Thursday, March 16, 2017

U.S. accuses Russian intelligence officers of hacking Yahoo

Security Digest
Information security news and advice from TechTarget's network | March 16, 2017
TechTarget
FEATURED STORY
DOJ indicts suspected Yahoo hackers from Russia; extradition unclear
by Michael Heller, Senior Reporter

The U.S. Department of Justice indicted four men, including two Russian Federal Security Service officers, accused of being the Yahoo hackers, but only one person was arrested. (SearchSecurity.com)

Advertisement
NEWS
 
Nine critical Windows security bulletins in Patch Tuesday

Microsoft's March 2017 Patch Tuesday includes nine critical Windows security bulletins targeting remote code execution flaws, after cancelled February Patch Tuesday. (SearchSecurity.com)

 
Deprecated SHA-1 certificates trip up SAP Ariba

SHA-1 certificates are still in play, despite browser deprecation, as SAP Ariba advises legacy users to use unpatched browsers to avoid error messages, blocked access. (SearchSecurity.com)

 
Is the antivirus industry dead? Experts weigh in
RSAC 2017: With malware-detecting software increasingly coming under fire for vulnerabilities, find out what the experts had to say about the future of the antivirus industry. (SearchSecurity.com)
 
 
 

Android ransomware and more preinstalled on devices

Security researchers found Android ransomware and malware preinstalled on popular devices, putting users at risk for information theft, tracking and more. (SearchSecurity.com)

 
WikiLeaks vows to disclose CIA hacking tools; CIA to investigate
WikiLeaks founder Julian Assange promised to work with vendors to help patch products vulnerable to CIA hacking tools, while the FBI and CIA will investigate the leak. (SearchSecurity.com)
 
Risk & Repeat: Does the Amazon S3 outage raise security flags?
In this episode of SearchSecurity's Risk & Repeat podcast, editors discuss the recent Amazon Simple Storage Service outage and why the incident may have security implications. (SearchSecurity.com)
 
 
 
EXPERT ADVICE
 
How a single ICMPv6 packet can cause a denial-of-service attack

Expert Fernando Gont explains how Internet Control Message Protocol version 6 can be used by threat actors to stage a simple, yet effective, denial-of-service attack. (SearchSecurity.com)

 
How to detect and prevent a man-in-the-cloud attack
A man-in-the-cloud attack is a newer threat to enterprise security and it's not always easy to detect. Expert Frank Siemons explains how the attacks work and what can be done. (SearchCloudSecurity.com)
 
 
 
 

IoT development and implementation: Managing enterprise security

The CSA's guidelines for secure IoT development can give enterprises an idea of how to evaluate IoT products. Expert Nick Lewis explains the steps enterprises should take. (SearchSecurity.com)

 
What are some best practices for reporting ransomware attacks?

Enterprises are advised to start reporting ransomware attacks, but are there risks? Expert Mike O. Villegas discusses whether organizations are obligated to report attacks. (SearchSecurity.com)

 
About This E-Newsletter
This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for.

TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com

Copyright 2016 TechTarget. All rights reserved.
TechTarget

No comments: