InfoSec Industry News

July 2018 Edition

  • Ticketmaster Suffers Security Breach – Spanning Pre-and-Post GDPR Date: Global entertainment ticketing service, Ticketmaster has admitted that the company has suffered a security breach, warning customers that their personal and payment information may have been accessed by an unknown third-party. The company has blamed a third-party support customer service chat application for the data breach that is believed to affect tens of thousands of its customers. This breach will be followed closely as it took place both before and after the GDPR went into effect. | Read more from The Hacker News here.

  • US Computer Emergency Readiness Team (CERT): The US-CERT Cyber-Security Bulletin lists new vulnerabilities each week as recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD). The vulnerabilities are listed by severity and are based on the CVE vulnerability-naming standard. This week's US-CERT alerts can be found here. | National Vulnerability Database summary found here.
  • Ticketmaster Suffers Security Breach – Spanning Pre-and-Post GDPR Date: Global entertainment ticketing service, Ticketmaster has admitted that the company has suffered a security breach, warning customers that their personal and payment information may have been accessed by an unknown third-party. The company has blamed a third-party support customer service chat application for the data breach that is believed to affect tens of thousands of its customers. This breach will be followed closely as it took place both before and after the GDPR went into effect. | Read more from The Hacker News here.
  • Marketing Firm, Exactis, Leaked a Personal Info Database with 340 Million Records: Marketing and data aggregation firm, Exactis, exposed a database that contained close to 340 million individual records on a publicly accessible server. The database held over 2 terabytes of data that appears to include personal information on hundreds of millions of American adults, as well as millions of businesses. The leak includes phone numbers, home addresses, email addresses, and other highly personal characteristics. | Read more from Wired here.
  • NSA Deleting Millions of Phone Call and Text Records Over Privacy Violations: “Technical irregularities” have the NSA scrambling to delete millions upon millions of phone and text message data records the agency should never have obtained under the USA Freedom Act. According to the Associated Press more than 685 million call records were deleted. | Read more from CSO Online here.
  • Facebook Quiz App Leaked Data on 120 Million Users for Years: A third-party app called NameTest left the data of 120 million Facebook users exposed online for years. The quiz app stored users’ data in a JavaScript file that could easily be requested by any website. NameTest also provided those who requested information with an additional token that allowed them to see the data behind users’ posts, photos, and friends for up to two months. | Read more from Fortune here.
  • A Massive Cache of Law Enforcement Personnel Data Has Leaked: A data breach at a federally funded active shooter training center has exposed the personal data of thousands of US law enforcement offices. The cache of data contained identifiable information on local and state police officers and federal agents who sought out or underwent the training in the past few years. | Read more from ZDNet here.
  • DDoS Attacks on the Rise, Become More Specialized: Akamai’s new "State of the Internet/Security: Web Attack" report says DDoS attacks have increased 16% since 2017. A couple other highlights include that Mirai is not dead as attacks with new variants are still ongoing. Akamai also saw multi-vector reflection attacks using obscure vectors such as Intelligent Platform Management Interface (IPMI) and Internet Key Exchange (IKE) protocols.| Read more from CSO Online here.

zDefender® on Splunkbase

  • Did you know CorreLog now has zDefender® available for Splunk?
  • Click here for more info.

Webinars On-Demand


"GDPR Compliance for Mainframe Data" with Infotel

Learn more about the finer points of the GDPR as it relates to mainframe data compliance as well as focusing on a new role in IT required by the regulation, the Data Protection Officer Watch here. 


"PEN Testing z/OS" with Phil Young

Learn more about z/OS Pen Testing with esteemed mainframe security researcher Philip Young, detailing how each attack is detectable up-to-the-second in your distributed SIEM. Watch here. 


Latest Resources


MAINFRAME SECURITY WHITEPAPERS:

“Impact from the New GDPR: Countdown begins...”
Click here to download.

“Real-time Mainframe SIEM 101: Mainframe Cyber Threat is Real"
Click here to download.


