from ISPs about Vulnerable Systems

The US Cybersecurity and Infrastructure Security Agency (CISA), in charge of leading national cybersecurity and infrastructure resilience programs, wants a change to federal law that would allow it to inspect systems behind ...
cyberthreats

5 Infamous Hacks You Didn’t Know Were Phishes

Despite the common knowledge around phishing, even the most tech-savvy are still falling prey to the tactic. In fact, millennials are more likely to become a phishing victim than their grandparents are ...
Security Boulevard
A Deep Dive on the Recent Widespread DNS Hijacking Attacks

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

The U.S. government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed suspected Iranian hackers to siphon huge ...
U.S. Senators Concerned by Government Employees’ Use of Foreign VPNs

U.S. Senators Concerned by Government Employees’ Use of Foreign VPNs

Two U.S. Senators expressed their concern that federal government employees could be undermining the United States’ national security by using VPNs made by foreign companies. In a letter dated 7 February 2019, ...
DHS Issues Emergency Directive on DNS Infrastructure Tampering

DHS Issues Emergency Directive on DNS Infrastructure Tampering

The Department of Homeland Security (DHS) has issued an emergency directive that requires federal agencies to mitigate the threat of Domain Name System (DNS) infrastructure tampering. In “Emergency Directive 19-01,” DHS explains ...

US Government Shutdown, Privacy at CES 2019, Mobile Location Data Controversy – WB51

Watch this episode on our YouTube Channel! This is your Shared Security Weekly Blaze for January 14th 2019 with your host, Tom Eston. In this week’s episode: The US government shutdown and ...

Midterm Election Security, Gait Recognition Surveillance Technology, Caller ID Authentication – WB42

This is your Shared Security Weekly Blaze for November 12, 2018 with your host, Tom Eston. In this week’s episode: Midterm Election Security, Gait Recognition Surveillance Technology and Caller ID Authentication Silent ...

More commentary on China, Apple, and supply-chain hacking

More links in the Apple (and Amazon etc.) supply chain security mystery ...
Loading...