This Week in Security News
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.
Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!
HP to Sell HP TippingPoint to Trend Micro
Hewlett-Packard Co., which is preparing to split into two separate businesses, has agreed to sell network security business HP TippingPoint to cybersecurity firm Trend Micro Inc. for about $300 million. The purchase complements our current threat-defense expertise, extending its strength in endpoint, cloud, data center and breach detection to the network.
Adobe Released an Emergency Patch for the Flash Zero-Day Flaw
Adobe has patched a critical zero-day security flaw in Flash, which the company said was being used to launch “limited, targeted attacks.” The emergency patch, which also fixed two other vulnerabilities, landed on Friday, sooner than the company’s forecast of sometime this week.
Oracle Patched 154 New Flaws in Quarterly Update
Oracle has released its quarterly patch round and it’s another big one, with fixes for 154 new security vulnerabilities across a wide range of products including one which has been exploited in a suspected nation state attack on the White House.
The CIA Director’s Email Account May Have Been Hacked
The FBI and Secret Service are investigating reports that the personal account of CIA Director John Brennan may have been hacked by a teenager. The alleged attacker was able to access sensitive documents including Brennon’s application for top security clearance and social security numbers of current and former U.S. intelligence officials.
The Senate Voted to Move Ahead with CISA, a Controversial Cybersecurity Bill
The Senate on Thursday cleared the first hurdle toward passing a controversial cybersecurity bill championed by pro-business groups and condemned by civil-liberties advocates and leading tech companies as detrimental to Americans’ privacy.
Forty Percent of CISOs and CSOs Report to the CIO, which is Creating Problems
Many complaints about malfunctioning computer security systems never reach the CFO because the CIO intercepts those messages and tables them. CFOs are often viewed to be “cost obsessed” and more willing to ditch projects that will cost the company money.
Trend Micro Debunked the Myths Behind U.S. Government Data Breaches
The narrative surrounding the last few years’ of data breaches has overwhelmingly been that of Chinese state-sponsored operatives walking through poorly protected systems to get at some of our nation’s most sensitive data. The State Department, White House, NOAA, United States Postal Service and most recently the Office of Personnel Management (OPM) have all suffered hugely damaging cyberattacks.
Sixty Percent of IT Leaders Don’t Consider Security When Evaluating Cloud Services
Armor sponsored a Ponemon Institute study called Cloud Security: Getting It Right, which is the result of surveying 990 IT professional managers and executive leaders from organizations that process business-critical data in the cloud or store sensitive business data in a cloud environment. Here’s what they found.
Trend Micro Looked Back On ‘Back to the Future’ Day to Compare Predictions with Reality
When Marty McFly finds himself in the future in 2015, he sees that his future self and family live in a home with voice-activated future, smart gadgets. In reality, we’re on the cusp of seeing “smart home” technology become pervasive and accessible like we see in the films.
Corporate Boards Are Picking Women to Fill Cybersecurity Posts
Over the last 5 years, as data theft has risen to the top of corporate concerns, 16 of the largest U.S. companies have appointed 1 or more directors with cybersecurity credentials, 10 of them women, a Bloomberg analysis shows. Given the paucity of women in boardrooms – fewer than 1 in 5 in the Standard & Poor’s 500 Index – the surge has stunned all involved.
There Are Still Cybersecurity Events Left to Attend This Year
There’s an exciting lineup of cyber events remaining in 2015 where you can mix with your peers, hear keynotes and presentations from industry experts, see the latest product innovations and vendor pitches, and spend a day or two talking crypto, dark web, cyber espionage, malware, and all the topics that gets your juices flowing.
Please add your thoughts in the comments below or follow me on Twitter; @ChristopherBudd.
from Trend Micro Simply Security http://ift.tt/1kzrfjB
via IFTTT