BayPay Members Blogs

This additional resource is sponsored by The BayPay Forum.

Facebook Launching App That Pays Users for Data on App Usage

view counter
Facebook on Tuesday launched an app that will pay users to share information with the social media giant about which apps they’re using. The company previously rolled out two similar apps...
Continue reading
  0 Comments
0 Comments

Radiohead Defies Hackers, Releases Trove of Stolen Music

view counter
Alternative rock legends Radiohead on Tuesday released an 18-hour trove of private recordings from their 1997 album "OK Computer" after getting hacked by someone seeking a ransom of $150,000 for the...
Continue reading
  0 Comments
0 Comments

New RAMBleed Attack Allows Access to Sensitive Data in Memory

RAMBleed
view counter
New DRAM Side-Channel Attack ‘RAMBleed’ Allows Hackers to Steal Sensitive Data A team of researchers representing several universities has disclosed the details of RAMBleed, a new type of side-channel attack on...
Continue reading
  0 Comments
0 Comments

Microsegmentation Firm Edgewise Networks Raises $11 Million

Edgewise Networks Logo
view counter
Microsegmentation provider Edgewise Networks today announced that it has secured $11 million in new funding. The company has raised $18 million to date. Founded in 2016, Edgewise is focused on protecting...
Continue reading
  0 Comments
0 Comments

New Version of ShellTea Backdoor Used by FIN8 Hacking Group

view counter
Researchers have detected a new campaign against the hotel-entertainment industry employing the first documented use of the ShellTea/PunchBuggy backdoor since 2017. It is also thought to be the first observed attack...
Continue reading
  0 Comments
0 Comments

FBI Warns of HTTPS Abuse in Phishing Campaigns

view counter
Malicious actors are abusing users’ trust in the HTTPS protocol to launch phishing campaigns, the Federal Bureau of Investigation (FBI) warns in a recent alert.  For years, tech companies have been...
Continue reading
  0 Comments
0 Comments

Microsoft Pushing for a Passwordless Windows 10

view counter
Microsoft wants to make its Windows platform passwordless and the latest Windows 10 release marks one step closer to that goal.  Passwords have been long said to represent a security issue...
Continue reading
  0 Comments
0 Comments

Adobe Patches Code Execution Flaws in Flash, ColdFusion, Campaign

view counter
Adobe’s June 2019 Patch Tuesday updates address several critical arbitrary code execution vulnerabilities affecting the company’s Flash Player, ColdFusion and Campaign products. In the ColdFusion web application development platform, which has...
Continue reading
  0 Comments
0 Comments

The Symbiosis Between Public Cloud and MSSPs

view counter
To the surprise of many, public cloud appears to be driving a renaissance in adoption and advancement of managed security service providers (MSSP). For several years, the major public cloud providers...
Continue reading
  0 Comments
0 Comments

Tool Links Internet-Exposed ICS to Google Street View

Kamerka finds exposed ICS
view counter
An open source tool named Kamerka allows users to generate a map of Internet-exposed industrial control systems (ICS) in a specified country and link results to Google Street View. Launched in...
Continue reading
  0 Comments
0 Comments

Artificial Intelligence Threat Detection Firm Vectra Raises $100 Million

Vectra AI Logo
view counter
San Jose, Calif-based network threat detection and response firm Vectra has closed a $100 million Series E funding round led by TCV and supported by existing investors. This brings the total...
Continue reading
  0 Comments
0 Comments

Critical Vulnerability Exposes Oil Tank Monitoring Devices to Attacks

Vulnerability found in Tecson oil tank monitoring device
view counter
A critical vulnerability has been found in oil tank monitoring devices from Tecson/GOK, but the vendor has released a patch and points out that there are less than 1,000 devices that...
Continue reading
  0 Comments
0 Comments

Huawei Denies Being Bound by Chinese Spy Laws

view counter
Huawei's cyber security chief told the UK parliament Monday that the Chinese telecoms giant has been advised it was under no obligation to spy for Beijing if so asked by the...
Continue reading
  0 Comments
0 Comments

Customs Says Hack Exposed Traveler, License Plate Images

view counter
Customs and Border Protection said Monday that photos of travelers and license plates collected at a single U.S. border point have been exposed in a malicious cyberattack in what a leading...
Continue reading
  0 Comments
0 Comments

"MuddyWater" Cyberspies Update PowerShell Backdoor

view counter
The cyber-espionage group known as MuddyWater has used an updated multi-stage PowerShell backdoor in recent campaigns, Trend Micro’s security researchers report. First detailed in 2017, the threat actor has been highly...
Continue reading
  0 Comments
0 Comments

Critical Oracle WebLogic Vulnerability Exploited in Attacks

view counter
A recently patched vulnerability in Oracle WebLogic is being exploited in attacks aimed at installing crypto-miners on vulnerable machines, Trend Micro reports. Tracked as CVE-2019-2725 and rated Critical severity, the vulnerability was patched...
Continue reading
  0 Comments
0 Comments

Fighting Fraud With Threat Intelligence: Debunking Common Misconceptions

view counter
The Composition of a Fraud Team or Function is Often Overlooked in Threat Intelligence Market Threat intelligence has quickly become a must-have for fraud teams. But similar to the market for...
Continue reading
  0 Comments
0 Comments

GoldBrute Botnet Brute-Force Attacking RDP Servers

view counter
A new piece of malware is targeting Windows severs with the remote desktop protocol (RDP) exposed to the Internet with the intent to ensnare them into a massive botnet, SANS ISC...
Continue reading
  0 Comments
0 Comments

The Dark Net, a Major Threat but Also a Resource

view counter
Criminal use of, and threats from, the dark net are growing. At the same time, criminals are going darker through direct end-to-end encryption for direct communication with service buyers and potential...
Continue reading
  0 Comments
0 Comments

SWF June 2019 Insight Piece, "African Perspectives on Space Resources Utilization," published in PositionIT

On 23 and 24 May 2019, a group of space agency, space industry, and academic experts from across Africa, as well as from the United States, Luxembourg, and Japan gathered in...
Continue reading
  0 Comments
0 Comments