Black Hat 2019: Security Culture Is Everyone's Culture | 8 Head-Turning City Ransomware Attacks

[TechWeb]( Follow Dark Reading: [RSS]( August 08, 2019 LATEST SECURITY NEWS & COMMENTARY [Black Hat 2019: Security Culture Is Everyone's Culture]( In his Black Hat USA keynote, Square's Dino Dai Zovi discussed lessons learned throughout his cybersecurity career and why culture trumps strategy. [Boeing 787 On-Board Network Vulnerable to Remote Hacking, Researcher Says]( Boeing disputes IOActive findings ahead of security firm's Black Hat USA presentation. [New Speculative Execution Vulnerability Gives CISOs a New Reason to Lose Sleep]( The vulnerability, dubbed SWAPGS, is an undetectable threat to data security, similar in some respects to Spectre and Meltdown. [Ransomware Used in Multimillion-Dollar Attacks Gets More Automated]( The authors of MegaCortex appear to have traded security for convenience and speed, say researchers at Accenture iDefense. [When Perceived Cybersecurity Risk Outweighs Reality]( Teams need to manage perceived risks so they can focus on fighting the real fires. [Rethinking Website Spoofing Mitigation]( Deception technology is evolving rapidly, making it easier for organizations to turn the tables on their attackers. Here's how. [Security & the Infinite Capacity to Rationalize]( To improve the security posture of our organizations, we must open our eyes to rationalization and put an end to it with logic. Here's how. [MORE NEWS & COMMENTARY]( HOT TOPICS [How to Keep Your Web Servers Secure]( The good news is that Web servers have come a long way in terms of security. But to err is human, even for IT and security people. [Cisco Pays $8.6M in First False Claims Suit for Vulnerabilities in Security Product]( A security consultant reported vulnerabilities in Cisco's Video Surveillance Manager in 2009 - but the company ignored the issues and fired the consultant. [8 Free Tools to Be Showcased at Black Hat and DEF CON]( Expect a full slate of enterprise-class open source tools to take the spotlight when security researchers share their bounties with the community at large. [MORE]( EDITORS' CHOICE [8 Head-Turning Ransomware Attacks to Hit City Governments]( Hackers know vulnerable systems when they see them, and they also know this: Many government systems are decades old, running Windows 7 and even Windows XP. NEW FROM THE EDGE [Slow Your Roll Before Disclosing a Security Incident]( Transparency rules, but taking the right amount of time to figure out what happened will go a long way toward setting the record straight. Tech Resources - [Third-Party Cyber Risk Management: Getting to Know Your Vendor]( - [VPNs' Future: Less User Reliant, More Transparent, & Smarter]( - [Data Science & AI in the Fast Lane]( - [SANS Top New Attacks & Threat Report]( - [Darktrace Cloud Threat Report]( - [Are Your Security Controls Yesterday's News?]( - [Testing for Compliance Just Became Easier]( [ACCESS TECH LIBRARY NOW]( - [DDoS Resilience, Remediation & Recovery: Updating Your Strategy]( Are you ready for a DDoS attack on your network -- or on your service provider's network - or is it time to update your resilience, remediation and recovery plan? In this webinar, learn strategies that will make your business ... - [Container Security: How to Protect Your Production Environment from the Threats]( In this Dark Reading webinar, experts offer a comprehensive look at the security flaws and vulnerabilities inherent in many container environments and offer tips and recommendations on how you can detect and remediate those issues prior to deployment -- before ... [MORE WEBINARS]( FEATURED REPORTS - [[Malware Threats Survey] Do you have 10 mins to spare?]( Dark Reading needs your help with this 10-minute survey. Complete the survey and you can enter to win one of five $50 Amazon gift cards! - [State of the Cloud]( This research report will delve into public, private and hybrid cloud adoption trends, with a special focus on infrastructure as a service and its role in the enterprise. Find out the challenges organizations are experiencing, and the technologies and strategies ... [MORE REPORTS]( CURRENT ISSUE [Building and Managing an IT Security Operations Program]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Censys To Unveil Attack Surface Visibility Platform at Black Hat]( [Bugcrowd Announces Platform-Enabled Cybersecurity Assessments for Marketplaces]( [QOMPLX Launches Identity Assurance 2.1 For Active Directory Monitoring And Security]( [Capsule8 Adds Significant Funding from Intel Capital]( [MORE PRODUCTS & RELEASES]( Dark Reading Weekly -- Published By [InformationWeek]( UBM Tech 2 Penn Plaza, 15th Floor, New York, NY 10121 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:email@techwebnewsletters.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2019]( | [UBM Tech]( | [Privacy Statement]( | [Terms Of Service]( | [Contact Us](mailto:iwkbtnnewsletters@ubm.com)