Twistlock raises $33 million to secure cloud native environments

Twistlock says it's the security platform for enterprises that are increasingly using cloud native systems.

technology news

Microsoft patches zero-day exploit against Internet Explorer

by Patrick Howell O'Neill • 15 hours ago

The vulnerability is exploited by visiting a malicious web page or opening a malicious Microsoft Word document rendered with Internet Explorer.

McAfee offers state election officials a year of free cloud security tools

by Zaid Shoorbajee • 16 hours ago

McAfee is the latest private company to offer free services for election security.

Foreshadow, the new data-stealing vulnerabilities impacting Intel chips

by Patrick Howell O'Neill • 1 day ago

Also known as the L1 Terminal Fault, this flaw is the latest round of attacks stemming from exploitation of speculative execution.

Uber hires former NSA counsel Matt Olsen as top security executive

by Patrick Howell O'Neill • 2 days ago

The former co-founder off IronNet Cybersecurity and former general counsel of the National Security Agency will be the ridesharing company's chief trust and security officer.

Research shows gap in House, Senate candidates' website security

by Sean Lyngaas • 2 days ago

Nearly 30 percent of House of Representatives candidates have significant security issues in their websites compared to less than 5 percent of Senate candidates, according to new research.

Exabeam rakes in $50 million investment for SIEM platform

by Zaid Shoorbajee • 2 days ago

Exabeam is hoping to set itself apart in an increasingly crowded SIEM marketplace.

New vuln in Microsoft Active Directory lets attackers bypass multi-factor authentication

by Sean Lyngaas • 2 days ago

Okta found a vulnerability in Microsoft’s popular identity management directory that could let a hacker circumvent multi-factor authentication.

DOD unveils 'Hack the Marine Corps' bounty program

by Mark Satter • 2 days ago

A new bug bounty program intended to find vulnerabilities in the Marine Corps’ public-facing websites will be the DOD's sixth such program.

'Man-in-the-disk' attack took advantage of Android data security flaws

by Patrick Howell O'Neill • 3 days ago

Google acknowledged the problem and fixed it in several official apps, but other developers seem to have chosen to ignore it.

Report: 'Faxploit' hack can penetrate networks with just a fax number

by Zaid Shoorbajee • 3 days ago

Fax machines are a lot more ubiquitous and vulnerable than you may think, according to Check Point.

DEF CON’s Voting Village tests hacker-government collaboration

by Sean Lyngaas • 4 days ago

Election equipment was digitally poked and prodded over the weekend as experts called for change based on what happened at DEF CON.

Here comes the storm: Fortnite arrives on Android, cybersecurity experts sound alarm

by Patrick Howell O'Neill • 6 days ago

Epic Games isn't putting the mega-popular first-person shooter into the Google Play Store — a move that could mean some would-be users end up downloading malware instead, cybersecurity experts say.

Capsule8 raises $15 million for automated threat detection platform

by Zaid Shoorbajee • 7 days ago

Capsule8 says its platform can scale and adapt to hybrid environments, particularly production environments, to detect and stop threats.

Report: PGA hit with ransomware attack on eve of major tournament

by Greg Otto • 7 days ago

According to GolfWeek, PGA employees found they were locked out of systems Tuesday, with a message asking for bitcoin.

Malware campaign that targeted Tibet's diaspora linked to wider operation

by Mark Satter • 1 week ago

A malware campaign against members of the Tibetan diaspora this year was part of a wider operation that has also targeted governments and industries in the Asia-Pacific region, according to a new report released today by Citizen Lab.

Ready-to-use bitcoin ATM malware found for sale online

by Zaid Shoorbajee • 1 week ago

The $25,000 malware comes on a faux bank card, and it can steal from a bitcoin ATM, according to Trend Micro.

Health care cyber experts tout progress in vulnerability disclosure at BSides Vegas

by Sean Lyngaas • 1 week ago

The delicate process for disclosing software and hardware bugs in medical devices has made important strides in recent years as the threat of lawsuits against security researchers has receded.

Asia's hackers are finding a home on the dark web

by Greg Otto • 1 week ago

Normally used by U.S. and Russian hackers, Asian countries are starting to find their footing on the criminal dark web.

Hacker honeypot shows even amateurs are going after ICS systems

by Sean Lyngaas • 1 week ago

Cybereason's honeypot shows that the hacker world is really, really interested in ICS.

DNC tells candidates not to use Huawei or ZTE devices

by Sean Lyngaas • 2 weeks ago

The DNC has warned candidates running in the 2018 midterm elections not to use devices made by Chinese telecom firms.

Continue to CyberScoop.com