Doug Olenick SC Media

Doug Olenick

Online Editor

Most recent articles by Doug Olenick

Critical vulnerability issued for Cisco switches

By

Cisco has revealed a critical-rated vulnerability in its small business switches software that if exploited can allow a remote attacker to bypass the device’s user authentication mechanism. The vulnerability in version 1.4.9.04 of the Cisco software exists because under specific circumstances, the affected software enables a privileged user account without notifying administrators of the system.…

New Magecart group using new tactics hits French ad firm

By

Researchers at Trend Micro and RiskIQ have pulled the curtain away from a new Magecart sub-group that managed to insert card skimmer code into more than 200 companies by using a third-party vendor as an unwitting accomplice. The new malicious team, tagged Magecart Group 12, managed to inject their malware into the JavaScript library of…

Drupal patches two critical security issues

By

Drupal released two critical security updates that if exploited could allow an attacker to take control of an affected system. The patches are for Drupal versions 7.x, 8.5.x, and 8.6.x and can be rectified by updating to Drupal 7.62, 8.5.9 or 8.6.6. The first critical vulnerability, CVE-2018-1000888, and has to do with a third-party component…

West African banks targeted in multi-wave attack

By

In a somewhat unusual step cybercriminals are targeting banks in several western African nations using off the shelf malware to gain entry, gain persistence and exfiltrate data along with “living off the land” tactics. Symantec said the attacks have been taking place since mid-2017 hitting financial institutions in Cameroon, Congo (DR), Ghana, Equatorial Guinea and…

Ukrainian nationals charged with hacking SEC docs in $4.1 million scam

Ukrainian nationals charged with hacking SEC docs in $4.1 million scam

By

The Department of Justice has charged two Ukrainian nationals for hacking into the Security and Exchange Commission’s (SEC) computer system to steal confidential corporate information and sell it to the highest bidder or to make trades. Artem Radchenko and Oleksandr Ieremenko were charged in the United States Court District of New Jersey with securities fraud…

How to Stop the Insider Threat from Switching Off Your Security Lights

By Armaan Mahbod, manager, insider threat analyst team, Dtex Systems You’ve spent millions on security. You have the latest and smartest firewalls installed. You have deployed cutting-edge AI-powered antivirus solutions. Phishing emails are stopped cold by your expensive anti-spam and email security gateway solutions, some of the time at least. You are using a CASB…

Next post in Opinion