ThreatList: DMARC Adoption Nonexistent at 80% of Orgs
Standard email authentication to prevent spoofing and phishing remains elusive for most. Go to Source
Cloud Security Concerns Loom for 93% of Businesses Adopting Apps and BYOD
Threatpost talks to Jacob Serpa with Bitglass about how more enterprises are struggling with a cloud security conundrum when it comes to public cloud vs on prem. Go to Source
‘URGENT/11’ Critical Infrastructure Bugs Threaten EternalBlue-Style Attacks
Researchers have uncovered easy-to-exploit bugs that can impact physical safety, utilities, healthcare devices more, setting the stage for widespread worm attacks. Go to Source
Fearing WannaCry-Level Danger, Enterprises Wrestle with BlueKeep
Fears of a WannaCry-level global attack grow as working exploit info starts to go public. Go to Source
‘WannaCry Hero’ Avoids Jail Time in Kronos Malware Charges
Marcus Hutchins, also known by his online alias MalwareTech, has been spared jail time in his sentencing for the creation of the Kronos malware. Go to Source
Louisiana Gov Declares Emergency After Cyberattacks Plague Schools
Attacks on at least three school districts and likely others have prompted the state’s first emergency due to cyberattack. Go to Source
Rare Steganography Hack Can Compromise Fully Patched Websites
Attackers are hiding PHP scripts in EXIF headers of JPEG images to hack websites, just by uploading an image. Go to Source
Gamers Are Easy Prey for Credential Thieves
Gamers are easy pickings for credential crooks, thanks to lax security hygiene and poor gaming company practices. Go to Source
‘Google’ Sites Are the Latest Ploy by Card-Skimming Thieves
A credit-card skimmer on Magento sites was found loading JavaScript from a legitimate-seeming Google Analytics domain. Go to Source
Streamlining Patch Management: Expert Advice
Webinar examines challenges in patch management and offers solutions to streamline the process. Go to Source