We have a mobile site!
Go to the mobile site >[x] Hide this

Malwarebytes for Home | Anti-Malware Premium | Free Trial Download
Cyber Security News – The Cyber Chronicle

Cyber Security News - We scrub the web for the best articles so you don't have to.

  • Home
  • Manufacturer News
  • Cyber Security News Archives
Two years after WannaCry, a million computers remain at risk

Two years after WannaCry, a million computers remain at risk

Recent Google News

  • NIST outlines IoT cybersecurity and privacy risk mitigation - GCN.com
    June 26, 2019
  • House panel floats new cybersecurity grants for state, local governments - StateScoop
    June 26, 2019
  • Senate report: U.S. gov't has failed to fix cybersecurity weaknesses - UPI.com
    June 26, 2019
  • Secret to Israeli cybersecurity innovation at TAU’s Cyber Week - The Jerusalem Post
    June 26, 2019
  • Cybersecurity job postings rise by 94% since 2013 - Staffing Industry Analysts
    June 26, 2019

Latest Episode 5/12/2019

Brian Krebs

  • Tracing the Supply Chain Attack on Android
    Earlier this month, Google disclosed that a supply chain attack by one of its vendors resulted in malicious software being pre-installed on millions of new budget Android devices. Google didn't exactl ...

Newsletter

ThreatPost.com

  • Cisco Warns of Critical Flaws in Data Center Network Manager
    Cisco has patched two critical vulnerabilities in its Data Center Network Manager software, which could allow a remote attacker to take over affected devices.

Andrew Hay

  • Do You Suffer From Breach Optimism Bias?
    Optimism bias is the belief that each of us is more likely to experience good outcomes and less likely to experience bad outcomes. How prevalent is this in the cybersecurity industry? If you're a salty security professional like me, you already know the answer. ...

Adam Shostck

  • Passwords Advice
    Bruce Marshall has put together a comparison of OWASP ASVS v3 and v4 password requirements: OWASP ASVS 3.0 & 4.0 Comparison. This is useful in and of itself, and is also the sort of thing that more standards bodies should do, by default. It’s all too common to have a new standard come out without…

    Continue reading →

Byron Acohido

  • MY TAKE: Let’s not lose sight of why Iran is pushing back with military, cyber strikes

Subscribe

RssEmailTwitterYoutubeLinkedin

Dan Kaminsky

  • Hacking the Universe with Quantum Encraption
    Ladies and Gentlemen of the Quantum Physics Community:   I want you to make a Pseudorandom Number Generator!   And why not!  I’m just a crypto nerd working on computers, I only get a few discrete bits and a handful of mathematical operations.  You have such an enormous bag of tricks to work with!  You’ve got […]

Elie Bursztein

  • Rethinking the detection of child sexual abuse imagery on the Internet
    Over the last decade, the illegal distribution of child sexual abuse imagery (CSAI) has transformed ...

Graham Cluley

  • $1.1 million in two weeks – Florida cities pay out big to ransomware gangs

    Cybercriminals have learnt something very valuable in the last couple of weeks: in order to regain access to their data, cities in Florida are prepared to pay out huge Bitcoin ransoms to hackers.

    Read more in my article on the Tripwire State of Security blog.

Hacking Articles

  • Linux for Pentester: Taskset Privilege Escalation

    In this article, we’ll talk about taskset command which is a Linux utility and learn how helpful the time command is for Linux penetration testing and how we’ll progress time to scale the greater privilege shell. Table of Content Introduction to TASKSET Major Functions of TASKSET command Sudo rights Lab setups for Privilege Escalation Exploiting... Continue reading →

    The post Linux for Pentester: Taskset Privilege Escalation appeared first on Hacking Articles.

Holistic InfoSec

  • Moving blog to HolisticInfoSec.io
    toolsmith and HolisticInfoSec have moved.I've decided to consolidate all content on one platform, namely an R markdown blogdown site running with Hugo for static HTML creation. My frustration with Blo ...

