↩ back to the box


Read on for the latest Help Net Security articles.
------------------------------------------------------------
https://us2.campaign-archive.com/?e=4f68c0accf&u=f76e9593a7d90f4024574218d&id=63ef273496


** Help Net Security daily news
------------------------------------------------------------

Whitepaper: Top 20 Cyber Attacks on ICS (http://bit.ly/20icsattacks)

This paper recommends using a standard set of Top 20 attacks as a methodology for communicating cyber-sabotage risk, with the Top 20 set representing attacks of varying levels of cyber and engineering sophistication, and with varying degrees of undesirable physical consequences

Read the whitepaper here (http://bit.ly/20icsattacks) .
------------------------------------------------------------




** One in five healthcare pros have experienced patient data breaches
Posted on Jan 12, 2018 02:00 pm
------------------------------------------------------------
According to a recent University of Phoenix College of Health Professions online survey of 504 registered nurses and administrative staff, only a quarter of registered nurses have seen changes in the way their companies handle data security and patient privacy over the past year, despite increased data breaches across all industries. The survey found that 20 percent of registered nurses (RNs) and 19 percent of administrative staff indicated that their facilities have experienced a breach … More → (https://www.helpnetsecurity.com/2018/01/12/patient-data-breaches/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/12/patient-data-breaches/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F12%2Fpatient-data-breaches%2F&text=One+in+five+healthcare+pros+have+experienced+patient+data+breaches&count=none https://us2.campaign-archive.com/?fblike=fblike-ac35c496&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F12%252Fpatient-data-breaches%252F%26title%3DOne%2520in%2520five%2520healthcare%2520pros%2520have%2520experie...&u=f76e9593a7d90f4024574218d&id=63ef273496




** Strong security simplifies compliance for French operators of vital industry
Posted on Jan 12, 2018 01:30 pm
------------------------------------------------------------
In 2014, France’s National Agency for the Security of Information Systems, or ANSSI, issued two detailed cybersecurity guidance documents for Industrial Control Systems: Cybersecurity for Industrial Control Systems – Classification Method and Key Measures; and Cybersecurity for Industrial Control Systems – Detailed Measures. This guidance was and is still today seen as the most comprehensive, clear, and sophisticated industrial control system (ICS) security best practice in the world. In 2016 and 2017, on the tails … More → (https://www.helpnetsecurity.com/2018/01/12/strong-security-simplifies-compliance/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/12/strong-security-simplifies-compliance/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F12%2Fstrong-security-simplifies-compliance%2F&text=Strong+security+simplifies+compliance+for+French+operators+of+vital+industry&count=none https://us2.campaign-archive.com/?fblike=fblike-3149fee6&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F12%252Fstrong-security-simplifies-compliance%252F%26title%3DStrong%2520security%2520simplifies%2520compliance%2520fo...&u=f76e9593a7d90f4024574218d&id=63ef273496




** Alleged Fruitfly macOS spyware author indicted
Posted on Jan 11, 2018 09:53 pm
------------------------------------------------------------
The mystery of the Fruitfly macOS malware has apparently been solved: a 28-year-old man from Ohio has been charged on Wednesday of allegedly creating and installing the malware on thousands of computers for more than 13 years! He allegedly used the access provided by the malware to covertly watch, listen to, and obtain personal data from unknowing victims, as well as produce child pornography. About Fruitfly The malware was first discovered and analyzed by Malwarebytes … More → (https://www.helpnetsecurity.com/2018/01/11/ohio-man-accused-of-creating-fruitfly-macos-spyware/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/11/ohio-man-accused-of-creating-fruitfly-macos-spyware/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F11%2Fohio-man-accused-of-creating-fruitfly-macos-spyware%2F&text=Alleged+Fruitfly+macOS+spyware+author+indicted&count=none https://us2.campaign-archive.com/?fblike=fblike-2591364b&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F11%252Fohio-man-accused-of-creating-fruitfly-macos-spyware%252F%26title%3DAlleged%2520Fruitfly%2520macOS%2520spyware%2520author%2520in...&u=f76e9593a7d90f4024574218d&id=63ef273496




