APT29 revamps its techniques to breach cloud environments
Russian threat actors APT29 are changing their techniques and expanding their targets to access cloud environments, members of the Five Eyes intelligence alliance have warned. About APT29 APT29 (aka Midnight Blizzard, aka Cozy Bear) is a cyber espion.....»»
MITRE breach details reveal attackers’ successes and failures
MITRE has shared a timeline of the recent breach if fell victim to and has confirmed that it began earlier than previously thought: on December 31, 2023. On that day, the attackers deployed a web shell on an external-facing Ivanti Connect Secure VPN.....»»
Theori unveils Xint to automate security operations in cloud and hybrid environments
Theori unveiled its latest security management solution, Xint. Xint streamlines and automates security operations across cloud and hybrid environments, providing comprehensive visibility throughout the entire security ecosystem. Xint integrates cloud.....»»
Veeam fixes RCE flaw in backup management platform (CVE-2024-29212)
Veeam has patched a high-severity vulnerability (CVE-2024-29212) in Veeam Service Provider Console (VSPC) and is urging customers to implement the patch. About CVE-2024-29212 Veeam Service Provider Console is a cloud platform used by managed services.....»»
Accenture partners with Mandiant to improve cybersecurity operations
Accenture and Mandiant, part of Google Cloud, are teaming up to collaboratively deliver cyber resilience services to help organizations more efficiently detect, investigate, respond to and recover from cyberattacks. As part of the partnership, Accent.....»»
AppViewX AVX ONE provides visibility, automation and control of certificates and keys
AppViewX announced AVX ONE, a fully integrated SaaS-based CLM platform for PKI, IAM, security, DevOps, cloud, platform and application teams. AVX ONE provides enterprise scale, visibility, automation and control of certificates and keys. It enables g.....»»
U.S. “Know Your Customer” Proposal Will Put an End to Anonymous Cloud Users
Late January, the U.S. Department of Commerce published a notice of proposed rulemaking for establishing new requirements for Infrastructure as a Service providers (IaaS) . The proposal boils down to a 'Know Your Customer' regime for companies operat.....»»
Abnormal extends Account Takeover Protection to cloud apps, introduces AI Security Mailbox
Abnormal Security is expanding its Account Takeover Protection product line beyond email to provide visibility into cross-platform user behavior and centralize compromised account detection and remediation across identity, collaboration, and cloud in.....»»
BigID introduces dual-scanning capabilities for cloud native workloads
BigID has introduced a new advancement in cloud data security, privacy, and governance with the launch of its dual-scanning technology. BigID’s dual, or “hybrid”, scanning technology gives organizations speed, efficiency, and flexib.....»»
Mercedes dealership sued for allegedly not revealing used car had flood damage
A customer has accused a South Carolina dealership group of fraud, negligence, breach of contract and a consumer protection law violation for failing to disclose the used 2018 Mercedes-Benz E300 she bought had flood damage......»»
New quantum sensing scheme could lead to enhanced high-precision nanoscopic techniques
Researchers from the University of Portsmouth have unveiled a quantum sensing scheme that achieves the pinnacle of quantum sensitivity in measuring the transverse displacement between two interfering photons......»»
Making sure ESA"s cloud and aerosol satellite is aerosol-free
A few weeks ago, a team of engineers carefully extracted ESA's EarthCARE satellite from its protective transport container, initiating a meticulous process of inspection, testing and preparation for its liftoff later this month from the Vandenberg la.....»»
Cyble Vision X covers the entire breach lifecycle
Cyble is launching Cyble Vision X, the successor to its Cyble Vision 2.0 threat intelligence platform, to elevate the user experience by empowering decision-makers with immediate access to critical information. The comprehensive release infuses artif.....»»
Nokod Security Platform secures low-code/no-code development environments and apps
Nokod Security launched the Nokod Security Platform, enabling organizations to protect against security threats, vulnerabilities, compliance issues, and misconfigurations introduced by LCNC applications and robotic process automations (RPAs). Most or.....»»
The BREAD Collaboration is searching for dark photons using a coaxial dish antenna
Approximately 80% of the matter in the universe is predicted to be so-called "dark matter," which does not emit, reflect, or absorb light and thus cannot be directly detected using conventional experimental techniques......»»
Bigger brains allow cliff-nesting seagull species to survive and thrive in urban environments
Seagull species that have bigger brains are more likely to nest on coastal cliffs and may also be better adapted to breed in urban environments such as on the roofs of buildings......»»
New SOHO router malware aims for cloud accounts, internal company resources
Cuttlefish, a new malware family that targets enterprise-grade small office/home office (SOHO) routers, is used by criminals to steal account credentials / secrets for AWS, CloudFlare, Docker, BitBucket, Alibaba Cloud and other cloud-based services......»»
Illumio and Wiz’s integration enhances cyber resilience in the cloud
Illumio has partnered with Wiz and joins Wiz Integrations (WIN) Platform. Illumio enhances WIN by bringing the power of Illumio’s Zero Trust Segmentation platform to the partner ecosystem, so that customers can seamlessly integrate Wiz into their e.....»»
Confluent enhances Apache Flink with new features for easier AI and broader stream processing
Confluent has unveiled AI Model Inference, an upcoming feature on Confluent Cloud for Apache Flink, to enable teams to easily incorporate machine learning into data pipelines. Confluent introduced Confluent Platform for Apache Flink, a Flink distribu.....»»
Skyhawk Security unveils cloud-native CTEM, streamlining security with AI-powered automation
Skyhawk Security has unveiled its cloud native Continuous Threat Exposure Management (CTEM) solution. The agentless approach empowers organizations to automate their CTEM program for the first time and operationalize it through Skyhawk’s existing A.....»»
2024 Data Breach Investigations Report: Most breaches involve a non-malicious human element
The exploitation of vulnerabilities as an initial point of entry almost tripled from the previous year, accounting for 14% of all breaches, according to Verizon’s 2024 Data Breach Investigations Report, which analyzed a record-high 30,458 secur.....»»