InfoSec News
0 FOLLOWERS
InfoSec News is one of the longest-running and most respected information security news sites. The site's focus is the distribution of information security news articles from a variety of sources including newspapers, magazines, and various online resources.
InfoSec News
4y ago
MGySgt Scott H. Stalker’s 2020 Reading List
By William Knowles @c4i
Senior Editor
InfoSec News
July 8, 2020
One of the interesting parts of the COVID-19 pandemic with the number of experts on television and online video conferences have been what books are on their bookshelves. I’ve found myself on more than a few occasions taking screenshots to look and decipher them later.
One longstanding habit of mine is learning about various business leaders and military personnel’s reading lists. While looking for one thing on the USCYBERCOM website, I stumbled across MGySgt Scott Stalker’s ..read more
InfoSec News
4y ago
Citrix patches 11 critical bugs
By William Knowles @c4i
Senior Editor
InfoSec News
July 8, 2020
In a breath of fresh air for this week, software vendor Citrix released patches for 11 vulnerabilities, quickly applying the lesson learned six months ago and not wanting a repeat with malicious hackers looking for ways to exploit the vulnerability.
Citrix Chief Information Security Officer, Fermin J. Serna released a bulletin on Tuesday, July 7, which covered a set of vulnerabilities in Citrix’s products— Citrix ADC, Citrix Gateway, and Citrix SD-WAN WANOP edition. Standard procedure for ..read more
InfoSec News
4y ago
By William Knowles @c4i
Senior Editor
InfoSec News
July 6, 2020
Just in case you accidentally had your work phone and duty pager in a Faraday bag all July 4th holiday weekend long, you have one heckuva surprise waiting for you!
As F5 reminds everyone that 48 of Fortune 50 companies are F5 customers, F5 has published a security advisory warning to their customers to patch a critical flaw in their BIG-IP product and proof-of-concept attacks are already starting to show up on Twitter.
The Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Re ..read more
InfoSec News
4y ago
By William Knowles @c4i
Senior Editor
InfoSec News
July 3, 2020
On the heels of the tweet from USCYBERCOM earlier in the week advising users of Palo Alto Networks to patch all devices affected by CVE-2020-2021 immediately, especially if SAML is in use. On Thursday, the National Security Agency released Securing IPsec Virtual Private Networks.
Many organizations currently utilize IP Security (IPsec) Virtual Private Networks (VPNs) to connect remote sites and enable telework capabilities. These connections use cryptography to protect sensitive information that traverses untrusted netw ..read more
InfoSec News
4y ago
New Zealand CERT issues advisory on ransomware campaign
By William Knowles
Senior Editor
InfoSec News
June 18, 2020
The New Zealand Computer Emergency Response Team (CERT NZ) has released an advisory on a ransomware campaign leveraging remote access technologies.
Unknown malicious cyber bad actors are targeting organizations’ networks through remote access tools, such as Remote Desktop Protocol and virtual private networks, to exploit unpatched vulnerabilities and weak authentication.
After gaining access, these cyber bad actors use various tools including mimikatz, PsExec, Cobalt Strike, and ..read more
InfoSec News
4y ago
By William Knowles @c4i
Senior Editor
InfoSec News
June 8, 2020
Troubling Cybersecurity/National Security news via Sky News, which is reporting that criminal hackers have stolen confidential information from Westech International. Westech serves as a U.S. military contractor for a number of Washington D.C. based companies such as Northrop Grumman, Booz Allen Hamilton, General Dynamics Information Technology (GDIT), and Science Applications International Corporation.
Westech International provides U.S. government and military clients a wide of services like Testing and Evaluation for the Army ..read more
InfoSec News
4y ago
By William Knowles @c4i
Senior Editor
InfoSec News
May 21, 2020
Just as Chicago can’t go a whole week without a gang-related shooting, there’s another data breach in the news, sadly this data breach happened down the road from InfoSec News’ office in Chicago Illinois.
In a security alert posted on Home Chef’s website on Wednesday, May 20th, the Chicago-based, Kroger owned meal company had learned of a data breach and the following was stolen, email address, name and phone number, encrypted passwords, The last four digits of credit card numbers and other account information such as frequency of ..read more
InfoSec News
4y ago
By William Knowles @c4i
Senior Editor
InfoSec News
May 16, 2020
The Texas Department of Transportation in a statement on Twitter says they were the victims of a ransomware attack on their agency network.
On May 14, 2020, there was unauthorized access to the network in a ransomware event and TxDot took immediate steps to isolate the incident and shut down any further unauthorized access.
“We believe we have a duty to inform our fellow Texans and our fellow state agencies of this unfortunate incident,” executive director James Bass said. “We want every Texan to rest assured that we are ..read more
InfoSec News
4y ago
By William Knowles @c4i
Senior Editor
InfoSec News
May 13, 2020
On Friday, May 8th, the Office of Court Administration (OCA), the information technology (IT) provider for the appellate courts and state judicial agencies within the Texas Judicial Branch, identified a serious security event in the branch network, which was later determined to be a ransomware attack.
The attack began during the overnight hours and was first discovered in the early morning hours on Friday. The attack is unrelated to the courts’ migration to remote hearings amid the coronavirus pandemic.
Immediately upon di ..read more
InfoSec News
4y ago
By William Knowles @c4i
Senior Editor
InfoSec News
May 11, 2020
Ontario’s Minister of Long-term Care Dr. Merrilee Fullerton reported a potential data breach at a Pickering, Ontario long-term care home on Saturday evening on Twitter.
“I’m learning of disturbing news out of Pickering’s Orchard Villa LTC home. There is a possibility of a significant privacy breach regarding individual resident personal health info. My heart goes out to the residents and families, during what is already a very difficult time”
Dr. Fullerton tweets “Our government takes personal privacy very s ..read more