An improved variant of macOS malware WizardUpdate employs fresh tactics, such as bypassing Gatekeeper, collecting download data from infected devices and tapping existing user accounts to run commands. The malware also includes more anti-detection features that erase the artifacts of its exploits.
Allowing broad access to information in the cloud facilitates cooperation, but it "also makes it easier for one careless password to compromise the whole system," writes Larry Alton of LarryAlton.com. Alton warns against unsanctioned applications outside the purview of the IT department.
As more artificial intelligence is employed, cybersecurity threats "are likely to grow in proportion to a system's underlying code base," predicts Immuta CEO Matthew Carroll. Carroll explains how AI creates "an ever-expanding attack surface."
The process of Content Disarm and Reconstruction, used by government agencies, has begun to filter into the private sector, notes Glasswall Solutions CEO Danny Lopez. Files are free of threats through a four-step process: inspecting, cleaning, rebuilding and delivering.
Eight of 10 chief information security officers would be willing to pay off ransomware hackers, despite advice from the FBI to the contrary, finds a survey by Aimpoint Group, CISOs Connect and W2 Research. "The bottom line is that breach impact is complex, and every facet must be considered and factored into business continuity planning according to each organization's risk tolerance," the report states.
The Italian government arm that guards intellectual property rights and pays out royalties, known as SIAE, has reportedly been hacked. Researchers say the hack is the work of the Everest gang, which failed to collect on a ransomware demand and is now shopping the information about actors, authors and musicians for $500,000.
Cybersecurity recruiters NPower and CyberWarrior have been collectively awarded $2 million by the US Cybersecurity and Infrastructure Security Agency to develop workforce training across largely unexplored sectors, including military veterans, people of color and women.
Trucking companies are beginning to use telematics data delivered by vehicles. Azuga CEO Ananth Rani told a recent webinar, "Telematics will enable predictive models that prevent accidents, automate the maintenance schedules of vehicles, improve routing optimization further and so much more."
Taiwan Semiconductor Manufacturing Co. will turn over data requested by the US government in the midst of the worldwide shortages in crucial components, according to various media reports; the deadline for submitting the data is Nov. 8. The Liberty Times newspaper in Taiwan reports the foundry's wafer fabrication facility in Arizona is being delayed, although TSMC insists that normal progress is being made with the 12-inch wafer fab.
Owing to supply chain issues, the availability of specialty DRAMs and NOR flash memory devices will still fail to meet demand next year, industry sources say. Samsung Electronics and SK Hynix, the world's two largest vendors of memory chips, are said to be reducing their DRAM output and repurposing production capacity to CMOS image sensors, those sources note.
- Page 1