BayPay Members Blogs

This additional resource is sponsored by The BayPay Forum.

NVIDIA Patches Serious Flaw in GeForce Experience Software

NVIDIA patches vulnerability in GeForce Experience software
view counter
A security update released recently by NVIDIA for its GeForce Experience software patches a potentially serious vulnerability that could lead to arbitrary code execution, a denial-of-service (DoS) condition, or privilege escalation....
Continue reading
  0 Comments
0 Comments

Nearly Half of ICS Devices Protected by Kaspersky Targeted in 2018

ICS attack data from Kaspersky
view counter
Nearly half of the industrial control system (ICS) computers protected by Kaspersky Lab were targeted by malware and other threats in 2018, according to the company’s latest industrial threat landscape report....
Continue reading
  0 Comments
0 Comments

North Korea-Linked Hackers Target macOS Users

view counter
New Lazarus Operation Targets Windows, macOS Systems The North Korea-linked Lazarus group has been leveraging PowerShell to target both Windows and macOS machines as part of an attack campaign that has...
Continue reading
  0 Comments
0 Comments

How Stumbling Onto Great Findings Can Improve Your Security Program

view counter
We all have our favorite places, whether they be restaurants, stores, parks, museums, or something else entirely.  One question I sometimes ask myself is how I originally learned of a particular...
Continue reading
  0 Comments
0 Comments

Hackers Are Loving PowerShell, Study Finds

view counter
Threat Actors Prefer PowerShell over Other ATT&CK Techniques, Report Shows PowerShell is by far the most prevalent MITRE ATT&CK technique, being detected twice as often as the next most common technique,...
Continue reading
  0 Comments
0 Comments

Iran-Linked Cyberspy Group APT33 Continues Attacks on Saudi Arabia, U.S.

APT33 targets
view counter
An Iran-linked cyberespionage group tracked as Elfin and APT33 continues targeting organizations in Saudi Arabia and the United States, Symantec reported on Wednesday. Experts believe APT33 has been active since as...
Continue reading
  0 Comments
0 Comments

ASUS Patches Hijacked System Update Utility

view counter
ASUS says it has released a fix for the Live Update utility that threat actors abused in Operation ShadowHammer supply chain attack to deliver malware to hundreds of users.  Discovered by...
Continue reading
  0 Comments
0 Comments

EU Presents Plan for Safe 5G Amid Huawei Suspicions

view counter
The European Commission on Tuesday presented its plan to ensure the secure introduction of 5G telecoms networks, with suspicions hanging over Chinese giant Huawei. The United States has accused the firm...
Continue reading
  0 Comments
0 Comments

Brian Weeden Quoted by SpaceNews on Role of Commercial Space in Influencing ASAT Testing

SAN FRANCISCO – In the wake of the March 27 Indian anti-satellite test , Brian Weeden of the Secure World Foundation suggested companies consider boycotting India’s Polar Satellite Launch Vehicle (PSLV)....
Continue reading
  0 Comments
0 Comments

Brian Weeden Quoted by NPR on the Potential Impact of Indian ASAT Test


Experts believe the target of Wednesday's anti-satellite test was India's Microsat-R, which is shown here launching in January. Arun Sankar/AFP/Getty Images toggle caption Arun Sankar/AFP/Getty Images Experts believe the target of...
Continue reading
  0 Comments
0 Comments

AZORult Variant Can Establish RDP Connections

view counter
A recently observed C++ version of the AZORult data stealer includes the ability to establish a remote desktop connection compromised devices, Kaspersky Lab’s security researchers have discovered.  First observed in 2016...
Continue reading
  0 Comments
0 Comments

Norsk Hydro May Have Lost $40M in First Week After Cyberattack

view counter
Norwegian aluminum giant Norsk Hydro estimates that it may have lost more than $40 million in the first week following the ransomware attack that disrupted its operations. In an update shared...
Continue reading
  0 Comments
0 Comments

Apple Patches Vulnerabilities in iOS, macOS, Safari

view counter
Apple this week released new security updates for iOS, macOS, tvOS, Safari, and iCloud and iTunes for Windows, addressing tens of vulnerabilities in these products.  WebKit was the most impacted component,...
Continue reading
  0 Comments
0 Comments

The Consumerization of Industrial Cyber Security

view counter
Just as internet security was a relative unknown concern 20 years ago, public awareness of  threats to the electric grid, water supplies, etc. is mounting To the average person, industrial cyber...
Continue reading
  0 Comments
0 Comments

Cyber Risk Assessment Firm Sayata Labs Emerges From Stealth

Sayata Labs
view counter
Sayata Labs, an Israel-based company that provides risk assessment solutions for the cyber insurance industry, on Tuesday announced that it emerged from stealth mode with $6.5 million in seed funding. Sayata...
Continue reading
  0 Comments
0 Comments

Facebook Blocks More Accounts Over Influence Campaigns

view counter
Facebook said Tuesday it shut down more than 2,600 fake accounts linked to Iran, Russia, Macedonia and Kosovo and aiming to influence political sentiment in various parts of the world. It...
Continue reading
  0 Comments
0 Comments

Are We Beyond Peak Buzzword?

view counter
It’s Refreshing to See the Industry Hyping Security Concepts That Actually Work Every year at the RSA Conference, industry practitioners are treated to a never-ending set of marketing buzzwords. Peppered throughout...
Continue reading
  0 Comments
0 Comments

New Settings Help Hackers Test Facebook Mobile Apps

Facebook Whitehat Settings
view counter
Facebook last week announced that it introduced new settings designed to make it easier for white hat hackers to test the security of its mobile applications. The social media giant’s mobile...
Continue reading
  0 Comments
0 Comments

LockerGoga Ransomware Neutralized by Shortcut Files

LockerGoga ransom note
view counter
At least some variants of the LockerGoga ransomware, a piece of malware involved in several recent high profile attacks, do not encrypt files on a compromised device if a certain type...
Continue reading
  0 Comments
0 Comments

Models for Industry and Government Cooperation in Space Exploration Policy Discussed at UNOOSA Workshop in Jordan


  SWF Director of Private Sector Programs Ian Christensen gave a presentation entitled Civil Society Participation in Space Exploration Policy: An NGO's Experience With the Hague International Space Resources Governance Working Group at...
Continue reading
  0 Comments
0 Comments