Network Security News | Ingalls Information Security

Articles of interest from the week of July 29, 2019

Written by John Frasier | Jul 29, 2019 4:00:00 AM

The Growing Demand for Managed Detection and Response (MDR)

Threat detection/response is a high priority, but many organizations don’t have the staff or skills to perform these tasks alone. This translates into a growing MDR market. (By John Oltsik, CSO)

Former AWS Engineer Arrested as Capital One Admits Massive Data Breach 

More than 100 million customers have had their data compromised by a hacker after a cloud misconfiguration at Capital One. (By Jason Corcoran, Threatpost)

Cyberattackers Strike Fourth Louisiana School District, Tangipahoa Parish, Others Taking Precautions

Tangipahoa Parish has become the latest victim in a series of cybersecurity attacks on Louisiana schools that prompted an emergency declaration and has officials scrambling to mitigate damage ahead of the school year starting next week. (By Emma Kennedy, The Advocate)

Assessing the Risk of the Former Employee

Many years ago, I left a job to take a new position. Several weeks after I made the move, I was searching for some information and realized that it may have been in my former email inbox. On a whim, I checked to see if I could still log in. Not only was able to access that inbox, but I discovered I still had access to everything on the network, including sensitive employee records and the financial database. I reported that I still had access, but on periodic checks, I stayed on the company’s active list for at least six months after I had left. Imagine what I could have done if I was vindictive! (By Sue Poremba, Security Boulevard)

New Android Ransomware Uses SMS Spam to Infect Its Victims

A new ransomware family targeting Android devices spreads to other victims by sending text messages containing malicious links to the entire contact list found on already infected targets. (By Sergiu Gatlan, Bleeping Computer)

Viewpoint: What Insurance Industry Should Acknowledge About Small Business Cyber

The 2018 Verizon Data Breach Investigations Report cited that 58% of cyber-attack victims were small businesses, and the 2019 Symantec Internet Threat Report stated that employees working at small businesses were more likely to be targeted by email threats (e.g., malware, spam, phishing) than those employed at larger companies. (By Josh Ladeau, Insurance Journal)

 
View full post