CISO Express | A Security Professional’s Home Page

Latest Security News

Credit Card Breach

Data Breach

Cyber Security

The Hackers News

  • newGoogle Releases New Framework to Prevent Software Supply Chain Attacks

    Google Releases New Framework to Prevent Software Supply Chain Attacks

    As software supply chain attacks emerge as a point of concern in the wake of SolarWinds and Codecov security incidents, Google is proposing a solution to ensure the integrity of software packages and prevent unauthorized modifications. Called "Sup…
    - 5 hours ago 18 Jun 21, 7:34am -
  • new[eBook] 7 Signs You Might Need a New Detection and Response Tool

    [eBook] 7 Signs You Might Need a New Detection and Response Tool

    It's natural to get complacent with the status quo when things seem to be working. The familiar is comfortable, and even if something better comes along, it brings with it many unknowns.In cybersecurity, this tendency is countered by the fast pace o…
    - 6 hours ago 18 Jun 21, 6:33am -

Krebs On Security

  • Ukrainian Police Nab Six Tied to CLOP Ransomware

    Ukrainian Police Nab Six Tied to CLOP Ransomware

    Authorities in Ukraine this week charged six people alleged to have been part of the CLOP ransomware group, a cybercriminal gang said to have extorted more than half a billion dollars from victims. Some of CLOP's victims this year alone include Stan…
    - 2 days ago 16 Jun 21, 2:42pm -
  • How Does One Get Hired by a Top Cybercrime Gang?

    How Does One Get Hired by a Top Cybercrime Gang?

    The U.S. Department of Justice (DOJ) last week announced the arrest of a 55-year-old Latvian woman who’s alleged to have worked as a programmer for Trickbot, a malware-as-a-service platform responsible for infecting millions of computers and seedin…
    - 3 days ago 15 Jun 21, 3:41pm -

Dark Reading

SC Magazine

    Naked Security

    Data Breach Today

    • Analysis: The Cyber Impact of Biden/Putin Summit Meeting

      Analysis: The Cyber Impact of Biden/Putin Summit Meeting

      Experts Discuss Impact of 'Transformational Moment'After U.S. President Joe Biden and Russian President Vladimir Putin discussed cybersecurity issues at their Wednesday summit meeting in Geneva, security experts and analysts began sizing up what the…
      - -
    • India Moves Toward Limiting What Telecom Tech Can Be Used

      India Moves Toward Limiting What Telecom Tech Can Be Used

      As 'Trusted Telecom Portal' Launched, Chinese Vendors May Be Excluded From MarketIn a key move toward ensuring telecom companies only use technologies from trustworthy sources, the government of India has launched a Trusted Telecom Portal designed to…
      - -

    Bank Info Security

    • Analysis: The Cyber Impact of Biden/Putin Summit Meeting

      Analysis: The Cyber Impact of Biden/Putin Summit Meeting

      Experts Discuss Impact of 'Transformational Moment'After U.S. President Joe Biden and Russian President Vladimir Putin discussed cybersecurity issues at their Wednesday summit meeting in Geneva, security experts and analysts began sizing up what the…
      - -
    • India Moves Toward Limiting What Telecom Tech Can Be Used

      India Moves Toward Limiting What Telecom Tech Can Be Used

      As 'Trusted Telecom Portal' Launched, Chinese Vendors May Be Excluded From MarketIn a key move toward ensuring telecom companies only use technologies from trustworthy sources, the government of India has launched a Trusted Telecom Portal designed to…
      - -

    CSO Online

    • newReport: Active Directory Certificate Services a big security blindspot on enterprise networks

      Report: Active Directory Certificate Services a big security blindspot on enterprise networks

      As the core of Windows enterprise networks, Active Directory, the service that handles user and computer authentication and authorization, has been well studied and probed by security researchers for decades. Its public key infrastructure (PKI) co…
      - 22 hours ago 17 Jun 21, 2:22pm -
    • 5 biggest healthcare security threats for 2021

      5 biggest healthcare security threats for 2021

      Cyberattacks targeting the healthcare sector have surged because of the COVID-19 pandemic and the resulting rush to enable remote delivery of healthcare services. Security vendors and researchers tracking the industry have reported a major increase i…
      - 1 day ago 17 Jun 21, 9:00am -

    eSecurity Planet

    Network World

    • The great cloud computing surge

      The great cloud computing surge

      Driven in part by the pandemic, cloud computing adoption has reached new heights. These five articles take a close look at the implications.
      - 4 days ago 14 Jun 21, 10:00am -
    • Why the cloud will never eat the data center

