Vous êtes ici :   Accueil » RSS - net-security.org
 
Prévisualiser...  Imprimer...  Imprimer la page...
!Introduction
Technique
Outils
Base de connaissances
Visites

 1683495 visiteurs

 2 visiteurs en ligne

Contact

Notre site
griessenconsulting-Tag-Qrcode.png

info@griessenconsulting.ch

ch.linkedin.com/in/thierrygriessenCISA

Neuchâtel, Suisse


Mes coordonées
griessenconsulting-Tag-Vcard-OK.png

Crée votre Code

RSS - net-security.org

Help Net Security


Daily information security news with a focus on enterprise security.


New Open Source Security Foundation wants to improve open source software security  Voir?

The Linux Foundation announced the formation of the Open Source Security Foundation (OpenSSF), a cross-industry collaboration that brings together leaders to improve the security of open source software (OSS) by building a broader community with targeted initiatives and best practices. It combines efforts from the Core Infrastructure Initiative, GitHub’s Open Source Security Coalition and other open source security work from founding governing board members GitHub, Google, IBM, JPMorgan Chase, Microsoft, NCC Group, OWASP Foundation and … More

The post New Open Source Security Foundation wants to improve open source software security appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 17:16)

Meetup vulnerabilities enabled group takeovers, payment redirections  Voir?

Two high-risk vulnerabilities in Meetup, a popular online service that’s used to create groups that host local in-person events, allowed attackers to easily take over any Meetup group, access all group functions and assets, and redirect all Meetup payments/financial transactions to their PayPal account (some Meetup events are free, but some are not). What’s more, attackers could create a worm to take over all meetings on the site – including private ones – and do … More

The post Meetup vulnerabilities enabled group takeovers, payment redirections appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 15:00)

Granting employees admin status is convenient but risky  Voir?

One of your employees needs access to part of your customer database so he can fulfill an urgent reporting request. You’re busy and this employee is trustworthy, so you grant him administrative status. Simple solution, right? You’ll revoke it later when you’re done with the other 600 critical things you’re working on right now. Right? Not so fast. In reality, freely granting employees admin status is one of the most common mistakes enterprises make. Even … More

The post Granting employees admin status is convenient but risky appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 07:00)

How AI can alleviate data lifecycle risks and challenges  Voir?

The volume of business data worldwide is growing at an astounding pace, with some estimates showing the figure doubling every year. Over time, every company generates and accumulates a massive trove of data, files and content – some inconsequential and some highly sensitive and confidential in nature. Throughout the data lifecycle there are a variety of risks and considerations to manage. The more data you create, the more you must find a way to track, … More

The post How AI can alleviate data lifecycle risks and challenges appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 06:30)

How privacy can decrease safety  Voir?

As a software company founder, I spent the majority of 2017 collecting feedback from teens, pediatricians, church leaders, and school administrators of the trends they are seeing in the United States related to sexting and sextortion. Bark Technologies, which monitors over 5M teens text, email, school, and social media accounts, says that “texting is the new first base” for this generation. Pediatricians also confirmed that this behavior spans all socioeconomic, religious, and ethnicity lines and … More

The post How privacy can decrease safety appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 06:00)

The COVID-19 pandemic and its impact on cybersecurity  Voir?

The COVID-19 pandemic has presented a once-in-a-lifetime opportunity for hackers and online scammers, and cybersecurity pros saw a 63 percent increase in cyber-attacks related to the pandemic, according to a survey by ISSA and ESG. Organizations were fairly prepared for the global pandemic Thirty-nine percent of respondents claim that they were very prepared to secure WFH devices and applications while 34 percent were prepared. Twenty-seven percent were underprepared. COVID-19 and WFH are driving improved collaboration … More

The post The COVID-19 pandemic and its impact on cybersecurity appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 05:30)

IT skills shortage forces organizations to prioritize education  Voir?

Netwrix conducted studies to understand how the pandemic and ensuing work-from-home initiatives has forced organizations to change their IT priorities since a similar survey at the end of 2019. IT skills shortage and increasing education At the end of 2019, data security was the #1 priority and it remains there now, with a whopping 76% of organizations naming it as one of their IT projects for the rest of 2020. Network security tied for the … More

The post IT skills shortage forces organizations to prioritize education appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 05:00)

IoT data management services to reach $42.9 billion by 2026  Voir?

As the IoT data-enabled services continue to expand, the market is approaching the stage of data democratization, where real-time analytics is very sought after. Currently, data integration, real-time stream processing, and analytics services are falling under the umbrella of data management services within the IoT value chain, where each component has also seen economic growth. ABI Research estimates that IoT data management services are a rapidly growing market, with expected growth from $10.1 billion in … More

The post IoT data management services to reach $42.9 billion by 2026 appeared first on Help Net Security.

... / ... Lire la suite

(03/08/2020 @ 04:30)

Week in review: BootHole, RCEs in industrial VPNs, the cybersecurity profession crisis  Voir?

Here’s an overview of some of last week’s most interesting news, articles, interviews and reviews: Attackers are exploiting Cisco ASA/FTD flaw in search for sensitive data An unauthenticated file read vulnerability (CVE-2020-3452) affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software is being exploited by attackers in the wild. Researchers find critical RCE vulnerabilities in industrial VPN solutions Critical vulnerabilities in several industrial VPN implementations for remotely accessing operational technology (OT) networks … More

The post Week in review: BootHole, RCEs in industrial VPNs, the cybersecurity profession crisis appeared first on Help Net Security.

... / ... Lire la suite

(02/08/2020 @ 08:10)

Twitter employees were spear-phished over the phone  Voir?

Twitter has finally shared more details about how the perpetrators of the recent hijacking of high-profile accounts to push a Bitcoin scam managed to pull it off. The way in To pull off the attack, attackers had to obtain access to Twitter’s internal network AND specific employee credentials that granted them access to internal support tools. “The social engineering that occurred on July 15, 2020, targeted a small number of employees through a phone spear … More

The post Twitter employees were spear-phished over the phone appeared first on Help Net Security.

... / ... Lire la suite

(31/07/2020 @ 13:09)

Dernière mise à jour : 03/08/2020 @ 22:00