Several years back, industry analyst firm Gartner began circulating the idea that almost every major enterprise and government agency was either compromised or would be compromised at some point in time. This week, when we woke up to the news that FireEye and SolarWinds had joined the ranks of the hacked, we learned once again that Gartner was right. Even companies with advanced security expertise and expansive resources can’t escape this inevitable fact of digital…

An employee at a tech company based in Virginia has been sent to prison for stealing personally identifiable information (PII) from Healthcare.gov customers and exploiting it for profit.  Colbi Trent Defiore accessed data belonging to more than 8,000 individuals without authorization while working at a contact center in Bogalusa, Louisiana. The 27-year-old then stole the data and used it fraudulently for his own personal financial gain, applying for credit cards and personal loans.  At the…

A heatmap shows PHP has the most flaws followed by C++, then Java, .Net, JavaScript, and Python in Veracode’s annual security report. Getty Images/iStockphoto Veracode has released the 11th volume of its annual State of Software Security report, and its findings reveal that flawed applications are the norm, open-source libraries are increasingly untrustworthy, and it’s taking a long time to patch problems. The report found a full 76% of apps contained flaws, and 24% of…

Police in India have arrested 54 people in a raid on an illegal call center that targeted foreign nationals with fraud scams. The Delhi cybercrime unit launched an investigation after receiving intelligence that a large-scale fraud operation was being run from a location in Moti Nagar, New Delhi.  Police were informed that a team of scammers were calling up targets in America and other countries and conning them into transferring money to criminals via Bitcoin wallets and…

Every day, new apps are developed to solve problems and create efficiency in individuals’ lives.  Employees are continually experimenting with new apps to enhance productivity and simplify complex matters. When in a pinch, using DropBox to share large files or an online PDF editor for quick modifications are commonalities among employees. However, these apps, although useful, may not be sanctioned or observable by an IT department. The rapid adoption of this process, while bringing the benefit of increased productivity and agility, also raises the ‘shadow IT problem’ where IT has little to no visibility into…

We are happy to announce the Anomali Quarterly Release for December 2020. For our product and engineering teams to deliver this latest set of features and enhancements, they worked closely with our customers with a particular eye to further improving the speed of threat intelligence operations. As organizations mature in their threat intelligence programs and seek to leverage ever-larger quantities of threat intelligence inputs and security telemetry data, the need for capabilities that enhance the…