05 Aug

Even Schools Are at Risk from Cyber Attacks

Recently, Scott County Schools, in Kentucky, fell victim to a $3.7 million fraud phishing scam. According to Superintendent Dr. Kevin Hub, a vendor informed the district that an invoice sent to the district had not been paid. In looking into the matter, the district found that someone else had been paid instead, via a fraudulent email disguised as the vendor.

“This is a process that we use currently in Scott County Schools. It’s a way that we pay our vendors. And it was in this specific case, a single case, that we can verify, and this fraudulent email and fraudulent documentation is what caused this crime to happen.”

read more

Share this
29 Jul

How Real Is Cyber War?

Recently a vulnerability was disclosed that affected millions of Huawei-manufactured laptops. The Chinese manufacturer claimed the vulnerability was a mistake and, in January, patched the affected software. Speculation was rife that this vulnerability might have been injected intentionally with the goal of allowing the Chinese government to exploit it in order to take control of laptops globally at a time of their choosing.

read more

Share this
15 Jul

How Threat Detection and Response Technologies Are Integrating

Threat detection and response is difficult and only getting more complicated. According to ESG research, 76% of cybersecurity professionals claim that threat detection and response is more difficult today than it was 2 years ago, so this situation may only get worse in the future.

read more

Share this
08 Jul

Keep Your WordPress Website Secure in Cyber Space

WordPress itself is designed to keep your website safe, but there is always more you can do to protect it yourself and your livelihood. The minute you let it slip your mind, you are compromising your online presence.

read more

Share this
01 Jul

Security Weakness Found in VPN Clients

An alert from the Carnegie Mellon University CERT Coordination Center (CERT/CC) has warned that numerous enterprise VPN clients could be vulnerable to a potentially serious security weakness that could be used to spoof access by replaying a user’s session.

read more

Share this
24 Jun

AI & Cyber Security: Which Protects Which?

For people with responsibility for corporate security – everyone from CIOs to CISOs and CROs – AI presents two types of risk that change the nature of their jobs. The first is that criminals, bad state actors, unscrupulous competitors, and inside threats will manipulate their companies’ fledgling AI programs. The second risk is that attackers will use AI in a variety of ways to exploit vulnerabilities in their victims’ defenses. The question remains – which protects which?

read more

Share this
03 Jun

Malware Is Hiding in Plain Sight

A noticeable shift in the methodology for developing malware is taking place, and it can’t go unaddressed. A few years ago, attackers’ primary objective was to avoid detection – second only to making a profit. But recently, these criminals have realized a critical truth: the longer they hold an infected endpoint, the more their profit increases.

read more

Share this
20 May

Malware in Open Source Software

Open Source software is always trustworthy, right? Last year, Bertus broke a story about a malicious Python package called “Colourama”. When used, it secretly installs a VBscript that watches the system clipboard for a Bitcoin address and replaces that address with a hardcoded one. Essentially this plugin attempts to redirects Bitcoin payments to whoever wrote the “colourama” library.

read more

Share this

© 2017 Awontis. All rights reserved.