Security News

Most recently a consulting Practice Manager and Executive Security Strategist at NTT Ltd., Ireland is a technology leader with management experience in security services, consulting, financial services, healthcare, manufacturing, law enforcement and emergency services and three decades of technical experience in information security, IT systems, networks and enterprise operations. "We are so pleased to have Matt Ireland on board," said NTT Research President and CEO, Kazuhiro Gomi.

As a simple illustration, if you want to examine some opportunistic attackers, one useful technique is to search for a hot topic and add phrases like "Free download" to the search. The bigger point here is that finding examples like this did not require any sophistication beyond doing 15 minutes of creative searching from my research laptop while sitting in bed.

The Linux Foundation announced Linux Foundation Research, a new division that will broaden the understanding of open source projects, ecosystem dynamics, and impact, with never before seen insights on the efficacy of open source collaboration as a means to solve many of the world's pressing problems. Through a series of research projects and related content, Linux Foundation Research will leverage the Linux Foundation's vast repository of data, tools, and communities across industry verticals and technology horizontals.

Security researcher David Sopas has published a new open-source project: MindAPI, a mind map with resources for making API security research easier. "After years of using it, I decided to implement my API security research experience and apply it on something that I could share not only with the infosec community, but also with developers."

Guardicore announced that Amit Serper has joined the Guardicore Labs cyber research team as Area VP of Security Research for North America. Serper unveiled his first research with Guardicore Labs - demonstrating how the Purple Fox rootkit now propagates as a worm.

Most security agencies fail to properly sanitize Portable Document Format files before publishing them, thus exposing potentially sensitive information and opening the door for attacks, researchers have discovered. An analysis of roughly 40,000 PDFs published by 75 security agencies in 47 countries has revealed that these files can be used to identify employees who use outdated software, according to Supriya Adhatarao and Cédric Lauradoux, two researchers with the University Grenoble Alpes and France's National Institute for Research in Computer Science and Automation.

The recent cyberattack that forced the Dutch Research Council to take its servers offline and suspend grant allocation processes was caused by the DoppelPaymer ransomware gang. Since NWO does not cooperate with cybercriminals, DoppelPaymer published proof of the stolen internal data on their leak site.

Ping Identity welcomed Peter Burke as the new Senior Vice President of Research and Development. Burke will drive product strategy and development across all Ping solutions, helping to further accelerate identity security and make access management simple for businesses and the consumers they serve.

Researchers at cybersecurity firm FireEye have analyzed a gateway device used for solar energy installations, and discovered vulnerabilities that could be useful to malicious hackers. FireEye conducted its research on a version of the device offered by Tesla under the SolarCity brand - Tesla acquired solar panel maker SolarCity in 2016.

Servers belonging to the Dutch Research Council have been compromised, forcing the organization to make its network unavailable and suspend subsidy allocation for the foreseeable future. The NWO is tasked with investing in research and research infrastructure to increase quality and innovation in science.