VPN Vulnerabilities show Work From Home(WFH) Weakness

Posted on computersecuritynews

NSA has a cybersecurity  advisory It says that Pulse SecureTM, Palo Alto GlobalProtectTM, and Fortinet FortigateTM VPN(Virtual Private Network) products have vulnerabilities 3 of them VPN CVEs being currently exploited include but may not be limited to: CVE-2019-11510 and CVE-2019-1153 which allow for remote arbitrary file downloads and remote code execution on Pulse Connect Secure […]

Read more >

Who Is Responsible For Cyber Attacks? CEO or CIO?

Posted on computersecuritynews

Technewsworld has an interesting article: Cybersecurity Conundrum: Who’s Responsible for Securing IoT Networks? I do not want to focus on the IoT(Internet of Things) angle, instead pointing the spotlight  at the responsibility of the Cyber breach (assuming they get breached): {Global research and advisory firm Gartner predicts that, by 2024, 75 percent of CEOs will […]

Read more >

If You Pay Ransomware Will You Have to Pay the US Treasury as Well?

Posted on securitycommunity

KrebsonSecurity has a post that mentions that the department of the Treasury has a Ransomware Advisory pdf. The Treasury is advising you not to pay Ransomware if your device is ransomed (encrypted unless you pay for a decryption key): Companies that facilitate ransomware payments to cyber actors on behalf of victims, including financial institutions, cyber […]

Read more >