Security daily (02-06-2020)

CrowdStrike revenue jumps amid work-from-home orders

CrowdStrike reported a total revenue of $178.1 million during the first quarter of fiscal year 2021, a massive uptick that coincided with ongoing concerns about the strength of the global economy during the coronavirus pandemic. In its quarterly earnings report released Tuesday, the Sunnyvale-based company said its $178.1 million in revenue marked an 85% increase over the $96.1 million during the same period last year. Much of that revenue came from product subscriptions, with executives suggesting that the sudden move to telecommuting boosted CrowdStrike’s presence in the market. The financial disclosure pertains to the period ending on April 30, 2020. Total revenue for the fourth quarter of 2020 was $152.1 million, the company said. “With both security administrators and end-users working from home, we believe the rapid shift to a remote workforce has helped increase our leadership,” chief executive George Kurtz said in a statement. “We achieved 88% [annual recurring […] The post CrowdStrike revenue jumps amid work-from-home orders appeared first on CyberScoop. (CyberScoop)

The mystery of the expiring Sectigo web certificate

If you're getting TLS connection errors that suddenly started this weekend, a tired old encryption library might be the problem. (Naked Security)

Hacker posts database stolen from Dark Net free hosting provider DH

Some 7,600 dark-web sites were obliterated in an attack on the most popular provider of .onion free hosting services, Daniel's Hosting. (Naked Security)

Crime agency turns to Google ads to deter teen DDoS hackers

The UK's National Crime Agency has hit on a simple way to stop teens from being sucked into cybercrime – using Google Ads. (Naked Security)

Facebook's Zuckerberg Accused Of Setting Dangerous Precedent Over Trump

(News ≈ Packet Storm)

G Suite Marketplace Primed For A Privacy Scandal

(News ≈ Packet Storm)

Amtrak Breach Causes Potential Leak Of Customer Account Data

(News ≈ Packet Storm)

Apple Jailbreak Zero-Day Gets A Patch

(News ≈ Packet Storm)

Two Critical Android Bugs Open Door to RCE

Google and Qualcomm both addressed significant vulnerabilities in their June updates. (Threatpost)

Severe Cisco DoS Flaw Can Cripple Nexus Switches

Cisco has patched a high-severity flaw that could lead to denial-of-service attacks on its Nexus switch lineup. (Threatpost)

Octopus Scanner Sinks Tentacles into GitHub Repositories

At least 26 different open-source code repositories were found to be infected with an unusual attack on the open-source software supply chain. (Threatpost)

Apple Jailbreak Zero-Day Gets a Patch

The zero-day vulnerability tracked as CVE-2020-9859 is exploited by the "Uncover" jailbreak tool released last week. (Threatpost)


/security-daily/ 03-06-2020 23:44:27