** Researchers uncover major security vulnerabilities in ICS mobile applications
Posted on Jan 11, 2018 07:59 pm
------------------------------------------------------------
IOActive and Embedi researchers found 147 cybersecurity vulnerabilities in 34 mobile applications used in tandem with SCADA systems. Proof-of-concept Attack on Victim HMI Panel View According to the researchers, if the mobile application vulnerabilities identified are exploited, an attacker could disrupt an industrial process or compromise industrial network infrastructure, or cause a SCADA operator to unintentionally perform a harmful action on the system. The 34 mobile applications tested were randomly selected from the Google Play … More → (https://www.helpnetsecurity.com/2018/01/11/security-vulnerabilities-ics-mobile-applications/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/11/security-vulnerabilities-ics-mobile-applications/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F11%2Fsecurity-vulnerabilities-ics-mobile-applications%2F&text=Researchers+uncover+major+security+vulnerabilities+in+ICS+mobile+applications&count=none https://us2.campaign-archive.com/?fblike=fblike-f792279e&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F11%252Fsecurity-vulnerabilities-ics-mobile-applications%252F%26title%3DResearchers%2520uncover%2520major%2520security%2520vulne...&u=f76e9593a7d90f4024574218d&id=63ef273496




** WhatsApp, Signal group chats not as secure as users might believe
Posted on Jan 11, 2018 07:34 pm
------------------------------------------------------------
Researchers have discovered flaws in the way WhatsApp, Signal, and Threema messaging apps handle secure (encrypted) group communication, which could result in unauthorized users getting added to closed groups and monitoring future conversations within them. The problem with WhatsApp Paul Rösler, Christian Mainka, and Jörg Schwenk analyzed the three widely used protocols and their implementations, and found that if someone – e.g., nation-state backed hackers (illegally), or law enforcement or intelligence agencies (legally) – gains … More → (https://www.helpnetsecurity.com/2018/01/11/whatsapp-signal-group-chats/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/11/whatsapp-signal-group-chats/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F11%2Fwhatsapp-signal-group-chats%2F&text=WhatsApp%2C+Signal+group+chats+not+as+secure+as+users+might+believe&count=none https://us2.campaign-archive.com/?fblike=fblike-dae87e84&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F11%252Fwhatsapp-signal-group-chats%252F%26title%3DWhatsApp%252C%2520Signal%2520group%2520chats%2520not%2520as%2520secu...&u=f76e9593a7d90f4024574218d&id=63ef273496




** Infosec expert viewpoint: Connected car security
Posted on Jan 11, 2018 04:30 pm
------------------------------------------------------------
A recent Irdeto Global Connected Car Survey found that of the consumers who plan on purchasing a vehicle in the future, 53% are likely to research the car’s ability to protect itself from a cyberattack. The desire to consider cybersecurity when purchasing a car was most prevalent with younger generations aged 25-34, with 62% stating they would conduct this research. Here’s what infosec experts think about the security of connected cars, what manufacturers should do … More → (https://www.helpnetsecurity.com/2018/01/11/infosec-expert-viewpoint-connected-car-security/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/11/infosec-expert-viewpoint-connected-car-security/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F11%2Finfosec-expert-viewpoint-connected-car-security%2F&text=Infosec+expert+viewpoint%3A+Connected+car+security&count=none https://us2.campaign-archive.com/?fblike=fblike-d4c2269f&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F11%252Finfosec-expert-viewpoint-connected-car-security%252F%26title%3DInfosec%2520expert%2520viewpoint%253A%2520Connected%2520car%2520...&u=f76e9593a7d90f4024574218d&id=63ef273496




** Security, management and compliance challenges are impacting cloud benefits
Posted on Jan 11, 2018 02:00 pm
------------------------------------------------------------
Management and compliance challenges are impacting the benefits businesses are receiving from using the cloud as their infrastructures become more complex, according to research from WinMagic. 39% reported their infrastructure was more complex since using the cloud, and 53% spend more time on management tasks than they have done previously. Falling short on securing the cloud 98% of the 1,029 IT decision maker respondents reported using the cloud, with an average 50% of their infrastructure … More → (https://www.helpnetsecurity.com/2018/01/11/impacting-cloud-benefits/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/11/impacting-cloud-benefits/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F11%2Fimpacting-cloud-benefits%2F&text=Security%2C+management+and+compliance+challenges+are+impacting+cloud+benefits&count=none https://us2.campaign-archive.com/?fblike=fblike-c76aa47f&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F11%252Fimpacting-cloud-benefits%252F%26title%3DSecurity%252C%2520management%2520and%2520compliance%2520chal...&u=f76e9593a7d90f4024574218d&id=63ef273496




