SC Media

SC Media SC Media arms information security professionals with the in-depth, unbiased business and technical information they need.
(1)

The official page for all things IT security.

Vulnerabilities reminiscent of #Stuxnet found in 2 #SchneiderElectric products could allow an attacker to gain operation...
05/08/2020
Vulnerabilities in two Schneider Electric ICS products reminiscent of Stuxnet | SC Media

Vulnerabilities reminiscent of #Stuxnet found in 2 #SchneiderElectric products could allow an attacker to gain operation control of a device by intercepting, then retransmitting, commands. #Trustwave Trustwave
http://ow.ly/KrHz50zALFF

Vulnerabilities have been found in two Schneider Electric products that could allow an attacker to intercept and then retransmit commands potentially gaining operation control of the device.

05/06/2020

Cyber experts offer tips on how to reduce costs amid #COVID19 while still boosting security. Coalfire Cowbell Cyber Lookout nVisium SaltStack Point3 AppViewX
http://ow.ly/As4050zyxsC

Employee risk scorecarding helping orgs drill down & assess individual employees for potential trouble spots. But how to...
05/05/2020
CISOs score big on employee risk | SC Media

Employee risk scorecarding helping orgs drill down & assess individual employees for potential trouble spots. But how to deal with high-risk workers without making them feeling persecuted? Mimecast Deloitte Proofpoint Thycotic
http://ow.ly/vAgX50zun1b

The analytic capabilities are there to pinpoint problem employees. But what to do with them?

Half-hearted or shoddy due diligence when assessing cyber risk during the M&A process can lead to both major embarrassme...
05/01/2020
Buyer beware, risk ahead | SC Media

Half-hearted or shoddy due diligence when assessing cyber risk during the M&A process can lead to both major embarrassment and financial loss, Doug Olenick reports. Abnormal Security Lucy Security AG RiskRecon Strategic Cyber Ventures Information Security Forum PwC http://ow.ly/n29650zuo2s

Considering a company’s cybersecurity posture should be partof M&A due diligence, but often it isn’t.

#COVID19 is changing the behavior of #darkweb cybercriminals, who are expanding their presence to larger, more open mark...
04/30/2020
5 ways COVID-19 is reshaping the cybercrime economy | SC Media

#COVID19 is changing the behavior of #darkweb cybercriminals, who are expanding their presence to larger, more open marketplaces than where they usually set up shop, say experts. #cybercrime GroupSense Sixgill Emsisoft Intsights http://ow.ly/mwAm50ztv4j

SC Media spoke to analysts & firms specializing in dark web reconnaissance and learned of 5 intriguing ways COVID-19 is uprooting the cybercrime status quo.

Day two of SC Media's virtual conference on healthcare cybersecurity begins at 11 a.m. EST with a special keynote presen...
04/30/2020
Healthcare’s New Cyber Risk Profile in the Pandemic: Scoping the Challenge and Scaling the Solution Registration

Day two of SC Media's virtual conference on healthcare cybersecurity begins at 11 a.m. EST with a special keynote presentation featuring Todd Fitzgerald, a renown security leader and speaker, who will be discussing the CISOs leadership implications during a global pandemic. https://bit.ly/3aMyDSo #cybersecurity #infosec

(ISC)² members: (ISC)² members who attend CyberRisk Alliance virtual events or eSummits may be eligible for one CPE credit each applicable webcast subject to (ISC)² approval. Please refer to (ISC)² Guidelines before reporting CPE activity directly on www.ISC2.org. 

As more employees are being forced to work from home due to the COVID-19 pandemic, security teams are scrambling to ensu...
04/29/2020
Are you ready for COVID-19? - Cybersecurity Asset Management

As more employees are being forced to work from home due to the COVID-19 pandemic, security teams are scrambling to ensure that they know what assets are accessing the corporate networks.

More in this #CybersecurityAssetManagement story: Axonius

https://cam.scmagazine.com/are-you-ready-for-covid-19/

Software that is configured to identify any possible connection from outside the company network needs to be modified to accept the new normal.

Discover what healthcare’s new cyber risk profile in the pandemic looks like by attending our two-day virtual conference...
04/29/2020
Healthcare’s New Cyber Risk Profile in the Pandemic: Scoping the Challenge and Scaling the Solution Registration

Discover what healthcare’s new cyber risk profile in the pandemic looks like by attending our two-day virtual conference that begins today at 10:30 a.m. EST.

