The founder and CEO of NS8, a cyber fraud prevention and protection company, has been charged with fraud just months after the firm raised $123 million in funding, the U.S. Justice Department and the Securities and Exchange Commission (SEC) announced on Thursday.The DoJ said Adam Rogas, 43, of Las Vegas, Nevada, was arrested and charged with securities frau

One click is all it takes for confidential information to land in the wrong hands. The good news is that there are plenty of ways to teach preventative cybersecurity to remote workers.Over the past few months, we've become very familiar with the many cybersecurity perils posed by a largely (or fully) remote workforce. It's clear that work-from-home (WFH) isn

Cybersecurity leaders need to prepare for the long-term picture as well as deal with current day-to-day issues, according to Toby Bussa, VP analyst at Gartner, speaking during the Gartner Security and Risk Virtual Summit.As we emerge from a decade of substantial change in the cybersecurity landscape, Bussa expects to see a similar evolution occur i

The CEO of a cyber-fraud prevention company has been arrested and charged with fraud.Adam Rogas is accused of using fraudulent financial data to obtain over $123m in financing for Las Vegas–based tech company NS8 and pocketing $17.5m of the cash for himself. The 43-year-old Las Vegas resident was arrested yesterday in the Distr

The US has indicted two Iranians in connection with the theft of hundreds of terabytes of sensitive data from computers in America, Europe, and the Middle East. Hooman Heidarian, aged 30, and Mehdi Farhadi, 34, were allegedly involved in a slew of coordinated hacks perpetrated to make money or for political reasons. Data stolen in the att

Researchers examine security incidents over the past several years that seemingly connect North Korea's Lazarus Group with Russian-speaking attackers.Analysis published today examines reports from years of security incidents to pinpoint links between Lazarus Group, historically tied to North Korea, and Russian-speaking cybercriminals.In a write-up of his fin

The U.S. House of Representatives this week passed the IoT Cybersecurity Improvement Act, a bill whose goal is to improve the security of IoT devices.First introduced in 2017 and reintroduced in 2019, the IoT Cybersecurity Improvement Act will now have to pass the Senate before it can be signed into law by the president.The bipartisan legislation is backed b

While the demand for cybersecurity talent rebounds, organizations will need to focus on cyber-enabled roles to fill immediate skills gaps. Leave it to a global pandemic to disrupt industries many of us have assumed to be stalwart. Companies fortunate enough not to traffic in hard goods are realizing they can survive (and cut significant costs) by moving to w

The importance of security culture can be seen now more than ever. Many of us work remotely; there are app concerns; and the lines between personal and business use of devices and networks are blurred, challenging our cyber resilience. Therefore, despite all the great tools, frameworks and protective measures in place, we need to ensure people are doin

An attempt to infect a Missouri county's website with malware has been foiled. Threat actors deployed Trojan horse malware in an attempt to gain access to the website of St. Louis County earlier this month. Staff in the IT department took down the county website on September 1 after detecting multiple attacks on the county's server. Re

RCE Security Advisoryhttps://www.rcesecurity.com1. ADVISORY INFORMATION=======================Product: Acronis Cyber BackupVendor URL: https://www.acronis.comType: Server-Side Request Forgery [CWE-918]Date found: 2020-07-30Date published: 2020-09-14CVSSv3 Score: 8.3 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L)CVE: CVE-

IntroductionIn today’s highly connected world, new cyberthreats and risks emerge seemingly every hour, around the clock. Whether it is from spearphishing, a distributed denial-of-service attack or a targeted piece of malware, connecting your organization’s systems and workstations to the internet always opens up the possibility of a cyberattack. Unfort

A joint cybersecurity advisory released on September 1st detailed technical methods for uncovering and responding to malicious activity including best practice mitigations and common missteps. A collaborative effort, this advisory (coded AA20-245A) is the product of research from the cybersecurity organizations of five nations. Those include the United State

A plea by a blockchain voting company for the US Supreme Court to consider good-faith security researchers a threat to cybersecurity has been opposed by industry leaders. The plea was put forward by the company Voatz in the form of an amicus brief submitted to the court in Nathan Van Buren v. United States on September 3.&n

The notion of zero trust in cybersecurity is a misunderstood term, according to Neil MacDonald, VP and distinguished analyst at Gartner. Speaking during the Gartner Security and Risk Virtual Summit, MacDonald noted that extending trust is in fact necessary for organizations to work efficiently.The main issue is too much “implicit trust” in existi