Security News

United States president Donald Trump has issued two executive orders banning Chinese messaging service WeChat and made-in-China-but-only-operating-abroad social network TikTok, and labelling the two a "Threat". Which is five days after the September 15 deadline president Trump has given Microsoft to do a deal to buy some of TikTok.

United States president Donald Trump has issued two executive orders banning Chinese messaging service WeChat and made-in-China-but-only-operating-abroad social network TikTok, and labelling the two a "Threat". Which is five days after the September 15 deadline president Trump has given Microsoft to do a deal to buy some of TikTok.

British Airways expects the fine for its 2018 credit card data leak to be just 10.8 per cent of the £183m proposed by the UK data watchdog - while US hotel chain Marriott has both halved and kicked its own data blunder punishment into the long grass once again, The Register can reveal. Marriott has secured an extension for fine negotiations to 30 September, having secured two already; one from January to 31 March and a second that ran through May. On top of that, the company set aside $65m to cover its proposed fine, down from the Information Commissioner's original intention to impose a £99m penalty.

Farsight Security introduced DNSDB 2.0, which enables security professionals to identify and map domain names and IP addresses associated with bad actors or used in malicious infrastructures, brand infringement campaigns, phishing schemes, ransomware and other cybercrime. With more than 100 billion DNS observations, DNSDB is the industry standard in historical passive DNS. Traditionally, DNSDB has offered only exact matches, or full-label front or back wildcard searches, such as "*.example.com" or "Example.*" DNSDB 2.0 adds new flexible search functions so users can better find - and filter out - only the data they need.

Extending the observability provided by the Threat Stack Cloud Security Platform to AWS Fargate tasks can help Threat Stack customers detect threats and maintain compliance across all areas of their cloud infrastructure. The Threat Stack Cloud Security Platform collects and correlates security telemetry from the cloud management console, host, containers, orchestration, managed container services and applications, giving Threat Stack customers a view into their entire cloud environment.

Mimecast released the Threat Intelligence Report: Black Hat U.S.A. Edition 2020, which presents insights gleaned from the analysis of 195 billion emails processed by Mimecast for its customers from January through June 2020. The majority of attacks seen by Mimecast during this period were simple, high volume forms of attacks, such as spam and phishing that is likely a reflection of the ease of access to tools and kits available online.

Security firm recommends digital distancing for devices and more collaboration between IT and security teams to harden the attack surface. A survey of security professionals finds that hackers are getting more aggressive as IT and security teams continue their internal turf battles.

A report released Monday by network monitoring provider Gigamon looks at the use of mobile devices on business networks and the risks posed by mobile malware and inadequate security. The report also offers several pieces of advice on protecting your organization from mobile threats.

Intelligence officials confirmed in recent days that foreign actors are actively seeking to compromise the private communications of "U.S. political campaigns, candidates and other political targets" while working to compromise the nation's election infrastructure. Because of such secrecy, at least in part, foreign interference largely remains an afterthought in the 2020 contest, even as Republicans and Democrats alike concede it poses a serious threat that could fundamentally reshape the election at any moment.

The advantages of having decent threat intelligence in place are many and various, as the threat landscape continues to widen year-on-year. The problem, as with any complex big-data project, is cutting through the inevitable data deluge to correctly identify the bits you need - the people, places, technology, and other moving parts to build the picture.