If you can’t jump right into the action, keep in mind that all of the content will be on-demand following the presentations, so register and access the insights whenever, wherever.

https://bit.ly/3aMyDSo #cybersecurity #infosec

(ISC)² members: (ISC)² members who attend CyberRisk Alliance virtual events or eSummits may be eligible for one CPE credit each applicable webcast subject to (ISC)² approval. Please refer to (ISC)² Guidelines before reporting CPE activity directly on www.ISC2.org. 

The future's not looking so bright for #Shade #ransomware, after its operators apologized for their criminal actions & p...
04/28/2020
Shade ransomware gang gives up keys, apologizes to victims | SC Media

The future's not looking so bright for #Shade #ransomware, after its operators apologized for their criminal actions & published all 750,000 decryptor keys for the malware. #Troldesh Acceptto Corp
http://ow.ly/WPDx50zreCN

The malicious actors behind Shade ransomware made an unusual announcement on GitHub, not only publishing all 750,000 decryptor keys for the malware but apologizing for their previous actions.

How can we secure an IT resource if we don’t know that it exists or if we don’t have visibility into its state? More on ...
04/28/2020
What, why, and how of cybersecurity asset management - Cybersecurity Asset Management

How can we secure an IT resource if we don’t know that it exists or if we don’t have visibility into its state?

More on the what, why and how of cybersecurity asset management Axonius:

https://cam.scmagazine.com/what-why-and-how-of-cybersecurity-asset-management/

Security practitioners crave visibility into the state of laptops, vices, virtual machines, applications, and users in their organization.

Criminals are testing the healthcare’s cyber-resiliency in the midst of the #COVID-19 pandemic. Join Mauricio Angée, Tod...
04/27/2020
Healthcare’s new cyber risk profile in the pandemic: Scoping the challenge and scaling the solution

Criminals are testing the healthcare’s cyber-resiliency in the midst of the #COVID-19 pandemic. Join Mauricio Angée, Todd Fitzgerald and others that are in the trenches in this virtual conference focused on the healthcare security industry: https://bit.ly/2R6kubW #cybersecurity #infosec

Register for Healthcare’s new cyber risk profile in the pandemic: Scoping the challenge and scaling the solution

Keynote speaker added for day 2 of SC Media’s healthcare virtual conference: Todd Fitzgerald, Executive in Residence at ...
04/23/2020
Healthcare’s new cyber risk profile in the pandemic: Scoping the challenge and scaling the solution

Keynote speaker added for day 2 of SC Media’s healthcare virtual conference: Todd Fitzgerald, Executive in Residence at Cybersecurity Collaborative, will be joining us. Register now to learn more about new areas of exposure and what tools and techniques you can turn to: https://bit.ly/2R6kubW #healthcare #cybersecurity #infosec

Register for Healthcare’s new cyber risk profile in the pandemic: Scoping the challenge and scaling the solution

Paay open database exposes 2.5M transactions, challenges PCI compliance
04/23/2020
Paay open database exposes 2.5M transactions, challenges PCI compliance | SC Media

Paay open database exposes 2.5M transactions, challenges PCI compliance

The start-up payment processing firm Paay that promotes itself as providing extra security to online transactions called that claim into question when it misconfigured a payment card database, exposing 2.5 million credit card transactions and raising concerns over PCI compliance.

Healthcare & hospital IoT environments are potentially rife with vulnerabilities. “If I were a bad guy I would go throug...
04/22/2020
Healthcare IT workers struggle to secure IoT devices during COVID-19 | SC Media

Healthcare & hospital IoT environments are potentially rife with vulnerabilities. “If I were a bad guy I would go through the video surveillance cameras," said Greg Murphy, CEO of Ordr. Ordr ReFirm Labs Check Point Software Technologies #healthcare #COVID19
http://ow.ly/iYnY50zlmrH

Hospitals and healthcare facilities are finding themselves overwhelmed not only with patients battling COVID-19, but also a flood of high-tech IoT medical equipment all of which must be integrated into a network and then properly secured from attack.

