'Foreshadow' flaw: Intel grapples with new Spectre-like CPU vulnerability

Security Digest Information security news and advice from TechTarget's network| August 22, 2018 FEATURED STORY Intel disclosed Spectre-like L1TF vulnerabilities by Madelyn Bacon, Associate Site Editor News roundup: Intel disclosed L1TF vulnerabilities with similarities to Spectre, but with a focus on data. Plus, the NIST Small Business Cybersecurity Act is now a law, and more. (SearchSecurity.com) Advertisement NEWS   DHS cybersecurity rhetoric offers contradictions at DEF CON The Vote Hacking Village at Defcon 26 in Las Vegas was an overwhelming jumble of activity -- a mock vote manipulated, children hacking election results websites, and machines being disassemble. (SearchSecurity.com)   Finalized TLS 1.3 update has been published at last The finalized TLS 1.3 update has been published after a four-year process. The new protocol promises to be faster and more secure than its predecessor, TLS 1.2. (SearchSecurity.com)   ICS security fails the Black Hat test Industrial control systems hit the mainstream at Black Hat this year, with over two dozen program sessions tackling different angles of the subject. The takeaway: Vendors still aren't really trying. (SearchSecurity.com)   Infosec mental health support and awareness hits Black Hat 2018 While burnout, depression and PTSD can affect anyone, infosec mental health still doesn't often get the attention it deserves, but Black Hat 2018 attempted to change that. (SearchSecurity.com) EXPERT ADVICE   How to mitigate the Efail flaws in OpenPGP and S/MIME Efail exploits vulnerabilities in the OpenPGP and S/MIME standards to reveal the plaintext in encrypted emails. Learn more about the Efail vulnerabilities from expert Michael Cobb. (SearchSecurity.com)   SIEM evaluation criteria: Choosing the right SIEM products Establishing solid SIEM evaluation criteria and applying them to an organization's business needs goes far when selecting the right SIEM products. Here are the questions to ask. (SearchSecurity.com)   How new cybersecurity problems emerge from fake news As fake news continues to emerge, new cybersecurity challenges for IT professionals arise. Learn why we should continue to care about cyber propaganda and what we can do. (SearchSecurity.com)   My Cloud EX2: How can this device expose unauthorized data? SpiderLabs discovered My Cloud EX2 backup devices exposing unauthorized HTTP requests. Join Judith Myerson as she explains how this happens, as well as the impact on DLNA devices. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2018 TechTarget. All rights reserved.