Recently, a security researcher, Kafeine, spotted an instance of the Angler Exploit Kit which is exploiting an unpatched vulnerability affecting Adobe Flash. It appears that any version of Internet Explorer or Firefox with any version of Windows can be owned if the latest version (16.0.0.287) of Adobe Flash is installed and enabled.
Information security has become a fixture in the daily headlines, ranging from the latest high-profile data breach; to exotic hacks of USB drives, ICS devices and IOT systems; and new zero-day exploits and attack techniques. While these stories are interesting and help us understand the vulnerabilities and risks that make up the threat landscape, they reflect a frequent bias in the industry towards focusing on the “cool” exploit and detection side of cyber-defense, rather than the more operational response and mitigation side. One of the results of this focus, as reported in a recent SANS study, is that for over 90% of incidents, the time from incident discovery to remediation was 1 hour or longer.
In the midst of another vulnerability found in SCADA software (http://threatpost.com/hard-coded-ftp-credentials-found-in-schneider-electric-scada-gateway/110565), MWR InfoSecurity's Rob Miller had the following to say about the increase in these instances, how to prevent it becoming a problem in your organisation and what lies ahead for the future.
24 percent of critical infrastructure employees have already connected an Internet of Things device to their employers’ networks
LONDON, UK: Tripwire, Inc. has announced the results of an extensive study conducted by Atomik Research on the security of the “Enterprise of Things” in critical infrastructure industries. The study examined the impact that emerging security threats connected with the Internet of Things (IoT) have on enterprise security. Study respondents included 404 IT professionals and 302 executives from retail, energy and financial services organizations in the U.S. and U.K.
To expose official corruption in Nigeria, re-orientate the psyche of Nigerians and usher in the Nigerian renaissance
Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.
Vigilance is the brain child of a group of veteran journalists and international scholars who have worked in the mainstream media and distinguished themselves nationally and internationally before veering into security practice.
We have 310 guests and no members online