Security News > 2020 > February

British utility biz Southern Water was the victim of a phishing attack on Wednesday, resulting in a hurried shutdown of some of the company's systems. An industry insider told The Register that Southern Water's networks, including the system responsible for Supervision, Control, and Data Acquisition were hit.

Free and open certificate authority Let's Encrypt on Thursday issued its billionth certificate, four and a half years after issuing the first certificate. It provides free digital certificates and also handles the certificate management process for site owners.

To that end, CISA has worked with the National Security Council, various federal agencies, industry stakeholders and organizations like the ICS Village to develop a set of core initiatives for 2020. Four, CISA will have a focus on developing detection and incident-response training blueprints.

This special edition of the ISMG Security Report focuses exclusively on the RSA 2020 conference. Featured are comments from former NSA Director Keith Alexander on "collective defense," plus a...

SAN FRANCISCO - Advanced persistent threat groups are hitting Apple devices with malware that has been reverse engineered and redeployed for malicious acts. Despite these threats, Wardle said that when it comes to security, Apple's moving in a "Positive" direction, adding more malware mitigation or security features into their operating system.

Intel patched over 230 vulnerabilities in its products last year, but less than a dozen impacted its processors, according to the company's 2019 Product Security Report. Intel said it learned of 236 vulnerabilities in 2019, including 144 discovered internally by its employees.

Clearview AI, the controversial facial recognition startup that's gobbled up more than three billion of our photos by scraping social media sites and any other publicly accessible nook and cranny it can find, has lost its entire list of clients to hackers - including details about its many law enforcement clients. Clearview, which has sold access to its gargantuan faceprint database to hundreds of law enforcement agencies, first came to the public's attention in January when the New York Times ran a front-page article suggesting that the "Secretive company [] might end privacy as we know it."

Six alleged drug criminals will go free thanks to a ransomware attack on a small Florida city, it was revealed this month. It suffered an attack involving the Ryuk ransomware in April 2019 that took city servers offline.

Mozilla has said it plans to make a privacy technology called DNS-over-HTTPS the default setting for US users of Firefox within weeks. Although not a perfect shield against DNS snooping, DoH makes that a lot harder.

HackerOne announced findings from the 2020 Hacker Report, which reveals that the concept of hacking as a viable career has become a reality, with 18% describing themselves as full-time hackers, searching for vulnerabilities and making the internet safer for everyone. The annual report is a study of the bug bounty and vulnerability disclosure ecosystem, detailing the efforts and motivations of 3,150 hackers from over 120 countries who successfully reported one or more valid security vulnerabilities on HackerOne.