Researchers from #ArcticSecurity and Team Cymru observed a steep rise in the number of orgs whose devices are compromise...
04/21/2020
Remote workers' lack of firewalls leads to rise in malicious activity

Researchers from #ArcticSecurity and Team Cymru observed a steep rise in the number of orgs whose devices are compromised & engaging in malicious activity. The likely cause: a lack of corporate firewalls due to employees working from home. #COVID19 #WFH http://ow.ly/ummT50zksja

Since COVID-19 forced sweeping WFH policies, the number of organizations whose devices have engaged in malicious activity has risen, say researchers.

Keynote speaker just added! Join Mauricio Angée, CISO at Mount Sinai Medical Center of Florida, in  "Cyber risk manageme...
04/21/2020

Keynote speaker just added! Join Mauricio Angée, CISO at Mount Sinai Medical Center of Florida, in "Cyber risk management strategies in response to #COVID-19," during our virtual conference about healthcare’s role during this pandemic: https://bit.ly/2R6kubW #healthcare #cybersecurity #infosec

#GitHub users are being targeted by a #phishing campaign, dubbed Sawfish, that's designed to steal their GitHub login cr...
04/20/2020
GitHub users being hit with credential stealing phishing messages | SC Media

#GitHub users are being targeted by a #phishing campaign, dubbed Sawfish, that's designed to steal their GitHub login credentials and time-based one-time password (TOTP) codes.

GitHub admins are actively searching for the phishing sites and, when found, are filing takedown requests. The software development version control company suggests switching from TOTP two-factor authentication to a hardware key or WebAuthn two-factor authentication. #Sawfish #phish GitHub
http://ow.ly/R6KD50zjjtb

Github users are being targeted by a Sawfish phishing campaign designed to steal their Github login credentials and time-based one-time password (TOTP) codes.

Deadline April 21!Please help us recognize inspirational women in the cyber industry who are breaking boundaries, provid...
04/18/2020
Help SC honor Women and Diversity in Cybersecurity with your recommendations | SC Media

Deadline April 21!

Please help us recognize inspirational women in the cyber industry who are breaking boundaries, providing thought leadership and advancing security in gov't or the private sector. See our article for more details. #womeninsecurity
http://ow.ly/L2ir50zgpmp

More women may be working in the cybersecurity industry nowadays, but full equality in this space and other sectors is a long way off.  That’s why we

04/17/2020

Deadline April 21!

Please help us continue to recognize inspirational women in the cyber industry who are breaking boundaries, providing critical thought leadership and advancing security in gov't or the private sector. See our article for more details. #womeninsecurity
http://ow.ly/L2ir50zgpmp

It’s the third day of #CyberRiskAlliance’s three-day eSummt on cloud security. All of the action begins at 11 a.m. EST a...
04/17/2020
Cloud Security eSummit - April 15-17, 2020 | CyberRisk Alliance

It’s the third day of #CyberRiskAlliance’s three-day eSummt on cloud security. All of the action begins at 11 a.m. EST as Roger Ofarril, Information Security Manager at the Federal Reserve Bank of Chicago, leads a keynote discussion on putting an end to breaches in the cloud. https://bit.ly/2QW3mFA #cybersecurity #infosec

 < View all upcoming eSummits CLOUD SECURITY eSummit WEDNESDAY, APRIL 15, 2020 Register Now The modern-day business is tapping into a slew of technology to enhance its processes and operations, leading to a massive influx of data it can leverage to make additional decisions. As fruitful as this dig...

This upcoming SC Media 20/20 webcast looks at how bolstering your email-based security defenses can enhance your existin...
04/17/2020

This upcoming SC Media 20/20 webcast looks at how bolstering your email-based security defenses can enhance your existing security operations and overcomes one of the favorite inroads that attackers take into your corporate network. https://bit.ly/2K15rwg #cybersecurity #infosec

As the level of threats and degree of difficulty rise in tandem, security practitioners in the healthcare industry have ...
04/16/2020

As the level of threats and degree of difficulty rise in tandem, security practitioners in the healthcare industry have an expanding range of tools and techniques they can turn to. Those will be covered in this upcoming multi-day virtual conference titled, Healthcare’s New Cyber Risk Profile in the Pandemic: Scoping the Challenge and Scaling the Solution. https://bit.ly/2R6kubW #cybersecurity #infosec

