Reports

Program code on a monitor

Code Tutorials Spread Application Flaws Far and Wide

In-brief: Researchers at universities in Germany, working with the security firm Trend Micro, discovered more than 100 vulnerabilities in GitHub code repositories simply by looking for re-used code from tutorials and other free code samples. The same method could be harnessed by cyber criminals or other sophisticated attackers to find and exploit vulnerabilities in software applications, the researchers warned.

Serious data breaches depress the value of the affected firm's stock, an analysis by the firm CGI and Oxford Economics found. (Image courtesy of Library of Congress)

Survey Finds Breaches depress Share Price – a lot | Digital Guardian

In-brief: a report by the firm CGI and Oxford Economics suggests the impact of breaches on the price of a company’s stock may be bigger than many expected, depressing the price investors pay for the stock by almost two percent. 

A report from the firm FireEye warns that industrial firms still have work to do securing their environments from cyber attacks.

Seven Years After Stuxnet, Industrial Firms Still Lag on Security

In-brief: Seven years after the Stuxnet worm proved that attacks on industrial environments was possible, many industrial and manufacturing firms still lack basic elements of an effective information security strategy, a new report finds. 

Hacking tools belonging to the CIA were leaked via the site Wikileaks. What have we learned from the release?

Leaked CIA Tools Linked to Known Cyber Espionage Group | Symantec

In-brief: We don’t know if the Vault 7 tools belonged to the CIA. We do know that they were used by a group Symantec dubbed Longhorn that possessed powerful zero day exploits, never attacked computers in the US and used code words taken from lyrics by 80s band The Police, so…

As the Chinese President meets at Mar a Lago with President Trump, reports of more Chinese hacking of the US and its allies has surfaced in two reports.

As Trump and Xi Meet, Reports of China-Sponsored Hacks Flare | Digital Guardian

In-brief: On the eve of a high-profile meeting between China’s President Xi Jinping and U.S. President Donald Trump, new reports underscore the continued scourge of Chinese spying on- and theft from the U.S. and its allies. (Editor’s note: this post is excerpted from one that appeared on Digital Guardian’s blog.)