      Why the cloud will never eat the data center

      Sometimes it’s hard to see gradual changes in technology paradigms because they’re gradual.  Sometimes it helps to play “Just suppose…” and see where it leads. So, just suppose that the cloud did what some radical thinkers say, and “a…
      - 9 days ago 9 Jun 21, 1:37am -

    FierceITSecurity

      Security Week

      US-CERT Current Activity

      • Cisco Releases Security Updates for Multiple Products
        Original release date: June 17, 2021Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower…
        - 1 day ago 17 Jun 21, 10:51am -
      • Apple Releases Security Updates for iOS 12.5.4
        Original release date: June 15, 2021Apple has released security updates to address vulnerabilities in iOS 12.5.4. An attacker could exploit these vulnerabilities to take control of an affected system.CISA encourages users and administrators to revi…
        - 3 days ago 15 Jun 21, 10:43am -

      CIO Online

      • Digital acceleration at Stanley Black & Decker places data at the center

        Digital acceleration at Stanley Black & Decker places data at the center

        For Stanley Black & Decker, digital technologies are transforming every aspect of the company, from internal operations to customer experience to the products and services themselves. Recently, I spoke with Rhonda Gass, CIO, about her approach to…
        - 2 days ago 16 Jun 21, 1:47pm -
      • The great cloud computing surge

        The great cloud computing surge

        Driven in part by the pandemic, cloud computing adoption has reached new heights. These five articles take a close look at the implications.
        - 4 days ago 14 Jun 21, 10:00am -

      Virus Bulletin

      Apple Security Announcement

        Homeland Security Today

        Security Focus

        SANS Newsletter

          Graham Cluley Latest

          • newCLOP ransomware suspects charged by police in Ukraine
            Six people alleged to be part of the notorious CLOP ransomware gang have been detained and charged by Ukrainian police, following nearly two dozen raids across the country.Read more in my article on the Tripwire State of Security blog.
            - 20 hours ago 17 Jun 21, 4:25pm -
          • Smashing Security podcast #232: Zoomolympics and language matters
            Video gaming giant Electronic Arts suffers a hack following slack security, the Japanese Olympics are proving unpopular with everyone apart from cybercriminals, and le coq est mort.All this and much more is discussed in the latest edition of the aw…
            - 1 day ago 17 Jun 21, 11:24am -

          US-CERT Bulletin

          • Vulnerability Summary for the Week of June 7, 2021
            Original release date: June 14, 2021 High VulnerabilitiesPrimaryVendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoaomedia -- aomediaaom_dsp/noise_model.c in libaom in AOMedia before…
            - 4 days ago 14 Jun 21, 11:05am -
          • Vulnerability Summary for the Week of May 31, 2021
            Original release date: June 7, 2021 High VulnerabilitiesPrimaryVendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infognome -- gdk-pixbufA flaw was found in gdk-pixbuf in versions before…
            - 11 days ago 7 Jun 21, 11:20am -

          Zero Day Initiative

          Wired Threat Level

            Network World

            • The great cloud computing surge

              The great cloud computing surge

              Driven in part by the pandemic, cloud computing adoption has reached new heights. These five articles take a close look at the implications.
              - 4 days ago 14 Jun 21, 10:00am -
            • Why the cloud will never eat the data center

              Why the cloud will never eat the data center

              Sometimes it’s hard to see gradual changes in technology paradigms because they’re gradual.  Sometimes it helps to play “Just suppose…” and see where it leads. So, just suppose that the cloud did what some radical thinkers say, and “a…
              - 9 days ago 9 Jun 21, 1:37am -

            Symantec Vulnerabilities and Exploits

            Risky Business

            • Show notes: Risky Business #443
              Bad week for Macs, Hal Martin and CrowdStrike... Links to everything discussed in episode 443 of the Risky Business podcast.read more
              - 15 Feb 17, 3:13am -
            • Show notes: Risky Business #442
              So. Much. News. Links to everything discussed in episode 442 of the Risky Business podcast.read more
              - 8 Feb 17, 4:43am -

            Packet Storm Latest

            • newUbuntu Security Notice USN-4991-1
              Ubuntu Security Notice 4991-1 - Yunho Kim discovered that libxml2 incorrectly handled certain error conditions. A remote attacker could exploit this with a crafted XML file to cause a denial of service, or possibly cause libxml2 to expose sensitive i…
              - 18 hours ago 17 Jun 21, 6:34pm -
            • newRed Hat Security Advisory 2021-2479-01
              Red Hat Security Advisory 2021-2479-01 - Red Hat OpenShift Container Storage is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Container Storage is a highly scalable, production-…
              - 18 hours ago 17 Jun 21, 6:34pm -

