Infosec Industry News

A collection of Infosec latest news, analysis and best practices from top business influencers and the world's most trustworthy sources.

helpnetsecurity.com - Mirko Zorz - New infosec products of the week: July 23, 2021
New infosec products of the week: July 23, 2021
Help Net Security

Stellar Cyber introduced a realistic XDR Kill Chain to serve as a new model, addressing the current realities of cyberattacks and focus efforts to stop an attack early and quickly. The new version builds on the MITRE ATT&CK framework to reflect the…

businessinsider.com - Aaron Holmes - TOP DEVELOPERS: Meet the 20 power players quietly changing the technology industry from the inside
TOP DEVELOPERS: Meet the 20 power players quietly changing the technology industry from the inside
Business Insider

Erin Bond Erin Bond took an unorthodox path to the software engineering field. A former elementary school teacher, Bond learned to code five years ago through a one-year course at the Ada Developers Academy. Now, as an engineer at Code.org, Bond is…

fox2now.com - Becky Willeke - A future without passwords is closer than you think
A future without passwords is closer than you think
FOX 2

ST. LOUIS– Hate trying to keep track of all your passwords? They may be a thing of the past in the future. Advances in biometrics, multifactor authentication (MFA), and other technological advances are slowly making them unnecessary. Scott…

theregister.com - Thomas Claburn - Never mind the trolls, Discord hosts 'significant volumes of malware' in its CDN
Never mind the trolls, Discord hosts 'significant volumes of malware' in its CDN
The Register

Sophos on Thursday warned that internet instant-chat service Discord is becoming an increasingly popular malware distribution channel. In a blog post, security sleuths Sean Gallagher and Andrew Brandt said four per cent of all TLS-protected malware…

forbes.com - David Balaban - How To Check If Your Smartphone Is Infected With Pegasus Spyware
How To Check If Your Smartphone Is Infected With Pegasus Spyware
Forbes

A few days ago, it became known that the malicious utility called Pegasus, created by the Israeli company NSO Group for law enforcement agencies and intelligence services, is widely used to spy on residents of different countries secretly.

theregister.com - Gareth Corfield - Hole blasted in Guntrader: UK firearms sales website's CRM database breached, 111,000 users' info spilled online
Hole blasted in Guntrader: UK firearms sales website's CRM database breached, 111,000 users' info spilled online
The Register

Criminals have hacked into a Gumtree-style website used for buying and selling firearms, making off with a 111,000-entry database containing partial information from a CRM product used by gun shops across the UK. The Guntrader breach earlier this…

theregister.com - Gareth Halfacree - Survey of astronomers and geophysicists shines a light on 'bleak' systemic bullying
Survey of astronomers and geophysicists shines a light on 'bleak' systemic bullying
The Register

A survey of astronomers and geophysicists has unveiled a 'systemic bullying problem' which is 'disproportionately worse' for women and members of minority groups, already under-represented in the field. In a survey of 650 scientists carried out by…

theregister.com - David Gordon - Cyber-attacks really ramp up after Halloween - so why not start preparing now?
Cyber-attacks really ramp up after Halloween - so why not start preparing now?
The Register

Promo Whisper it softly, but we're fast forwarding through the second half of 2021, which means the holiday shopping season – and accompanying hacking season – is not far behind. But if you want to prepare yourself for the end of year…

theregister.com - Simon Sharwood - Kaseya obtains REvil decryptor, starts sharing it with afflicted customers
Kaseya obtains REvil decryptor, starts sharing it with afflicted customers
The Register

Software-for-services providers business Kaseya has obtained a 'universal decryptor key' for the REvil ransomware and is delivering it to clients. A brief Thursday update to the company's rolling security advisory states the company received the…

threatpost.com - Alex Restrepo - 5 Steps to Improving Ransomware Resiliency
5 Steps to Improving Ransomware Resiliency
Threatpost

Alex Restrepo, cybersecurity researcher at Veritas, lays out the key concepts that organizations should be paying attention to now and implementing today. The ransomware landscape is evolving, and ransomware is now one of the most popular (for…

usda.gov - Monica Saavoss - Trends in Production Practices and Costs of the U.S. Corn Sector
Trends in Production Practices and Costs of the U.S. Corn Sector
USDA.gov

Corn for grain is a major field crop in the United States, with wide-ranging uses including animal feed, ethanol, food, beverages, industrial products, and exports. This report describes the technological and structural changes in U.S. corn…

theregister.com - Matt Dupuy - Facebook gardening group triumphs over slapdash Zuck censorbots
Facebook gardening group triumphs over slapdash Zuck censorbots
The Register

A Facebook group dedicated to gardening in western New York State is celebrating a victory over the company's algorithms after having been repeatedly threatened with censure and deletion due to use of the word 'hoe'. According to Elizabeth Licata…

theregister.com - Team Register - Be careful what you inline: Defunct video-hosting domain used to inject smut flicks into news articles, more
Be careful what you inline: Defunct video-hosting domain used to inject smut flicks into news articles, more
The Register

The domain name of a now-defunct website used by news publishers and others to inline videos in articles has been configured to inject porn into those pages. Vid.me once upon a time hosted user-submitted videos, and allowed them to be included in…

wsj.com - David Uberti - Kaseya Gets Tool to Unlock Data After Ransomware Attack
Kaseya Gets Tool to Unlock Data After Ransomware Attack
Wall Street Journal

The technology provider at the center of a ransomware attack this month said it obtained a tool to unlock data targeted by hackers in an incident that disrupted hundreds of firms in several countries. Miami-based Kaseya Ltd. on Thursday said it…

slate.com - Fred Kaplan - The U.S. Takes an Important Cybersecurity Step-Two Decades Late
The U.S. Takes an Important Cybersecurity Step-Two Decades Late
Slate

More than 20 years after the idea was first proposed, only to be struck down by officials who valued corporate profits over the national interest, a federal agency has imposed mandatory cybersecurity requirements on privately owned companies. The…

Receive a Daily briefing on Infosec Industry News