NSA spyware spreads in the wild following Equation Group cyberweapons leak

Security Digest Information security news and advice from TechTarget's network | April 26, 2017 FEATURED STORY NSA spyware found infecting tens of thousands worldwide by Michael Heller, Senior Reporter A new security tool will let users scan their systems for the presence of NSA spyware found in the latest Equation Group leak, and tens of thousands are already infected. (SearchSecurity.com) Advertisement NEWS   Symantec certificate authority issues, answered Google and Mozilla weigh the proper response to Symantec certificate authority issues as the CA giant prepares an alternative proposal for reinstating trust. (SearchSecurity.com)   Oracle patches Apache Struts exploits, Equation Group vulnerability There were 299 Oracle patches in the April Critical Patch Update, including a fix for the Apache Struts exploits found in the wild and a vulnerability from the Equation Group dump. (SearchSecurity.com)   Hajime worm fights the forces of evil IoT malware, maybe News roundup: The Hajime worm is the nicer, sneakier brother of Mirai malware. Plus, the FBI and CIA hunt for the Vault 7 whistleblower, Symantec adds to Zscaler lawsuit, and more. (SearchSecurity.com)   Stuxnet worm flaw still the most exploited after seven years Security researchers say the vulnerability behind the infamous Stuxnet worm is still the most exploited in the world, seven years after being patched. (SearchSecurity.com)   Q&A: Software-Defined Secure Networks with Juniper's Kevin Walker Juniper's Kevin Walker talks with SearchSecurity about his company's Software-Defined Secure Network platform, improving SDN security, and the evolution of machine learning. (SearchSecurity.com)   Risk & Repeat: Mozilla joins the Symantec certificate authority debate In this episode of SearchSecurity's Risk & Repeat podcast, editors discuss mounting pressure on the Symantec certificate authority business to provide answers about its practices. (SearchSecurity.com) EXPERT ADVICE   How a container escape vulnerability can threaten enterprises A container escape vulnerability can expose enterprise systems to attackers. Expert Rob Shapland explains how these flaws work and how to mitigate the threat. (SearchCloudSecurity.com)   Identity and access management strategy: Time to modernize? More likely than not, your company's identity and access management strategy needs an update. Learn how to decide if that's the case and, if so, what you should do now. (SearchSecurity.com)   The security pros and cons of using a free FTP tool A free FTP tool can help move enterprise files to a managed file transfer service, but there are security factors to consider. Expert Judith Myerson explains what they are. (SearchSecurity.com)   How does Ticketbleed affect session ID security? The Ticketbleed bug in some F5 Networks products caused session IDs and uninitialized memory to leak. Expert Judith Myerson explains what a session ID is and how attackers use it. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2017 TechTarget. All rights reserved.