A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Zerodium Offering $300,000 for WordPress Exploits (SecurityWeek, Apr 12 2021) Exploit acquisition company Zerodium announced last week that it’s temporarily offering $300,000 for high-impact WordPress exploits. Reddit takes bug bounty program public (SC Media, Apr 14
A Review of the Best News of the Week on AI, IoT, & Mobile Security ParkMobile Breach Exposes License Plate Data, Mobile Numbers (Krebs on Security, Apr 12 2021) Someone is selling account information for 21 million customers of ParkMobile, a mobile parking app that’s popular in North America. The
A Review of the Best News of the Week on Cyber Threats & Defense How a VPN vulnerability allowed ransomware to disrupt two manufacturing plants (Ars Technica, Apr 07 2021) The ransomware, known as Cring, came to public attention in a January blog post. It takes hold of networks by
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. 83% of Businesses Hit With a Firmware Attack in Past Two Years (Dark Reading, Mar 31 2021) A new Microsoft-commissioned report finds less than 30% of organizations allocate security budget toward preventing firmware attacks. 2. Spotlight: Malware
A Review of the Best News of the Week on Cybersecurity Management & Strategy Google’s Project Zero Finds a Nation-State Zero-Day Operation (Schneier on Security, Apr 08 2021) Google’s Project Zero discovered, and caused to be patched, eleven zero-day exploits against Chrome, Safari, Microsoft Windows, and iOS. This seems to
A Review of the Best News of the Week on Identity Management & Web Fraud Are You One of the 533M People Who Got Facebooked? (Krebs on Security, Apr 06 2021) “Ne’er-do-wells leaked personal data — including phone numbers — for some 553 million Facebook users this week. Facebook says
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec The Role of Visibility in Securing Cloud Applications (Dark Reading, Apr 01 2021) Traditional data center approaches aren’t built for securing modern cloud applications. 58% of IT and security pros concerned about security in the cloud
A Review of the Best News of the Week on AI, IoT, & Mobile Security Mobile providers exposing sensitive data to leakage and theft (Help Net Security, Apr 01 2021) Data exposure is a significant, unaddressed problem for Europe’s top mobile providers and, by extension, more than 253 million customers
A Review of the Best News of the Week on Cyber Threats & Defense 83% of Businesses Hit With a Firmware Attack in Past Two Years (Dark Reading, Mar 31 2021) A new Microsoft-commissioned report finds less than 30% of organizations allocate security budget toward preventing firmware attacks. Spotlight: Malware