Security News > 2020

Cisco's CISO Benchmark Study for 2020 offers some perspective on the dynamic nature of security work as well as some best practices to make life a little easier and data somewhat more secure. Threats from mobile devices are now the biggest security threat with more than half of the respondents said mobile devices are now very or extremely challenging to defend.

Security teams are also more confident about their data breach response plans, even though the number is only 57%. Experian and the Ponemon Institute shared the state of data breaches and defenses against these attacks in the seventh annual "Is Your Company Ready for a Big Data Breach?" report. Experian has firsthand experience with a massive data breach.

Security leaders need to connect their work to broader business goals and create a culture of learning to attract talent. Chief information security officers need to focus on communication, collaboration and culture in 2020 to improve cybersecurity and boost the profile of the security team as well.

The FBI on Friday arrested a man linked to former U.S. Rep. Katie Hill's 2018 House campaign for allegedly orchestrating a series of cyberattacks on a rival candidate that shut down the campaign's website for 21 hours. The U.S. Attorney's Office in Los Angeles said Arthur Jan Dam, 32, of Santa Monica, California, surrendered and was taken into custody on a complaint that says his computer attacks in April and May 2018 cut off campaign donations for Democrat Bryan Caforio and contributed to his narrow loss to Hill in the primary election.

The Open Cybersecurity Alliance today announced the availability of OpenDXL Ontology, the first open source language for connecting cybersecurity tools through a common messaging framework. With open source code freely available to the security community, OpenDXL Ontology enables any tool to automatically gain the ability to communicate and interoperate with all other technologies using this language.

The Times of London is reporting that Russian agents are in Ireland probing transatlantic communications cables. Ireland is the landing point for undersea cables which carry internet traffic between America, Britain and Europe.

You know those ads that obscure your whole screen when you're trying to make a phone call, unlock your device or use your phone's GPS? Technically, they're called disruptive or out-of-app ads, and they maddeningly pop up outside of the app that hosts them, sometimes causing users to mistakenly click them, thereby frustrating users and wasting advertisers' money. On Thursday, Google kicked nearly 600 of the offending apps off its Play store and banned them from its ad monetization platforms, Google AdMob and Google Ad Manager, for violating its disruptive ads policy and disallowed interstitial policy.

Just weeks into this year's election cycle, Russia already is actively interfering in the U.S. presidential campaign in hopes of reelecting President Donald Trump, and is also trying to help the candidacy of Sen. Bernie Sanders on the Democratic side, intelligence officials have concluded. Lawmakers were told in a classified briefing last week that Russia is taking steps that would help Trump, according to officials familiar with the briefing.

That browser makers were voted down might explain why Apple has decided to enforce the change unilaterally, apparently against the wishes of the Certificate Authorities which issue certificates as a business. The browser makers are adamant that reducing validity is good for security because it reduces the time period in which compromised or bogus certificates can be exploited.

From malware attacks to malicious browser extensions - and everything in between. It's your weekly security roundup.