News

Finance & Banking , Industry Specific , Security Operations Regulator Cites Email Takeovers, Inadequate Incident Response Dan Gunderman (dangun127) • September 1, 2021     (Photo: Securities and Exchange Commission via Flickr) The U.S. Securities and Exchange Commission sanctioned eight financial firms for alleged failures related to cybersecurity policies and procedures, each stemming from email…

Microsoft today announced plans to launch Windows 11 on October 5th, inviting us to a world of exciting new features like rounded corners and a new default desktop wallpaper. As new named versions of Windows goes, 11 seems a smaller upgrade than from, say, Windows 3.1 to Windows 95, or from Window 8 to straight-up…

Boston Public Library Hit With Cyberattack | IT Security News 30. August 2021 This article has been indexed from SecurityWeek RSS Feed The Boston Public Library was hit with a cyberattack earlier this week that crippled its computer network, the library said in a statement Friday. There is no evidence that sensitive employee or patron…

The federal agency urges organizations to ditch the bad practice and instead use multi-factor authentication methods The Cybersecurity and Infrastructure Security Agency (CISA) has added the use of single-factor authentication to its brief list of bad practices that it considers to be exceptionally risky when it comes to cybersecurity. “Single-factor authentication is a common low-security…

Windows Hello is a biometrics-based technology that enables Windows 10 users (and those who update to Windows 11) to authenticate secure access to their devices, apps, online services and networks with just a fingerprint, iris scan or facial recognition. The sign-in mechanism is essentially an alternative to passwords and is widely considered to be a…

Microsoft warned about a massive credential phishing campaign using open redirects. Here’s how you can recognize these phishing mails. The Microsoft 365 Defender Threat Intelligence Team posted an article stating that they have been tracking a widespread credential phishing campaign using open redirector links. Open redirects have been part of the phisher’s arsenal for a…

New positions are being created at the United States Department of Justice (DOJ) with the intention of helping prosecutors and attorneys handle emerging national security threats. The positions are part of a new Cyber Fellowship program, announced by Deputy Attorney General Lisa Monaco on Friday. The fellowship program will be coordinated by the Criminal Division’s…

Network-attached storage (NAS) maker QNAP is investigating and working on security updates to address remote code execution (RCE) and denial-of-service (DoS) vulnerabilities patched by OpenSSL last week. The security flaws tracked as CVE-2021-3711 and CVE-2021-3712, impact QNAP NAS device running QTS, QuTS hero, QuTScloud, and HBS 3 Hybrid Backup Sync (a backup and disaster recovery…