InfoSec Industry Events

  • August 6-15: SANS Security Awareness Summit | Charleston Marriott, Charleston, SC | Event Link
  • August 4-9: Black Hat USA 2018 | Mandalay Bay, Las Vegas, NV | Event Link
  • August 12-17: SHARE St. Louis | America's Center Convention Complex, St. Louis, MO | Visit with CorreLog at booth #316 | Event Link
    • CorreLog Presentation with Customer Use Case with Blue Cross Blue Shield | August 14 | 10:00 - 11:00 a.m. | Room 267 | More Info
  • September 13: Hacker Halted USA | Georgia International Convention Center, Atlanta, GA | Event Link

CorreLog News

CorreLog, Inc. announces sponsorship and speaking engagements at SHARE St. Louis 2018 conference, helping educate attendees on the benefits of real-time security compliance and auditing on IBM® z/OS® 

SHARE St. Louis  

  • Where: St. Louis, Missouri
  • Venue: America's Center Convention Complex
  • CorreLog Booth: #316
  • More Info: Event Website

Educational Speaking Session

  • Title: User Experiences: Know Now - Protecting Privacy Using Real-Time Data
  • When: Tuesday, August 14 | 10:00 a.m.-11:00 a.m.
  • Where: Room 267 | America's Center Convention Complex
  • Session Number: 22997
  • More InfoSession Link

Vendor Sponsored Presentation

  • Title: Use Cases for Preventing Breaches by Correlating Real-Time Mainframe Events with CorreLog zDefender
  • When: Tuesday, August 14 | 1:45 p.m.-2:45 p.m.
  • Where: Room 226 | America's Center Convention Complex
  • Session Number: 23719
  • More Info: Session Link

CorreLog Product News

CorreLog, Inc. Issues Guidelines for Extending Windows/UNIX-SIEM Visibility to Include Event Messages for Enterprise End-to-End Real-time IT Security Compliance 

  • CorreLog released the guidelines in a whitepaper defining the two disparate “worlds” of enterprise IT security and how their lack of unified risk management has left the mainframe vulnerable to cyber-attack.
  • The whitepaper also offers four people- and process-centric elements needed for a unified, holistic enterprise view of cyber threat.
  • Click here to read more.

CorreLog, Inc. Announces Day One Support for New IBM z14 ZR1 for its zDefender® for z/OS Product

  • CorreLog's zDefender® for z/OS provides out-of-box support for IBM’s new z/OS z14 ZR1 mainframe, delivering z/OS security event messages to CorreLog SIEM Correlation Server or any other Windows- or UNIX-based SIEM system in real time.
  • It can be installed on a z14 LPAR (or multiple LPARs) to intercept security and operational events for user activity on a z/OS z14 and now z14 ZR1 in real time and forward these events for up-to-the-second threat detection and alerts in CorreLog SIEM Correlation Server or any other SIEM system.
  • Click here to read more.

About CorreLog

Since 2007, CorreLog, Inc. has been committed to delivering software solutions for Security and Compliance auditing professionals who need more advanced network/system security and improved adherence to PCI DSS, HIPAA, SOX, FISM, GDPR, ISO 27001, IRS Pub. 1075, NERC, and other industry standards for protecting data. Our solutions are designed to be complementary to clients' existing IT investments.

CorreLog specializes in providing the most comprehensive Security & Compliance software at the industry's lowest Total Cost of Ownership. Our solutions help secure data across both mainframe and distributed operating systems, and provide alerts with notifications in real-time to security and network operations resources. CorreLog has worked with companies across Fortune 500 to SMB class who all benefit from our ease of installation and highly interoperable approach to building software that is simple to use and master out of the box. Our customers are up and running with monitoring and alerts within just a few hours, versus weeks or even months with competing enterprise vendor solutions, Our software agent monitoring technology spans from Windows, Linus, UNIX, Mac, SAP, and databases all the way up to the largest mainframes with running IBM® z/OS®, Linux on z Systems, IBM® Db2, IBM® IMS™, and IBM® z/VM.

CorreLog has installed software and framework components used successfully by hundreds of commercial and government organizations worldwide. Our core solutions provide visibility on privilege-user activity, data integrity, FIM and application activity that may hold evidence of cyber threat, and in real time, we notify security personnel with alerts in accordance with compliance standards. For more information on CorreLog, please visit CorreLog.com.