Wyden wants to mitigate security risk well before software’s end-of-life in 2020
ERP Apps Under Attack Warns US-CERT
Digital Shadows/Onapsis report lifts lid on a worrying trend
Virginian Bank Robbed Twice in Eight Months
Hackers made off with over $2m following phishing success
Twitter Looks to Tighten Control Over Developers
Social media platform wants to reduce spam and policy abuse
Trend Micro’s ZDI Bug Bounty Goes Server Side
WordPress, Drupal et al come under the microscope in $1.5m scheme
New Amazon EC2 image on marketplace
Get your two-factor auth server running on Amazon: https://aws.amazon.com/marketplace/pp/B01LD0YRXG
Russian Hacking Campaign Targeted US Utilities
Hacking of US utility control rooms raises concerns over foreign adversaries.
Email-Based Attacks a Growing Risk
Whether it’s phishing campaigns or impersonation tactics, attackers are preying on victims through email.
Free SANS Webinar: I Before R Except After IOC
Join Andrew Hay on Wednesday, July 25th, 2018 at 10:30 AM EDT (14:30:00 UTC) for an exciting free SANS Institute Webinar entitled “I” Before “R” Except After IOC. Using actual investigations and research, this session will help attendees better understand the true value of an individual IOC, how to quantify and utilize your collected indicators, and what constitutes an actual incident.
Pen Testers Abuse Configuration, Capture Creds
Rapid7 published a report on successful exploits from a season of pen testing.