Blogroll

  • Akamai
  • Andrew Hay
  • Ars Technica
  • BH Consulting IT Security Watch
  • Bleeping Computer
  • Brian Krebs
  • Check Point Software
  • CIO
  • CSO Online
  • Dark Reading
  • Dr. Eric Cole
  • Errata Security
  • FocusPoint Technologies
  • Forbes
  • Fox IT Security Blog
  • Google Online Security Blog
  • Graham Cluley
  • Help Net Security
  • Hot For Security
  • InfoSecurity Magazine
  • IT Pro Portal
  • IT Security
  • Kaspersky Labs
  • Kevin Townsend’s IT Security
  • Liquidmatrix Security Digest
  • Malwarebytes Labs
  • Mashable
  • McGrew Security
  • Motherboard Vice
  • Naked Security Blog
  • Network Computing
  • Palo Alto Networks
  • Paul’s Security Weekly
  • PCMag’s Security Watch
  • Peerlyst
  • Privacy Paradox from Lawfare
  • SANS Institute AppSec Blog
  • SC Magazine
  • Schneier on Security
  • Security Affairs
  • Security Bloggers Network
  • Security Ledger
  • Securosis
  • Softpedia
  • Tao Security
  • Techcrunch
  • TechRepublic
  • Techworld Security
  • The Guardian Information Security Hub
  • The Hacker News
  • The Register
  • ThreatTrack Security
  • Troy Hunt
  • Wired
  • Wombat Security Blog
  • Zero Day

Tripwire.com

  • Riviera Beach Pays Nearly $600K to Recover Data after Ransomware Attack
    Riviera Beach paid bad actors approximately $600,000 in ransom to recover its information after it fell victim to a ransomware attack. On 17 June, the board of the Palm Beach County municipality voted ...

Jeff Soh

  • Mining Packets Via The Command Line (Repost)
    I've previously posted this, but I am moving back over to the Blue Team and thought it might be helpful for new analysts. Dusted off and updated where ...

Liquidmatrix

  • Having The Security Rug Pulled Out From Under You

    Apache .htaccess changes led to arbitrary file upload vulnerabilities in jQuery project I attended the Messaging, Malware and Mobile Anti-Abuse Working Group (m3aawg.org) meeting in Brooklyn, NY.   I expected better weather to wander around the city while enjoying the conference and the neighborhood’s wide selection of food. I had been so confident of clear skies […]

    The post Having The Security Rug Pulled Out From Under You appeared first on Liquidmatrix Security Digest.

Marco Ramilli

  • Moving to marcoramilli.com
    After more then 10 years on this amazing platform I decided to move forward to a professional blogging platform. I've reached hundred of  thousan ...

Matt Flynn

  • Improve Security by Thinking Beyond the Security Realm
    It used to be that dairy farmers relied on whatever was growing in the area to feed their cattle. They filled the trough with vegetation grown right on the farm. They probably relied heavily on whatev ...

Notice Bored

  • NBlog June 20 - conspicuous consumption
    A short article set me thinking this morning about the interplay between rights, compliance, personal freedoms, ethics and culture. The article is about tax authorities picking up on conspicuous ...

Robert Penz Blog

  • Howto visualize your water meter and get alerted if too much water is used
    In the village I live the water meter is replaced every 5 years and it was the fifth’s year this year. I took the opportunity to talk to the municipal office, if it was possible to get a water meter with impulse module, which I can integrate in my network. And they said yes 🙂 […]

Digital Guardian

  • How Texas’ New Data Breach Law Will Affect Businesses

    Recent changes to data privacy legislation in the Lone Star State will likely affect the incident response plan of any company that does business in the state.

Roger McClinton

  • Beginner’s Mind

    Shoshin is a word from Zen Buddhism meaning “beginner’s mind.” It refers to having an attitude of openness, eagerness, and a lack of preconceptions when studying a subject, even when studying at an advanced level. As IT people we aren’t always known for our attitude of openness, eagerness and lack of preconceptions. Its an easy ...

    Continue reading ‘Beginner’s Mind’ »

    The post Beginner’s Mind appeared first on Roger's Information Security Blog.

Bruce Schneier’s blog

  • MongoDB Offers Field Level Encryption
    MongoDB now has the ability to encrypt data by field: MongoDB calls the new feature Field Level Encryption. It works kind of like end-to-end encrypted messaging, which scrambles data as it moves across the internet, revealing it only to the sender and the recipient. In such a "client-side" encryption scheme, databases utilizing Field Level Encryption will not only require a...