            ITSecurityNews

            Secuity Affairs

            • newThe return of TA402 Molerats APT after a short pause

              The return of TA402 Molerats APT after a short pause

              TA402 APT group (aka Molerats and GazaHackerTeam) is back after two-month of silence and is targeting governments in the Middle East. The TA402 APT group (aka Molerats and Gaza Cybergang) is back after a two-month of apparent inactivity, it is targ…
              - 6 hours ago 18 Jun 21, 6:53am -
            • newOver a billion records belonging to CVS Health exposed online

              Over a billion records belonging to CVS Health exposed online

              Researchers discovered an unprotected database belonging to CVS Health that was exposed online containing over a billion records. This week WebsitePlanet along with the researcher Jeremiah Fowler discovered an unsecured database, belonging to the US…
              - 16 hours ago 17 Jun 21, 9:09pm -

            NIST Latest in IT

            Darknet - The Dark Side

            Cyber Punk Latest

            • Mod que permite mudar o cabelo no Cyberpunk 2077 (Presentinho de Natal)

              Mod que permite mudar o cabelo no Cyberpunk 2077 (Presentinho de Natal)

                Mod que permite você mudar a aparência do seu V durante o game. Cyberpunk não possui um tipo de barbearia que você possa mudar a aparência do seu V durante o game, pensando nisso um modder fez um programa para que você possa mudar a apar…
              - 25 Dec 20, 10:17pm -
            • COMO FICAR MILIONÁRIO NO CYBERPUNK 2077 (glitch)

              COMO FICAR MILIONÁRIO NO CYBERPUNK 2077 (glitch)

                                            Primeiro temos que ir para o centro neste local do mapa.Aqui neste local vai ter tipo uma praça com varias maquinas de energéticos .Vocês vão encontrar um lugar cheio dessas maquinas, é ai que o gli…
              - 25 Dec 20, 5:07pm -

            Top Security Alerts

            Symantec Virus Status Alerts

            • Norton 360 (later than 6.0) for Windows XP/Vista/7/8
              File-Based Protection (Traditional Antivirus)Definitions Created : 2/28/2020Definitions Released : 2/28/2020Definitions Version : 220228cSequence Number : 204972Extended Version : 2/28/2020 re…
              - -
            • Symantec Endpoint Protection 12.1.3 (or later)
              File-Based Protection (Traditional Antivirus)Definitions Created : 2/28/2020Definitions Released : 2/28/2020Definitions Version : 220228cSequence Number : 204972Extended Version : 2/28/2020 re…
              - -

            US- CERT Alerts

            Microsoft Comprehensive Alerts

            Internet Storm Center

            Cisco Security Alerts

            Microsoft Basic Alerts

            Compliance and Non Profit Boards News

            Federal Financial Institutions Examination Council News

            • Analysis: The Cyber Impact of Biden/Putin Summit Meeting

              Analysis: The Cyber Impact of Biden/Putin Summit Meeting

              Experts Discuss Impact of 'Transformational Moment'After U.S. President Joe Biden and Russian President Vladimir Putin discussed cybersecurity issues at their Wednesday summit meeting in Geneva, security experts and analysts began sizing up what the…
              - -
            • India Moves Toward Limiting What Telecom Tech Can Be Used

              India Moves Toward Limiting What Telecom Tech Can Be Used

              As 'Trusted Telecom Portal' Launched, Chinese Vendors May Be Excluded From MarketIn a key move toward ensuring telecom companies only use technologies from trustworthy sources, the government of India has launched a Trusted Telecom Portal designed to…
              - -

            HIPPA Omnibus Rule

            • Analysis: The Cyber Impact of Biden/Putin Summit Meeting

              Analysis: The Cyber Impact of Biden/Putin Summit Meeting

              Experts Discuss Impact of 'Transformational Moment'After U.S. President Joe Biden and Russian President Vladimir Putin discussed cybersecurity issues at their Wednesday summit meeting in Geneva, security experts and analysts began sizing up what the…
              - -
            • Standardizing Patient Addresses: Privacy, Security Issues

              Standardizing Patient Addresses: Privacy, Security Issues

              HHS Proposal Aims to Improve Patient Record Matching, But What Are the Risks?With a goal of better matching the right patients to all the right medical records, federal regulators have issued new draft technical specifications for standardizing how p…
              - -

            PCI Compliance Press Releases

            PCI Compliance News

            Electronic Frontier Foundation | Deep Links

            More News and Media Coverage

            Latest Tweets