Security News > 2020
Accenture has agreed to acquire Symantec's Cyber Security Services business from Broadcom. "With the addition of Symantec's Cyber Security Services business, Accenture Security will offer one of the most comprehensive managed services for global businesses to detect and manage cybersecurity threats aimed at their companies."
Rockwell Automation announced that it has signed an agreement to acquire privately held Avnet Data Security, an Israeli-based cybersecurity provider with over 20 years of experience providing cybersecurity services. Avnet offers a full set of IT/OT cyber services and solutions ranging from assessments, penetration testing, network & security solutions, and training to converged IT/OT managed services.
AttackIQ, the leading independent vendor of breach and attack simulation solutions, announced Pedro Vidal has joined the company's executive team as vice president of North America sales. "Pedro is a proven force in the sales industry for security, making him a valuable addition to our growing executive team," said Carl Wright, chief commercial officer of AttackIQ. "He is a well-rounded executive, with 20 years of experience building business partnerships, developing sales teams and leading go-to-market strategies. The addition of Pedro will help strategically advance our footprint and meet the growing demand for our product."
DXC Technology announced that Carla Christofferson has been appointed chief risk officer to lead the company's risk and security efforts. Christofferson will report to Mike Salvino, DXC's president and chief executive officer, as a key advisor on embedded and emerging risks.
A hacker with the handle "Master X" leverages a PowerShell script that contains a reference to singer-songwriter Drake lyric's "Kiki Do You Love Me" and ultimately delivers a malicious payload to its victims. Pickett said the script uses Windows native Microsoft HTML application host called "Mshta.exe" to reach out to a Bitly shortened link as a way to circumvent browser defense controls.
Back in 2012, the same year America's National Institute of Standards Technology advised against using SHA-1 for applications that require collision resistance, cryptographer Bruce Schneier estimated that the cloud computing bill for carrying out a SHA-1 attack would be about $2.77m. And he projected the cost would fall to about $43,000 by 2021. In their paper, Leurent and Peyrin put the theoretical cost at $11,000 for a SHA-1 collision and $45,000 for a chosen-prefix collision.
How the Advanced Threat Research Team can stop hackers from stealing personal data from a wearable device.
The FBI asked Apple this week to help extract data from iPhones that belonged to the Saudi aviation student who investigators say fatally shot three sailors at a U.S. naval base in Florida last month. Apple said in a statement that it has already provided investigators with all the relevant data held by the company.
Malware hunters are sounding the alarm over a new, more effective version of the North Korean "Apple Jeus" macOS software nasty. "To attack macOS users, the Lazarus group has developed homemade macOS malware, and added an authentication mechanism to deliver the next stage payload very carefully, as well as loading the next-stage payload without touching the disk."