Google and the Linux Foundation this week announced the prioritizing of funds to allow long-time Linux kernel maintainers Gustavo Silva and Nathan Chancellor to focus on improving the security of the platform.With this funding, Silva and Chancellor will dedicate their work to improving kernel security, as well as to associated initiatives, so that the open s

Millions of COVID-19 test reports were found to be publicly accessible due to flawed online system implementation.The leak, comprising over 8 million COVID-19 test results, has been attributed to the Health and Welfare Department of West Bengal, India.Researcher spots millions of COVID test results leaking onlineLast month, BleepingComputer ex

According to Risk Based Security’s 2020 Q3 report, around 36 billion records were compromised between January and September 2020. While this result is quite staggering, it also sends a clear message of the need for effective database security measures.Database security measures are a bit different from website security practices. The former involve physical

In response to a security breach that exposed personal information from around 1.6 million unemployment claims filed last year, the Washington Senate has unanimously passed a measure that creates a state Office of Cybersecurity.The measure, passed by the chamber on Wednesday, creates the new office within the Office of the Chief Information Officer. The bill

Article by Beau PetersWhen the pandemic struck, online bad actors took it as an opportunity to double-down on their attacks through ransomware, malware, and social engineering. Newly remote workers and remotely connected workplaces had to adapt rapidly to a greater digital threat as well as a public health crisis.Now, cybersecurity may just be the most

Cisco has addressed a maximum severity authentication bypass vulnerability found in the API endpoint of the Cisco ACI Multi-Site Orchestrator (MSO) installed on the Application Services Engine.Cisco ACI MSO is an intersite network and policy orchestration solution that helps admins monitor the health of their organizations' interconnected sites across multip

Software development platform GitHub announced on Wednesday that it has hired Mike Hanley as its new Chief Security Officer (CSO).Hanley joins GitHub from Cisco, where he served as Chief Information Security Officer (CISO) for less than a year. He arrived at Cisco via its $2.3 billion acquisition of Duo Security in 2018.“As the largest global network of deve

Google will fund two full-time Linux kernel developers to maintain and improve Linux security in the long term.Google and the Linux Foundation have announced plans to fund two full-time maintainers to exclusively focus on Linux kernel security development. Gustavo Silva and Nathan Chancellor, both active Linux contributors, will work to strengthen kernel sec

Image: UP9 (CC BY-SA 3.0)The National Security and Defense Council of Ukraine (NSDC) has linked Russian-backed hackers to attempts to breach state agencies after compromising the government's document management system.The System of Electronic Interaction of Executive Bodies (SEI EB) hacked in this attack is used by most public authorities to

CD Projekt Red announced today that they are delaying the anticipated Cyberpunk 2077 Patch 1.2 to the second half of March 2021 due to their recent cyberattack.Patch 1.2 is expected to be a major release containing many bug fixes and performance improvements for known issues that players are experiencing.Today, CDPR announced that due to the recent cyberatta

Together with the Linux Foundation, Google announced today that they would fund two Linux kernel developers' efforts as full-time maintainers exclusively focused on improving Linux security."While there are thousands of Linux kernel developers, all of whom take security into consideration as the due course of their work, this contribution from Google to unde

Learn About the Benefits of Security Ratings - RegisterLeveraging security ratings as part of your cyber risk management program provides metrics that help you cut through the complexity to understand where the risk lies in your digital and vendor ecosystem.Join SecurityWeek and BitSight for a live webinar on Wednesday, February 24th at 1PM ET to learn how y

The scope and danger of unsecured, Internet-connected hardware will only continue to deepen. Rapid changes in how Internet of Things (IoT) devices around us interact with each other have created a landscape defined by unprecedented security vulnerabilities. There are three main security concerns with them and some possible fixes.In December 2020, Forescout i

Europe’s leading information security event Infosecurity Europe, originally scheduled to take place June 8-10 2021 at London Olympia, will be postponed until a later date in the year, organizer Reed Exhibitions has announced. This is due to the current situation regarding the COVID-19 pandemic.A statement from Reed Exhibitions outlined: &ldqu

A heavily downloaded Node.js library has a high severity command injection vulnerability revealed this month.Tracked as CVE-2021-21315, the bug impacts the "systeminformation" npm component which gets about 800,000 weekly downloads and has scored close to 34 million downloads to date since its inception.OS Command Injection bug squashedPut sim