** Security concerns remain a top challenge for digital transformation
Posted on Jan 11, 2018 01:30 pm
------------------------------------------------------------
In Frost & Sullivan’s recent survey seeking end-user perspectives on navigating digital transformation globally, 32 percent of IT professionals cited security concerns as their top challenge. This includes cybercrime and espionage, malware, and cloud services. Aligning IT with business strategy and/or lacking a clear IT strategy were also top concerns. Interestingly, 23 per cent of respondents selected improving digital presence as a major challenge, with skills shortage a bigger issue in Asia Pacific and North … More → (https://www.helpnetsecurity.com/2018/01/11/security-concerns-digital-transformation/)
Read in browser » (https://www.helpnetsecurity.com/2018/01/11/security-concerns-digital-transformation/)
http://twitter.com/share?url=https%3A%2F%2Fwww.helpnetsecurity.com%2F2018%2F01%2F11%2Fsecurity-concerns-digital-transformation%2F&text=Security+concerns+remain+a+top+challenge+for+digital+transformation&count=none https://us2.campaign-archive.com/?fblike=fblike-6ba4a51f&e=[UNIQID]&socialproxy=https%3A%2F%2Fus2.campaign-archive.com%2Fsocial-proxy%2Ffacebook-like%3Fu%3Df76e9593a7d90f4024574218d%26id%3D63ef273496%26url%3Dhttps%253A%252F%252Fwww.helpnetsecurity.com%252F2018%252F01%252F11%252Fsecurity-concerns-digital-transformation%252F%26title%3DSecurity%2520concerns%2520remain%2520a%2520top%2520challenge...&u=f76e9593a7d90f4024574218d&id=63ef273496




** More to read:
------------------------------------------------------------
** Spectre updates will slow down Windows servers and PCs running older versions of the OS (https://www.helpnetsecurity.com/2018/01/10/spectre-updates-slow-down-windows/)
** Microsoft plugs 56 vulns, including Office flaw exploited in attacks (https://www.helpnetsecurity.com/2018/01/10/january-2018-patch-tuesday/
. (http://link.helpnetsecurity.com/hns/daily/)
Follow on Twitter (http://twitter.com/helpnetsecurity)
Forward to a Friend (http://us2.forward-to-friend.com/forward?u=f76e9593a7d90f4024574218d&id=63ef273496&e=4f68c0accf)
Contents:
* One in five healthcare pros have experienced patient data breaches
* Strong security simplifies compliance for French operators of vital industry
* Alleged Fruitfly macOS spyware author indicted
* Researchers uncover major security vulnerabilities in ICS mobile applications
* WhatsApp, Signal group chats not as secure as users might believe
* Infosec expert viewpoint: Connected car security
* Security, management and compliance challenges are impacting cloud benefits
* Security concerns remain a top challenge for digital transformation


============================================================
** follow on Twitter (Twitter Account not yet Authorized)
| ** forward to a friend (http://us2.forward-to-friend.com/forward?u=f76e9593a7d90f4024574218d&id=63ef273496&e=4f68c0accf)

Copyright © 2018 Help Net Security, All rights reserved.
You are receiving Help Net Security daily security news because you opted in at our web site located on www.net-security.org.

Our mailing address is:
Help Net Security
Jurjenici 43
Kastav 51215
Croatia

** unsubscribe from this list (https://net-security.us2.list-manage.com/unsubscribe?u=f76e9593a7d90f4024574218d&id=520ac2f639&e=4f68c0accf&c=63ef273496)
| ** update subscription preferences (https://net-security.us2.list-manage.com/profile?u=f76e9593a7d90f4024574218d&id=520ac2f639&e=4f68c0accf)
| ** view email in browser (https://us2.campaign-archive.com/?e=4f68c0accf&u=f76e9593a7d90f4024574218d&id=63ef273496)