Security News

Agari's Cyber Intelligence Division, which concentrates on email threat investigations, has found that 60% of employee-reported suspect emails are false positives. Wire transfer scams also increased from 19% to 22%, while payroll diversion scams fell from around 25% to 16%. There is another shift within the fraudulent emails.

60% of initial entries into victims' networks leveraged either previously stolen credentials or known software vulnerabilities, allowing attackers to rely less on deception to gain access, according to a new IBM report exploring the global threat landscape. "The amount of exposed records that we're seeing today means that cybercriminals are getting their hands on more keys to our homes and businesses. Attackers won't need to invest time to devise sophisticated ways into a business; they can deploy their attacks simply by using known entities, such as logging in with stolen credentials," said Wendi Whitmore, Vice President, IBM X-Force Threat Intelligence.

Elastic, creators of Elasticsearch, announced the release of Elastic Security 7.6.0, which builds on the strengths of Elastic Endpoint Security and Elastic SIEM to deliver unparalleled visibility and threat protection through a unified interface. Elastic Security 7.6 introduces a new SIEM detection engine to automate threat detection, minimizing mean time to detect and freeing up your security team for security tasks requiring human intuition and skill.

The updates provide customers with an enhanced RSA NetWitness UEBA offering that leverages network meta data to accurately identify unknown threats. With the latest edition of the RSA NetWitness Platform, organizations can leverage machine learning to minimize blind spots in the threat landscape and accurately identify true threats, while simultaneously improving incident response planning, management, and orchestration.

GreatHorn, the leading cloud email security provider focused on managing risk from advanced email threats, achieved substantial product innovation, customer growth, and expansion during 2019 with improvements to its industry-leading adaptive threat detection, user protection, and incident response capabilities. With a focus on increasing visibility and control of an organization's email security environment, these enhancements to GreatHorn's flagship product improve threat identification, reduce user engagement with suspicious email, and automate post-delivery remediation.

Almost a third of internet users affected by data breaches last year had reused a password in some form. "Our data shows that consumers are still not changing their poor password habits, yet we know they're holding organizations accountable for their security." said David Endler, chief product officer for SpyCloud.

Mac threats growing faster than their Windows counterparts for the first time ever, with nearly twice as many Mac threats detected per endpoint as Windows threats, according to Malwarebytes. Mac threats are growing, other threats in the spotlight.

Elastic Stack 7.6 streamlines automated threat detection with the launch of a new SIEM detection engine and a curated set of detection rules aligned to the MITRE ATT&CK knowledge base, brings performance improvements to Elasticsearch, makes supervised machine learning more turnkey with inference-on-ingest features, and deepens cloud observability and security with the launch of new data integrations. Chasing down an error in the Elastic Logs app or investigating a threat in Discover are just a few of the many things that will be faster by simply upgrading to 7.6.

The X-Force Threat Intelligence Index 2020 found that hackers are targeting manufacturing plants, making banking trojans more sophisticated, and spoofing tech brands to make phishing schemes successful. IBM Security releases the IBM X-Force Threat Intelligence Index annually, summarizing the most prominent threats identified by research teams.

Russia is still using social media in a sustained campaign to dabble in US affairs, according to FBI director Chris Wray. Wray, speaking at a House Judiciary Hearing on FBI Oversight on Wednesday 5 February, said that Russia is still engaged in an "Information warfare" campaign against the US, according to a report by the Associated Press.