May 14, 2020
Computing
Do we need tougher breach notification rules?
Jamie Brown discusses UK breach notification laws.
May 13, 2020
Computer Weekly
Nation state APT groups prefer old, unpatched vulnerabilities
Satnam Narang expresses his lack of surprise at the popularity of old Microsoft vulnerabilities given cyber criminals prefer low hanging fruit.
May 13, 2020
The Daily Swig
Critical SharePoint and browser security flaws star in May Patch Tuesday
Satnam Narang draws attention to the volume of patches issued by Microsoft in the last three months.
May 13, 2020
Forbes
Microsoft Sounds Windows 10 ‘Exploitation More Likely’ Alarm: Here’s Exactly What That Means
Rody Quinlan explains why CVSS will catch the attention of threat actors, but alone it is not always enough to prompt active exploitation.
May 5, 2020
Daily Swig
Salt framework security flaws used to attack multiple targets
Rody Quinlan takes a closer look at the combination of Salt flaws, and speed of exploitation.
Apr 30, 2020
TEISS
Hackers exploited SQL injection flaw to compromise Sophos XG firewall devices
Rody Quinlan explains how the SQL injection zero-day could allow attackers to exfiltrate data.
Apr 25, 2020
The Observer
Working from home? How to stay in touch and stay secure
Adam Palmer shares tips for secure video conferencing configurations.
Apr 23, 2020
Computer Weekly
iOS zero-day leaves iPhone users dangerously exposed
Satnam Narang warns that there is potential for further danger to iOS users from combining the flaws with an unpatched kernel vulnerability.'
Apr 23, 2020
The Guardian
Bug leaves iPhones vulnerable to hackers stealing email contents
Satnam Narang tells the Guardian that the flaws are 'significant and noteworthy.'
Apr 23, 2020
Forbes
Microsoft Issues Emergency Security Update And Warns Of 3D Graphics Hack
Ryan Seguin tells Forbes that, if exploited, an attacker could run code with the same permission as the person who opened the file.
Apr 20, 2020
The New York Times
Zoom’s Security Woes Were No Secret to Business Partners Like Dropbox
Tenable's David Wells shares insight into previously reported research on Zoom vulnerabilities, which Zoom had quickly patched.
Apr 15, 2020
Verdict
Update Windows today if you are working from home
Satnam Narang confirms that this month's Patch Tuesday is 'another considerable release'.
Apr 15, 2020
Infosecurity Magazine
Microsoft Fixes Three Zero-Day Flaws in April
Tenable's overview of CVE-2020-0968 - a vulnerability originally cited by Micosoft as a zero-day, but subsequently confirmed as not exploited in the wild.
Apr 2, 2020
The Wall Street Journal Pro
Federal Commission Calls for Civilian Cyber Reserve Corps
Tenable CEO Amit Yoran weighs in on the idea of civilian cybersecurity reserves suggested by the National Commission on Military, National, and Public Service.
Mar 31, 2020
Quartz
Cash App scammers are using coronavirus to exploit people
Tenable's Satnam Narang shares research into scammers responding to legitimate Cash App giveaway announcements on social media to exploit the audience and push separate, fake giveaways, among other tactics.
Mar 27, 2020
Fox News
Hackers could exploit the shift to working from home, experts say
Tenable's Satnam Narang shares insight into what security risks to be wary of for newly remote workers.
Mar 25, 2020
TEISS
Quantifying cyber risk: When perceived risk outweighs reality
Bob Huber addresses the impact of the media-fulled hype that surrounds vulnerabilities on enterprise security efforts.
Mar 13, 2020
Verdict
“Too late”: Cyberspace Solarium Commission report paints dark picture of US ravaged by cyberattacks
Marty Edwards responds to the long awaited report from the US Cyberspace Solarium Commission warning of a US 'catastrophic cyberattack'.
Mar 11, 2020
Computer Weekly
Microsoft fixes 26 critical vulnerabilities in another heavy Patch Tuesday
Satnam Narang takes a closer look at this month's Microsoft updates.
Mar 11, 2020
Infosecurity Magazine
Patch Tuesday Fixes Over 100 Bugs This Month
Satnam Narang calls out three elevation privilege vulnerabilities worthy of attention in this month's Microsoft patches.