Security News > 2020 > June

The Cloud Security Alliance and the International Systems Security Association announced that the two parties have signed a memorandum of understanding to collaborate on a variety of initiatives with the goal of both supporting and strengthening the cybersecurity profession. "Our partnership with ISSA heralds an exciting opportunity for both organizations to collaborate and bring our strengths and unique sets of expertise to the table to benefit cloud and cybersecurity professionals across the spectrum," said Jim Reavis, co-founder and CEO, Cloud Security Alliance.

Upwork is teaming with Citrix Systems to power flexible work. Upwork announced the launch of the Upwork Talent Solution with Citrix Workspace, a unique offering designed to deliver a best-in-class secure remote infrastructure for companies to boost efficiency and productivity as the world increasingly adopts the benefits of remote, on-demand talent.

Qumulo announced the appointment of Adriana Gil Miner as chief marketing officer. In this role, Gil Miner will be responsible for leading Qumulo's global marketing and brand strategy as the company helps customers innovate faster and leverage the power of cloud data services.

The supervisory board of IDEMIA has appointed Pierre Barrial as the new President & CEO of the Group, replacing Yann Delabrière who resumes his previous role as Chairman of the Board. Pierre Barrial will succeed Yann as the Group's President & CEO. He brings over 25 years' experience with multinational and multicultural tech companies serving both the government and enterprise sectors.

Verizon Media tops the list with $9.4 million paid out since it started its program in 2014, with its top bounty coming in at $70,000. That said, PayPal follows as a distant second with Verizon Media in terms of bounty volume.

A rare new ransomware strain targeting macOS users has been discovered, called EvilQuest. While Devadoss found the ransomware purporting to be a Google Software Update package, Wardle inspected a ransomware sample that was being distributed via a pirated version of "Mixed In Key 8," which is software that helps DJs mix their songs.

A new survey of developers has found that there isn't a single application security tool that at least 80% of developers said is inhibiting their productivity. The degree to which various aspects of appsec hinder developer productivity vary from item to item, with the largest hindrance being a disconnect between developer and security workflows.

Netgear has now patched 28 out of 79 vulnerable router models, six months after infosec researchers first noticed security problems potentially allowing an attacker to remotely execute code as root. Over the past few weeks Netgear has been pushing out fixes, having so far plugged problems with 28 of the 79 models it says are affected by the unwanted remote-superuser flaw.

The APT group known as StrongPity is back with a new watering-hole campaign, targeting mainly Kurdish victims in Turkey and Syria. The sheer variety of the trojanized applications on offer in the latest campaign is a method aimed at casting a wide net in terms of victims' interests, according to researchers at Bitdefender in a report released Tuesday.

Industrial control systems can be hacked through barcode scanners, researchers at cybersecurity services company IOActive said on Tuesday. Hackers previously demonstrated that keystrokes can be remotely injected via an industrial barcode scanner into the computer the scanner is connected to, which could result in the computer getting compromised.