In 2019, Business Email Compromise (BEC) attacks – a long-standing cybersecurity threat – accounted for $1.7 billion in losses, with cybercriminals using new tactics and techniques to carry out existing attacks. As cybercrime spikes in the wake of COVID-19, BEC’s toll is expected to rise this year. The Federal Bureau of Investigation (FBI) recently issued a warning to businesses on the growing threat of BEC attacks using the pandemic as a backdrop for unusual requests like payments to a “new” vendor or a change of account information.
Application programming interfaces (APIs) make everything a bit easier - from data sharing to system connectivity to delivery of critical features and functionality - but they also make it much easier for the bad actors (and the bad bots they deploy). Here are the top 5 API vulnerabilities that get exploited by hackers, including some tips to help close those gaps.
Digital Shadows has identified 225 new, potentially malicious, typosquats related to the upcoming US presidential elections. Based on the major party tickets, Digital Shadows identified three classes of typosquats - misconfigured or illegitimate sites, non-malicious sites, and sites that redirect to another – associated with election-specific keywords like Trump, Pence, Biden, and Harris, among others.
The Security Industry Association and the Electronic Security Association have launched the Foundation for Advancing Security Talent (FAST), a new 501(c)(3) nonprofit organization designed to promote careers in the physical security technology and life safety industry. Created through a partnership of ESA and SIA – the industry’s leading associations – FAST will connect passionate, innovative professionals with new opportunities in electronic security and life safety.
Android smartphones are some of the most popular handheld devices around the world. However, if you have an Android smartphone, a new report may urge you to reconsider which apps you have installed on your phone. Researchers from Pradeo have warned about six dangerous apps that can swindle you out of thousands. The apps are loaded with a dangerous malware dubbed Joker, according to Pradeo.
Bridgestone Americas announced Taren Rodabaugh has been named Chief Information Officer (CIO) effective August 31. She will lead the information technology strategy in support of the company's ongoing evolution to become a sustainable mobility and advanced solutions company.
With a growing need to improve the security, efficiency and accuracy of passenger and baggage screening, the Department of Homeland Security (DHS) Small Business Innovation Research (SBIR) Program is working with a small business to advance explosive detection equipment. Synthetik Applied Technologies was awarded funding to develop machine learning training data that simulates human travelers and baggage object models to support machine learning algorithms.
Sudhish Kasaba Ramesh pleaded guilty in federal court to intentionally accessing Cisco's protected computer without authorization and recklessly causing damage, announced United States Attorney David L. Anderson and Federal Bureau of Investigation Special Agent in Charge John L. Bennett.