Security Through Education

  • Ep. 118 – Can I Scare You Into Security With Dr. Jessica Barker
    On this episode, Dr. Jessica Barker a security consultant specializing in the human side of cyber security, joins us to discus how we can make info sec more human centric, should shame and fear be use ...

TaoSecurity

  • Know Your Limitations
    At the end of the 1973 Clint Eastwood movie Magnum Force, after Dirty Harry watches his corrupt police captain explode in a car, he says "a man's got to know his limitations."I thought of this quote t ...

Tech Wreck InfoSec Blog

  • Security Flaws & Fixes - W/E - 6/21/19

Naked Security

  • Hacker threw Molotov cocktail, dropped USB drive of his DDoS deeds
    Those things drop out of pockets at the worst times. Like, say, when you're hurling a bomb at a brick-and-mortar that you've also DDoSed. ...

Troy Hunt

  • Weekly Update 144

    So first things first - my patience for the Instamics we're wearing just reached zero. One of them recorded and one of them didn't which means we've had to fallback to audio captured by the iPhone I was recording from so apologies it's sub-par. I ended up just uploading the

Uncommon Sense Security

  • Blog-ified Tweetstorm
    I dumped this on Twitter as a tweetstorm, but it is worth sharing here in one place. Those who have followed me for a while have probably noticed that I rarely get technical here anymore. My world, a ...

FocusPoint Blog Posts

  • Increase ROI on User Awareness Training
    How much risk reduction has your user awareness training provided to your organization? Tough question for most people to answer. The solution - take a baseline metric before providing the user awaren ...
  • IoT Evolution, Revolution or Confusion?
    The IoT (Internet of Things) evolution is occurring in business and personal lives, the revolution is amazing as it transforms the way we think and act, and the confusion around how to secure IoT is r ...
  • Is Identity the New Perimeter in Security?
    I’ve recently heard the phrase, “identity is the new perimeter” as it relates to information security. That said, I’ve also heard the same about endpoints, artificial intelligence, email, you ...
  • Podcast 3_2_2019

    [Music] welcome to the cyber Chronicles my name’s Brian Stevenson and I am your host this week is a pretty incredible episode we’re going to talk about something that impact worldwide cybersecurity we’re going to talk about latest vlog wind var we’re going to talk about turbo tax has some issues recently and new tax […]

Salted Hash

  • Top 8 security mistakes in SAP environments
  • How to use the new Microsoft 365 Business Conditional Access feature

Privacy Rights

  • PRC IN THE NEWS
  • It’s Time Californians had Privacy for All

Most Important Cyber Stories Per Month

Dark Reading

  • Breaking the Endless Cycle of "Perfect" Cybercrimes
  • FIDO Alliance to Tackle Identity Verification and IoT Authentication
  • Could Foster Kids Help Solve the Security Skills Shortage?
  • Email Threats Continue to Grow as Attackers Evolve, Innovate
  • Global Cyberattack Campaign Hit Mobile Carrier Networks
  • AWS CISO Talks Risk Reduction, Development, Recruitment
  • Microsoft Adds New Secure Storage Area to OneDrive
  • AWS Makes Control Tower & Security Hub Generally Available
  • How to Avoid Becoming the Next Riviera Beach
  • Companies on Watch After US, Iran Claim Cyberattacks

Newsletter

Recent Posts

  • Two years after WannaCry, a million computers remain at risk May 13, 2019
  • Fort Bragg cut power for thousands to test ‘real-world reactions’ to a cyber-attack April 30, 2019
  • Nokia 9 buggy update lets anyone bypass fingerprint scanner with a pack of gum | ZDNet April 23, 2019
  • CIA Offers Proof Huawei Has Been Funded By China’s Military And Intelligence April 22, 2019
  • Experts: Breach at IT Outsourcing Giant Wipro — Krebs on Security April 16, 2019

Thank you!

— briankrebs (@briankrebs) July 30, 2018

TheCyberChronicle.com Voted One Of The Top 10 Cyber Security News Sites

Copyright 2012 - 2018 The Cyber Chronicle | All Rights Reserved |