Day two of this #CyberRiskAlliance eSummit on cloud security starts at 10:30 a.m. EST! If you missed any of the action y...
04/16/2020
Cloud Security eSummit - April 15-17, 2020 | CyberRisk Alliance

Day two of this #CyberRiskAlliance eSummit on cloud security starts at 10:30 a.m. EST! If you missed any of the action yesterday, don’t forget that the presentation are still on-demand. The action kicks off today with notable keynote speaker Todd Fitzgerald who will be discussing leadership implications for CISOs in the cloud. https://bit.ly/2QW3mFA #cybersecurity #infosec

 < View all upcoming eSummits CLOUD SECURITY eSummit WEDNESDAY, APRIL 15, 2020 Register Now The modern-day business is tapping into a slew of technology to enhance its processes and operations, leading to a massive influx of data it can leverage to make additional decisions. As fruitful as this dig...

Check out this special #COVID19 podcast w/Curtis Simpson, former VP and global CISO at food distributor Sysco and curren...
04/15/2020
CISO: 3rd-party risk is priority 1 for essential COVID-19 goods supply chain

Check out this special #COVID19 podcast w/Curtis Simpson, former VP and global CISO at food distributor Sysco and current CISO at Armis. He says manufacturers & supply chain companies should prioritize 3rd-party risk & IT/OT/IoT visibility as they respond to the pandemic. #Sysco #Armis Armis http://ow.ly/Rc6F50zeUs7

Manufacturers & supply chain orgs must limit 3rd-party risk as they produce & deliver essential goods amid the COVID-19 crisis, says Armis' Curtis Simpson.

As a #CyberRiskAlliance affiliate, SC Media is incredibly excited about this week’s three-day CRA eSummit on cloud secur...
04/15/2020
Cloud Security eSummit - April 15-17, 2020 | CyberRisk Alliance

As a #CyberRiskAlliance affiliate, SC Media is incredibly excited about this week’s three-day CRA eSummit on cloud security, featuring leading experts that will discuss approaches and highlight emerging technology that can help security leaders reach an ideal state of protection in the cloud. Here’s a look at the full agenda for this highly anticipated event: https://bit.ly/2QW3mFA #cybersecurity #infosec

 < View all upcoming eSummits CLOUD SECURITY eSummit WEDNESDAY, APRIL 15, 2020 Register Now The modern-day business is tapping into a slew of technology to enhance its processes and operations, leading to a massive influx of data it can leverage to make additional decisions. As fruitful as this dig...

SC Media once again is kicking off its annual search for women who have made notable contributions to the cybersecurity ...
04/14/2020
A call for women... | SC Media

SC Media once again is kicking off its annual search for women who have made notable contributions to the cybersecurity community over the previous year. Read on to learn how to submit your recommendations. Deadline is April 21. #womeninsecurity http://ow.ly/Q5vP50zdi9C

Women are doing incredible, innovative things throughout the cybersecurity industry. As part of our continuing celebration of these successes, SC

SC Media confirmed on Friday that the attackers who compromised 2 San Francisco Int'l Airport websites were targeting th...
04/13/2020
San Fran airport websites hacked to swipe personal device credentials

SC Media confirmed on Friday that the attackers who compromised 2 San Francisco Int'l Airport websites were targeting the personal device credentials of those visiting the sites. The attack is somewhat unusual because users wouldn't normally type in personal device credentials when visiting a website. A more common scenario would be for the malicious code to steal web account credentials when registered users log in to the affected site, or steal payment card information if a user makes a purchase. Lucy Security AG #SFO
http://ow.ly/59ZO50zcB2e

Two websites affiliated with San Francisco Intl Airport were compromised last March, allowing attackers to steal site visitors' personal device credentials.

Address

400 Madison Ave
New York, NY
10017

Opening Hours

Monday 09:00 - 17:00
Tuesday 09:00 - 17:00
Wednesday 09:00 - 17:00
Thursday 09:00 - 17:00
Friday 09:00 - 17:00

Alerts

Be the first to know and let us send you an email when SC Media posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Contact The Business

Send a message to SC Media:

Videos

Nearby media companies


Other Media/News Companies in New York

Show All