Intel Has a New Speculative Execution Issue: Foreshadow

Jeremy Kirk • August 15, 2018

The Meltdown and Spectre attacks from earlier this year showed how the quest to make CPUs run faster inadvertently introduced serious security vulnerabilities. Now, researchers have unveiled a new attack called Foreshadow that builds on those findings, affecting millions of Intel processors made over the past five

ATM Fraud

China Hacking Underground Shows Rising Prowess

Latest

Blockchain Applications

How Hackers Are Targeting Initial Coin Offerings

Jeremy Kirk • August 15, 2018

The proliferation of cryptocurrency and blockchain projects is posing enticing new opportunities for hackers, says Aleksandr Lazarenko of Group-IB.

Cybersecurity

Balancing Business Needs With a Cybersecurity Plan

Jeremy Kirk • August 15, 2018

Although cybersecurity plans sometimes clash with business goals, the role of security should be to enable the business and not necessarily lock everything down, says Andrew Woodward of Australia's Edith Cowan University.

DevSecOps

Leveraging DevOps to Achieve 'Built-in' Security

Varun Haran • August 15, 2018

Achieving built-in, rather than bolted-on security at the DevOps stage through transparent orchestration is the new mantra for building resilient systems and software, says Sumedh Thakar of Qualys.

Cybercrime

Tracking the Cobalt Cybercriminal Group

Jeremy Kirk • August 15, 2018

The Cobalt cybercrime group is targeting as many banks as possible, which poses risks particularly for smaller, less protected institutions, says Tim Bobak, APAC executive director for Group-IB.

Artificial Intelligence & Machine Learning

How AI Will Reshape Information Security

Jeremy Kirk • August 15, 2018

Artificial intelligence is poised to vastly influence security - not only defenders but also attackers, says Itsik Mantin, chief scientist at Imperva.

Cybercrime

Cybercriminals Shift to More Private Cryptocurrencies

Jeremy Kirk • August 15, 2018

Cybercrime investigators will face increasing difficulties if bad actors begin accepting more privacy-centric cryptocurrencies rather than bitcoin, says Andrei Barysevich of Recorded Future.

Cloud Computing

Moving to the Cloud: The Security Equation

Jeremy Kirk • August 15, 2018

There's a rush to cloud services, and that can offer security benefits. But it can be difficult to keep track of data and classify it in the cloud, says Neil Campbell of Telstra, a telecommunications company.

Artificial Intelligence & Machine Learning

AI: What It Means for Defenders and Attackers

Jeremy Kirk • August 15, 2018

Artificial intelligence has the potential to filter out much of the noise that can bog down teams trying to triage security alerts, says Bryce Boland, former CTO for FireEye in Asia-Pacific.

Cyberwarfare / Nation-state attacks

How to Deter Nation-State Cyberattacks

Jeremy Kirk • August 15, 2018

Deterring nation-states such as Russia and North Korea from executing cyberattacks will require sanctions and other pressure, says Fergus Hanson of the Australian Strategic Policy Institute.

Artificial Intelligence & Machine Learning

Will AI and ML Make Security Cheaper?

Varun Haran • August 14, 2018

Artificial intelligence and machine learning will have a significant impact on lowering the cost of securing an organization because it will reduce the need for advanced skillsets, predicts Rapid7's Richard Moseley.

Endpoint Security

Tracking Cybersecurity Threats in Manufacturing

Nick Holland • August 13, 2018

With the rise of the industrial internet of things comes a far broader attack surface in the manufacturing sector. Chris Morales of Vectra outlines findings of a new report on cyberattack trends in the manufacturing sector.

Compliance

HIPAA Security Rule Turns 20: It's Time for a Facelift

Marianne Kolbasuk McGee • August 10, 2018

As the HIPAA security rule turns 20, it's time for regulators to make updates reflecting the changing cyberthreat landscape and technological evolution that's happened over the past two decades, says security expert Tom Walsh.