Blog

A Serial Tech Investment Scammer Takes Up Coding?

John Clifton Davies, a 60-year-old con man from the United Kingdom who fled the country in 2015 before being sentenced to 12 years in prison for fraud, has enjoyed a successful life abroad swindling technology startups by pretending to be a billionaire investor. Davies’ newest invention appears to be “CodesToYou,” which purports to be a “full cycle software development company” based in the U.K.
http://news.poseidon-us.com/SlwtV8

Malware and machine learning: A match made in hell

We’ve been developing machine learning-based cybersecurity systems for many years and began developing automation for analysis in our labs in 2005. These early automation projects have since evolved into full-blown machine-learning frameworks. Since then, we’ve been waiting for our enemies to make the same move, and after 18 years, the wait is over – malware with artificial intelligence has arrived. Defenders have been able to automate their work for some time, enabling excellent detection, analysis … More → The post Malware and machine learning: A match made in hell appeared first on Help Net Security.
http://news.poseidon-us.com/Slvqsz

5 strategies to manage cybersecurity risks in mergers and acquisitions

Mergers and acquisitions (M&A) have the potential to introduce significant cybersecurity risks for organizations. M&A teams are generally limited in size and focused on financials and business operations, with IT and cybersecurity taking a back seat early in the process, according to Doug Saylors, partner and co-lead of cybersecurity with global technology research and advisory firm ISG.  “Assumptions about connecting networks, ‘rationalizing’ IT and cybersecurity platforms and staff are generally made with limited knowledge of the actual functions and work performed in each organization,” Saylor says. A company merging, being acquired, or undergoing any other M&A activity must be able to evaluate security requirements that could affect the business strategy and risks of the future entity, according to a report on cybersecurity in the M&A and due diligence process from Gartner. “This results in an understanding of the state of security in the acquired company (to the extent possible pre-deal) to ensure that there are no rude shocks and in a plan for how to address the integration aspect safely and securely,” the report noted. To read this article in full, please click here
http://news.poseidon-us.com/Slvn0v

Can a solid be a superfluid? Engineering a novel supersolid state from layered 2D materials

Physicists predict that layered electronic 2D semiconductors can host a curious quantum phase of matter called the supersolid. This counterintuitive quantum material simultaneously forms a rigid crystal, and yet at the same time allows particles to flow without friction, with all the particles belong to the same single quantum state.
http://news.poseidon-us.com/SltzCZ

Magnon-based computation could signal computing paradigm shift

Thanks to a breakthrough in the field of magnonics, researchers have sent and stored data using charge-free magnetic waves, rather than traditional electron flows. The discovery could solve the dilemma of energy-hungry computing technology in the age of big data.
http://news.poseidon-us.com/SlttmS

Week in review: 3CX supply chain attack, ChatGPT data leak

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Visa fraud expert outlines the many faces of payment ecosystem fraud In this Help Net Security interview, Michael Jabbara, the VP and Global Head of Fraud Services at Visa, delves into digital skimming attacks, highlighting their common causes, and provides insights into what measures merchants can take to prevent them. Exchange Online will soon start blocking emails from old, vulnerable … More → The post Week in review: 3CX supply chain attack, ChatGPT data leak appeared first on Help Net Security.
http://news.poseidon-us.com/Slt77C

Update: oledump & MSI Files, (Sun, Apr 2nd)

I wrote about my new oledump plugin plugin_msi_info that analyzes MSI files (MSI files are OLE files) in diary entry “oledump & MSI Files”.
http://news.poseidon-us.com/SlsSLc

YARA v4.3.0 Release, (Sun, Apr 2nd)

We wrote 2 diary entries about new features in release candidates of YARA 4.3.0.
http://news.poseidon-us.com/SlsSHS

CloudBees integrates with Argo to enhance cloud-native software delivery

CloudBees has unveiled the integration of CloudBees’ continuous delivery and release orchestration solution, CloudBees CD/RO, with Argo Rollouts. The integration will enhance customers’ ability to deliver software faster, with higher quality, and at scale in cloud-native environments. This latest integration for CloudBees furthers its ability to support customers to deploy applications with confidence in their desired format. “This integration of CloudBees CD/RO with Argo Rollouts is a continuation of our commitment to best-in-class open-source tools … More → The post CloudBees integrates with Argo to enhance cloud-native software delivery appeared first on Help Net Security.
http://news.poseidon-us.com/SlrqbB

Stopping problems before they start: DoD aims for more proactive mental health care

The Defense Department wants to expand its budget for mental health care, and the services are starting new programs to prevent harmful behavior.
http://news.poseidon-us.com/Slrdyl