Data from memory at risk from new Rowhammer attack despite patch

Security Digest Information security news and advice from TechTarget's network | June 19, 2019 FEATURED STORY GandCrab decryption tool helps victims recover data by Michael Heller, Senior Reporter The No More Ransom initiative released one last GandCrab decryption tool to help victims recover data after the ransomware was allegedly shut down by its authors. (SearchSecurity.com) Advertisement NEWS   RAMBleed: New Rowhammer attack can steal data from memory Security researchers developed a Rowhammer attack variant, called RAMBleed, that can steal data from memory and works even if systems are patched against Rowhammer. (SearchSecurity.com)   ReliaQuest's cybersecurity platform integrates technologies ReliaQuest's security analytics platform, GreyMatter, claims to improve threat detection by up to four times and reduce system downtime by 98% by integrating AI and human analysis. (SearchSecurity.com)   CrowdStrike IPO success puts spotlight on endpoint security Cybersecurity firm CrowdStrike made its successful Wall Street debut Wednesday. The company closed its trading with a share price of $58. (SearchSecurity.com)   DevSecOps is key to uniting opposing forces Unifying DevOps and security teams with the aid of automation will bring harmony and added business benefits, says systems engineer. (ComputerWeekly.com)   Dragos: Xenotime threat group targeting U.S. electric companies Dragos says Xenotime, the threat group behind a devastating ICS attack in 2017, has been probing the networks of U.S. electric utilities and also attempted network. (SearchSecurity.com)   Netskope announces enterprise application security platform Netskope for Private Access is a cloud-based platform that secures private enterprise applications on public clouds and in on-premises data centers using zero-trust access. (SearchSecurity.com)   YubiKey FIPS recalled from government for reduced randomness Yubico recalled YubiKey FIPS series devices after discovering an issue leading to reduced randomness in values generated by the keys, which are used by federal agencies. (SearchSecurity.com)   Gartner: Cybersecurity skills shortage requires new approach At the Gartner Security and Risk Management Summit, analysts discuss the challenge of finding skilled cybersecurity professionals and how it can be solved. (SearchSecurity.com) EXPERT ADVICE   What is subdomain takeover and why does it matter? Subdomain takeover exposure can happen when cloud-hosted web services are incompletely decommissioned, but configuration best practices can reduce the risks. (SearchSecurity.com)   4 steps to remain compliant with SOX data retention policies Data retention policy is inherent to Sarbanes-Oxley Act compliance. In this tip, learn SOX data retention best practices to remain regulatory compliant. (SearchCompliance.com)   SANS security awareness credential paves new career path The SANS Security Awareness Professional credential gives enterprises a new method to recognize and promote cybersecurity awareness in the organization. (SearchSecurity.com)   Business needs to see infosec pros as trusted advisers How can security professionals communicate effectively with the board and senior business leaders? Find out what works. (ComputerWeekly.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2019 TechTarget. All rights reserved.