The 12 Worst Serverless Security Risks

Posted on March 14th, 2019 by Responsible Cyber

A new guide from the Cloud Security Alliance offers mitigations, best practices, and a comparison between traditional applications and their serverless counterparts. Serverless computing has seen tremendous growth in recent years. This growth was accompanied by a flourishing rich ecosystem of new solutions that offer observability, real-time tracing, deployment frameworks, and application security. As awareness […]

Read More

BEWARE – New ‘Creative’ Phishing Attack You Really Should Pay Attention To

Posted on March 14th, 2019 by Responsible Cyber

A cybersecurity researcher who last month warned of a creative phishing campaign has now shared details of a new but similar attack campaign with The Hacker News that has specifically been designed to target mobile users.Just like the previous campaign, the new phishing attack is also based on the idea that a malicious web page […]

Read More

Severe Flaw Disclosed In StackStorm DevOps Automation Software

Posted on March 14th, 2019 by Responsible Cyber

A security researcher has discovered a severe vulnerability in the popular, open source event-driven platform StackStorm that could allow remote attackers to trick developers into unknowingly execute arbitrary commands on targeted services.StackStorm, aka “IFTTT for Ops,” is a powerful event-driven automation tool for integration and automation across services and tools that allows developers to configure […]

Read More

New Malware Shows Marketing Polish

Posted on March 14th, 2019 by Responsible Cyber

A new strain of point-of-sale malware skims credit card numbers and comes via a highly polished marketing campaign. Malware is constantly evolving and, according to a new blog post from Cisco Talos, so is malware marketing. The point-of-sale (PoS) malware being sold, called GlitchPOS, isn’t particularly advanced, but its packaging and marketing are — and […]

Read More

IoT, APIs, and Criminal Bots Pose Evolving Dangers

Posted on March 1st, 2019 by Responsible Cyber

A pair of reports reach similar conclusions about some of the threats growing in cyberspace and the industries likely to be most affected. A pair of research reports released today paint a picture of a cyberthreat landscape that is continuing to evolve in ways both expected and not. The reports, released by Netscout and Akamai, […]

Read More

Hacking Virtual Reality – Researchers Exploit Popular Bigscreen VR App

Posted on March 1st, 2019 by Responsible Cyber

A team of cybersecurity researchers from the University of New Haven yesterday released a video demonstrating how vulnerabilities that most programmers often underestimate could have allowed hackers to evade privacy and security of your virtual reality experience as well as the real world.According to the researchers—Ibrahim Baggili, Peter Casey and Martin Vondráček—the underlying vulnerabilities, technical […]

Read More

Microsoft Expands AccountGuard to Help Europe Prep for Cyberattacks

Posted on February 22nd, 2019 by Responsible Cyber

A recent wave of cybercrime has targeted organizations with employees in Belgium, France, Germany, Poland, Romania, and Serbia. Microsoft is expanding its AccountGuard cybersecurity service to 12 new European markets to help organizations defend against a rise in cyberthreats as they prepare for upcoming Parliament elections. Nation-states and other attackers aim to influence elections and […]

Read More

The Anatomy of a Lazy Phish

Posted on February 21st, 2019 by Responsible Cyber

A security engineer breaks down how easy it is for unskilled attackers to trick an unsuspecting user to submit credentials to a phishing site. Phishing is one of the most effective ways hackers can compromise a network. Instead of requiring the skills and time to target specific organizations, perform reconnaissance, discover vulnerabilities, and select attack […]

Read More

Mastercard, GCA Create Small Business Cybersecurity Toolkit

Posted on February 21st, 2019 by Responsible Cyber

A new toolkit developed by the Global Cybersecurity Alliance aims to give small businesses a cookbook for better cybersecurity. Small and mid-sized businesses have most of the same cybersecurity concerns of larger enterprises. What they don’t have are the resources to deal with them. A new initiative, the Cybersecurity Toolkit, is intended to bridge that […]

Read More

Breach in Stanford System Exposes Student Records

Posted on February 20th, 2019 by Responsible Cyber

A wide variety of data was visible through the vulnerability. A vulnerability in the system that allows Stanford University students to view their records gave one student the ability to view the Common Applications and high school transcripts of other students. The key was to first request the ability to view their admission documents under […]

Read More