Reevaluate "low-risk" PHP unserialization vulnerabilities, researcher says

Microsoft disrupted Russian hacking campaign aimed at US midterm elections Email not displaying correctly? View it in your browser.

CSO Salted Hash Aug 22, 2018 Reevaluate "low-risk" PHP unserialization vulnerabilities, researcher says Over nearly a decade, PHP unserialization vulnerabilities have become a popular route for cyber-criminals to plant remote code execution or deliver other malware into systems. But new research, introduced at Black Hat this month, shows that malevolent hackers can introduce this vulnerability, even in environments that were previously considered low-risk for this attack. Read More ▶ Your Must-Read Stories • Microsoft disrupted Russian hacking campaign aimed at US midterm elections • Refresh your networking skills with this Cisco CCNA training suite • Why SMS banking is still a bad idea • Corporate pre-crime: The ethics of using AI to identify future insider threats • Mastering email security with DMARC, SPF and DKIM • Review: Monitoring IT, OT and IoT devices with ForeScout White Paper: Hitachi ID Systems, Inc. Securing Privileged Access with Hitachi ID Privileged Access Manager (PAM) Privileged accounts, like their name suggests, are accounts designed to provide broad access to systems and data. They are an integral part of every IT infrastructure and play a key role in a large variety of day-to-day operations. Read More ▶ Microsoft disrupted Russian hacking campaign aimed at US midterm elections Microsoft brings down the hammer on Russian hacking campaign aimed at US midterm elections. Read More ▶ DealPost Refresh your networking skills with this Cisco CCNA training suite Over 30 hours of digital content across 399 lectures, which can be viewed on your computer or mobile device. Read More ▶ Why SMS banking is still a bad idea Bank customers like the convenience of accessing data via text message, but security experts have concerns about financial textbots. Read More ▶ Corporate pre-crime: The ethics of using AI to identify future insider threats Remember "Minority Report"? Artificial intelligence can spot employee behavior that suggests a future risk. Here's how to use that data ethically and effectively. Read More ▶ Mastering email security with DMARC, SPF and DKIM The three main email security protocols complement one another, so implementing them all provides the best protection. That's easier said than done, but these tips can help. Read More ▶ Review: Monitoring IT, OT and IoT devices with ForeScout ForeScout is one of a very few programs that can help to track and manage operational technology and IoT devices alongside of information technology. Everything from lighting controllers to HVAC units can be discovered and managed. Read More ▶ White Paper: Bronze Drum Consulting How Powerful New Technologies are Powering a Real-Time Revolution in Capital Markets Discover how machine learning, informed by rich, streaming data, is helping business leaders transform financial services is this white paper from Bronze Drum Consulting. By leveraging cloud services, financial service firms now have the power to put real-time streaming data to work. Read More ▶ Editor's Picks 1. 3 reasons companies fail to assess the scope of a data breach 2. The 10 Windows group policy settings you need to get right 3. How to perform a risk assessment: Rethinking the process 4. Preparing for the day quantum computing cracks public-key cryptography: What to do now 5. 8 hot cyber security trends (and 4 going cold) 6. Top cyber security certifications: Who they're for, what they cost, and which you need 7. 24 best free security tools

You are currently subscribed to CSO Salted Hash as jonsan98@gmail.com. Unsubscribe from this newsletter | Manage your subscriptions | Subscribe | Privacy Policy Learn more about Copyright © 2018 CSO Online, 492 Old Connecticut Path, Framingham, MA 01701 Please do not reply to this message. To contact someone directly, send an email to newsletters@idg.com.