Chinese spies known as Buckeye group are alleged to be using some of the NSA cyber weapons as early as March 2016, long before Shadow Brokers released them in April 2017.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Cybersecurity vacancies are hard to fill as companies are hiring from a pool which is not growing quick enough to meet demand, a phenomenon attributed to growing cybercrime economy and lack of extensive education to produce professionals.
Major anti-malware vendors, Symantec, McAfee, and Trend Micro, allegedly had their source code stolen by Russian hackers. The full set of data including access to the companies' networks are now going on sale for $300,000.
New Atlantic Council report by two former Department of Defense officials suggests that active cyber defense would represent a welcome compromise between doing nothing and going on the offensive.
Israel's cyber response to cyber attacks launched by Hamas was to launch an air strike on a building known to be the cyber HQ for Hamas. It is believed to be the first time any military has responded to a digital threat with immediate force.
Personal information of over 80 million U.S. households was exposed from an unsecured cloud database, while the owner of the database remains unknown.
New cyber security directive from DHS has cut mandatory time for U.S. federal government agencies to patch vulnerabilities considered critical from 30 to 15 days, failure to do so may result in administrative penalties.
In the competitive world of mobile app development, companies need to take mobile app security as an important factor to protect consumer data and privacy.
Cynet launches free IR tool providing unmatched speed and efficiency to help organizations and IR providers accurately determine the breach scope and impact; and ensure that all malicious presence and activity are completely eliminated.
Mysterious organization exposed tools and source code used by Iranian hackers, including personal information of some Iranian Ministry of Intelligence members responsible for state-sponsored cyber attacks.










