Major Mobile Financial Apps Harbor Built-in Vulnerabilities

Posted on April 6th, 2019 by Responsible Cyber

A wide variety of financial services companies’ apps suffer from poor programing practices and unshielded data. Mobile apps for financial services are an important part of many consumers’ financial lives, yet those apps are suffering a “vulnerability epidemic,” according to a new report. The report, commissioned by Arxan and produced by the Aite Group, looks […]

Read More

Chinese National Carries Malware Into Mar-a-Lago

Posted on April 6th, 2019 by Responsible Cyber

A Chinese woman arrested for entering the grounds of Mar-a-Lago under false pretenses was carrying electronic equipment holding malware. Chinese national Yujing Zhang was arrested for breaching the perimeter at the Mar-a-Lago golf club in Florida and telling the US Secret Service she was there to attend a nonexistent event. While the details of her […]

Read More

Ex-NSA Contractor Pleads Guilty to 20-Year-Long Theft of Classified Data

Posted on March 30th, 2019 by Responsible Cyber

A former National Security Agency contractor—who stole an enormous amount of sensitive information from the agency and then stored it at his home and car for over two decades—today changed his plea to guilty.The theft was labeled as the largest heist of classified government material in America’s history.Harold Thomas Martin III, a 54-year-old Navy veteran […]

Read More

The 12 Worst Serverless Security Risks

Posted on March 14th, 2019 by Responsible Cyber

A new guide from the Cloud Security Alliance offers mitigations, best practices, and a comparison between traditional applications and their serverless counterparts. Serverless computing has seen tremendous growth in recent years. This growth was accompanied by a flourishing rich ecosystem of new solutions that offer observability, real-time tracing, deployment frameworks, and application security. As awareness […]

Read More

BEWARE – New ‘Creative’ Phishing Attack You Really Should Pay Attention To

Posted on March 14th, 2019 by Responsible Cyber

A cybersecurity researcher who last month warned of a creative phishing campaign has now shared details of a new but similar attack campaign with The Hacker News that has specifically been designed to target mobile users.Just like the previous campaign, the new phishing attack is also based on the idea that a malicious web page […]

Read More

Severe Flaw Disclosed In StackStorm DevOps Automation Software

Posted on March 14th, 2019 by Responsible Cyber

A security researcher has discovered a severe vulnerability in the popular, open source event-driven platform StackStorm that could allow remote attackers to trick developers into unknowingly execute arbitrary commands on targeted services.StackStorm, aka “IFTTT for Ops,” is a powerful event-driven automation tool for integration and automation across services and tools that allows developers to configure […]

Read More

New Malware Shows Marketing Polish

Posted on March 14th, 2019 by Responsible Cyber

A new strain of point-of-sale malware skims credit card numbers and comes via a highly polished marketing campaign. Malware is constantly evolving and, according to a new blog post from Cisco Talos, so is malware marketing. The point-of-sale (PoS) malware being sold, called GlitchPOS, isn’t particularly advanced, but its packaging and marketing are — and […]

Read More

IoT, APIs, and Criminal Bots Pose Evolving Dangers

Posted on March 1st, 2019 by Responsible Cyber

A pair of reports reach similar conclusions about some of the threats growing in cyberspace and the industries likely to be most affected. A pair of research reports released today paint a picture of a cyberthreat landscape that is continuing to evolve in ways both expected and not. The reports, released by Netscout and Akamai, […]

Read More

Hacking Virtual Reality – Researchers Exploit Popular Bigscreen VR App

Posted on March 1st, 2019 by Responsible Cyber

A team of cybersecurity researchers from the University of New Haven yesterday released a video demonstrating how vulnerabilities that most programmers often underestimate could have allowed hackers to evade privacy and security of your virtual reality experience as well as the real world.According to the researchers—Ibrahim Baggili, Peter Casey and Martin Vondráček—the underlying vulnerabilities, technical […]

Read More

Microsoft Expands AccountGuard to Help Europe Prep for Cyberattacks

Posted on February 22nd, 2019 by Responsible Cyber

A recent wave of cybercrime has targeted organizations with employees in Belgium, France, Germany, Poland, Romania, and Serbia. Microsoft is expanding its AccountGuard cybersecurity service to 12 new European markets to help organizations defend against a rise in cyberthreats as they prepare for upcoming Parliament elections. Nation-states and other attackers aim to influence elections and […]

Read More