Marketing

Microsoft’s Chromium Edge beta emerges along with a new $30k top prize bounty

Credit: ID 120411268 © Bundit Minramun | Dreamstime.com Microsoft has kicked off a new bug bounty for its Chromium-based Microsoft Edge browser and is offering researchers up to $30,000 per bug for reporting issues.  Microsoft says it aimed to “complement” Google’s existing Chrome Vulnerability Reward Program, which also offers a top payout of $30,000 for […]

Marketing

Week in security: Are cybercriminals getting ready to storm the BlueKeep?

Credit: ID 143074217 © Maryvalery | Dreamstime.com Australian government cybersecurity experts were practically screaming at system administrators to patch the BlueKeep vulnerability, which Microsoft has warned could be exploited to inflict widespread damage in the vein of WannaCry. Microsoft’s August security update reflected the urgency of fixing that problem, with the 93 addressed including four […]

Marketing

GitHub token scanning comes to Alibaba, AWS, Azure, Google and more

Credit: ID 155364515 © Mars-Production | Dreamstime.com Microsoft-owned GitHub has expanded its token scanning service for identifying exposed developer credentials, bringing to several major cloud firms that provide access tokens.  GitHub’s new token scanning partners include Alibaba Cloud, AWS, Azure, Google Cloud, Mailgun, npm, Slack, Stripe, and Twilio.  GitHub already scans for its own OAuth […]

Marketing

Cybercriminals are constantly finding new ways to take your data. Are you ready for them?

Loading the player … Despite images that cybercrime is something perpetrated by a few rogue outsiders, research shows many cybercriminal organisations to be sophisticated multinationals whose mission statement is simple: make money by stealing your data. Just as in your own company, iterative and agile software development is helping their developers develop, test, and deploy […]

Marketing

Google Chrome password study: 25% users ignored a breached password alert

Credit: Dreamstime A quarter of users don’t change their passwords, even if they are told that the password they’re using for an account has been compromised, according to a Google study.  Google has released the results of its study into password behavior derived from data it collected from 670,000 users who’d installed its Chrome extension, Password […]

Marketing

ASD tells Australia how to adopt DMARC to fight email spoofing attacks

Credit: ID 123383248 © Stuart Miles | Dreamstime.com The Australian Signals Directorate (ASD) has published a ‘how-to’ guide for tackling email spoofing to help more organizations adopt email security protocols that can thwart phishing and business email compromise (BEC) attacks.  DMARC (Domain-based Message Authentication, Reporting and Conformance) is one of the key email protocols that […]

Marketing

BlueKeep-like wormable flaws hit Windows 10: Microsoft urges immediate patch

With August’s Patch Tuesday going out Microsoft is warning Windows admins about four critical remote code execution flaws that share similarities with BlueKeep, but this time also affect Windows 10.  Microsoft on Tuesday released patches for two flaws tracked as CVE-2019-1181, CVE-2019-1182,  CVE-2019-1222, and CVE-2019-1226.  The four bug bear a striking resemblance to BlueKeep, a bug Microsoft […]

Marketing

ICS security: Popular building management system vulnerable to takeover

Security researchers found a remotely exploitable critical vulnerability in a building management system used by businesses, hospitals, factories and other organizations to control things like ventilation, temperature, humidity, air pressure, lighting, secure doors and more. The vendor has released a firmware update, but hundreds of these systems are still exposed on the internet, highlighting the […]

Marketing

Patch BlueKeep now Australian spy agency warns Windows admins

The Australian Signals Directorate (ASD) is warning Windows admins to “immediately” patch the BlueKeep bug after a researcher handed an exploit for it to developers of the Metasploit Project.  The agency is urging Australian organizations to patch now in anticipation of the Metasploit Project including an exploit for BlueKeep becoming available in the popular the […]

Marketing

Businesses risk becoming “collateral damage” in nation-state cyber wars

Revelations that North Korea is using “widespread and increasingly sophisticated” cyber attacks to steal money highlight the risk of collateral damage from nation-state attacks – with one security expert warning that businesses are so highly interconnected that they run the risk of becoming targets if they don’t co-ordinate cybersecurity defence with partners and other stakeholders. […]