BU-CERT – Bournemouth University Computer Emergency Response Team

Social engineering: The human component of cyberattacks

Posted on 14 July 2020

From itproportal.com

Nowadays, most people are aware of the risk posed by malware – it is a broad attack vector that most organisations are used to dealing with in some capacity. However, while this may have caused such techniques as old-fashioned social engineering to fall to the back of the corporate mind, they still pose considerable risk for the simple reason they still work. Especially with the globe in the grip of coronavirus, it is easier for bad actors to play on emotions, exploiting people’s fears in particular, to encourage targets to click on malicious links.

Drupal drops first big upgrade in five years and looks forward by looking backwards

Posted on 13 July 2020

From theregister.com

Open-source CMS software Drupal has unveiled its first major update in five years by launching a new version 9.0.

The biggest update is backwards-compatibility from version 8.0: the project’s developers have styled the upgrade as not much more complex than adopting a point release.

“If you’ve kept your Drupal 8 site up to date, and have experience with updating your site to the latest minor version (e.g: 8.9.0) then you know everything you need in order to successfully upgrade to Drupal 9,” says the release FAQ.

Biometrics: Preparing for a Passwordless Future

Posted on 13 July 2020

From securityboulevard.com

In today’s digital world, people can accomplish anything they need to online, from banking to shopping. Yet, the popular authentication for this online activity—passwords and PINs—is putting countless Americans at risk for online fraud. Gartner predicted that by 2020, 75% of omni-channel customer-facing organizations will endure a targeted, cross-channel fraud attack.

Companies need to not only protect their business against the cost of fraud and damaged reputation but also take responsibility for better safeguarding the personal information of their customers, employees and stakeholders.

Records of 45 million+ travelers to Thailand and Malaysia surfaced in the darkweb

Posted on 13 July 2020

From securityaffairs.co

Experts from threat intelligence firm have discovered the availability on the darkweb of records of over 45 million travelers to Thailand and Malaysia from multiple countries.

Higher fees from Facebook for vulnerabilities in Hermes

Posted on 13 July 2020

From en.secnews.gr

Hermes is an open source JavaScript engine that was released by Facebook a year ago and is used by the company’s React native applications for Android and other software, including Spark AR, an augmented reality platform used to create effects in Facebook, Instagram and even the company’s smart screens.

Attack Worries Increase as Pandemic Continues

Posted on 13 July 2020

From securityboulevard.com

Tech pitches in to fight COVID-19 pandemic | Computerworld

Security Boulevard recently wrote about a Deloitte survey of executives decision makers, a survey that found 69% of these executives expect the number and size of cyber events targeting their organizations to increase in the coming year. The survey polled 880 C-suite executives about their concerns business resiliency during the current pandemic.

The rollout of 5G will dawn a new era for edge data centres – but there’s work to do yet

Posted on 13 July 2020

From itproportal.com

The arrival of 5G has dawned a new era in connectivity and data sharing, and edge data centres will have a crucial role to play in its full rollout. Gartner’s recent report highlights this, as it predicts that by 2025 edge computing will account for 75 per cent of enterprise-generated data. The first major impact of the introduction of 5G will be the movement of massive amounts of data through faster and virtualised networking, as well as wireless infrastructure. Data centres will be at the heart of enabling 5G in all applications for the foreseeable future, and 5G itself will both drive new edge deployments, and enable new edge use cases.