Categories
News

Extortionists Breach Qualys Using Accellion Exploit

Enterprise cloud security firm Qualys is the latest victim of a data breach after zero-day vulnerabilities in its Accellion File Transfer Appliance server were used to steal sensitive business documents. The cybercriminals behind the hacks shared screenshots of files belonging to the company’s customers on a publicly accessible data leak website operated by the CLOP […]

Categories
compliance cybersecurity Open Source security

The Four Laws of Cybersecurity

(Image: Wk1003mike via Shutterstock) 4.57 Billion humans are on-line, communicating with each other and multiple institutions daily. This ties us together through a common language that we all share, which is networking protocols, which are rules for communication between network devices and how those devices can connect to each other.   Social Media platforms that tie […]

Categories
cybersecurity Open Source

Airline Supply-Chain Attacks on The Rise

SITA, a communications and IT vendor for 90% of the world’s airlines, has been breached. Passenger data stored on the company’s U.S. servers has been compromised.  Malaysia Airlines sent out an email to their frequent flyer members informing them that there’s “no evidence” their personal data has been misused but that is highly unlikely. It […]

Categories
Open Source

Supply chain attack targets internal apps at tech giants

Alex Birsan, an ethical hacker discovered a security vulnerability belonging to several companies, including Tesla, Apple, Netflix, and Microsoft by exploiting open-source repositories that allowed him to run code on their internal systems. The supply chain attack involved uploading malware to open-source repositories including npm, PyPI, and RubyGems that got distributed downstream. The supply chain […]

Categories
Uncategorized

Women Breaking into the Cybersecurity Industry Regardless of Background

Cybersecurity can be a pathway to success in business. The opportunities for women to obtain a high-paying self-gratifying position is boundless. It is not necessary to have a vast background in IT or Engineering to begin your future in one of the fastest-growing industries of our time. By 2023, the cybersecurity market size is expected […]

Categories
cybersecurity

Huge Wave Of Vishing attacks Targeting Teleworkers According to FBI

The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint security advisory that cybercriminals started a vishing campaign specifically targeting employees working from home for US companies in July of 2020. The attackers have been collecting login credentials for corporate networks and then selling the access to corporate resources to other […]

Categories
cybersecurity

Woman In Cybersecurity

In today’s world, women in business is a hot topic in conversations and on blog posts. More women in the workplace is said to be good for business. We are a diverse group. And Diversity is being hammered into our subconscious as something all companies must strive for. But Why? Why is it important for […]