Advertisements


Rackspace ransomware attack was executed by using previously unknown security exploit

The MS Exchange exploit chain recently revealed by Crowdstrike researchers is how the Play ransomware gang breached the Rackspace Hosted Exchange email environment, the company confirmed last week. The exploit chains CVE-2022-41082, a RCE flaw, and C.....»»

Category: securitySource:  netsecurityJan 9th, 2023

New infosec products of the week: December 13, 2024

Here’s a look at the most interesting products from the past week, featuring releases from Cato Networks, Horizon3.ai, SecureAuth, Stamus Networks, Trellix, and Versa Networks. Trellix Drive Encryption enhances security against insider attacks Trel.....»»

Category: securitySource:  netsecurityRelated NewsDec 13th, 2024

Tackling software vulnerabilities with smarter developer strategies

In this Help Net Security interview, Karl Mattson, CISO at Endor Labs, discusses strategies for enhancing secure software development. Mattson covers how developers can address vulnerabilities in complex systems, ways organizations can better support.....»»

Category: securitySource:  netsecurityRelated NewsDec 13th, 2024

Critical WordPress plugin vulnerability under active exploit threatens thousands

Vulnerability with severity rating of 9.8 out of possible 10 still live on >8,000 sites. Thousands of sites running WordPress remain unpatched against a critical security flaw in.....»»

Category: topSource:  arstechnicaRelated NewsDec 12th, 2024

A new test shows Microsoft Recall’s continued security problems

Microsoft's Recall feature and its new security standards are being tested by Windows Insiders again, and still creating problems......»»

Category: topSource:  digitaltrendsRelated NewsDec 12th, 2024

Cleo patches zero-day exploited by ransomware gang

Cleo has released a security patch to address the critical vulnerability that started getting exploited while still a zero-day to breach internet-facing Cleo Harmony, VLTrader, and LexiCom instances. Version 5.8.0.24 of the three products, which was.....»»

Category: securitySource:  netsecurityRelated NewsDec 12th, 2024

Security cameras and alarms effective at deterring burglars, say burglars

If you’ve ever wondered whether security cameras and alarms are effective at deterring burglars, the answer is yes – and that comes from a very reliable source: burglars. KGW-TV asked 86 inmates convicted of burglary what would make them more.....»»

Category: topSource:  informationweekRelated NewsDec 12th, 2024

We must adjust expectations for the CISO role

Cybersecurity has become one of the most high-stakes facets of business operations in the past few years. The chief information security officer (CISO) role, once a back-office function primarily focused on technical oversight, has moved squarely int.....»»

Category: securitySource:  netsecurityRelated NewsDec 12th, 2024

Researchers explore likelihood of a future quake along the Nevis-Cardrona Fault in western Otago

A new study reveals the likelihood of a future earthquake occurring along the Nevis-Cardrona Fault in western Otago is lower than previously thought......»»

Category: topSource:  marketingvoxRelated NewsDec 12th, 2024

Citrix acquires deviceTRUST and Strong Network

With the widespread adoption of hybrid work models, where teams operate across geographical regions on managed and unmanaged devices, every connection and endpoint presents a potential security risk. Addressing this challenge, Citrix announced the st.....»»

Category: securitySource:  netsecurityRelated NewsDec 12th, 2024

Exposed APIs and issues in the world’s largest organizations

In this Help Net Security video, Tristan Kalos, CEO of Escape, discusses the results of its 2024 State of API Exposure report. The study highlights significant API security gaps affecting Fortune 1000 organizations, with over 28,500 exposed APIs and.....»»

Category: securitySource:  netsecurityRelated NewsDec 12th, 2024

Shaping effective AI governance is about balancing innovation with humanity

In this Help Net Security interview, Ben de Bont, CISO at ServiceNow, discusses AI governance, focusing on how to foster innovation while ensuring responsible oversight. He emphasizes the need for collaboration between technologists, policymakers, an.....»»

Category: securitySource:  netsecurityRelated NewsDec 12th, 2024

Google boosts Android security against unknown tracking devices

Google's unknown tracker alerts system will now let users disable their phone's location sharing and use a map view to find the hidden tracking device......»»

Category: topSource:  digitaltrendsRelated NewsDec 12th, 2024

Update your iPhone, iPad, and Mac to fix these security vulnerabilities

Apple regularly lists resolved vulnerabilities for iPhone, iPad, and Mac after each software update. Right on cue, the company has released an extensive list of which security resolutions are included in today’s iOS 18.2 and macOS Sequoia 15.2 soft.....»»

Category: topSource:  informationweekRelated NewsDec 11th, 2024

Cato Networks extends SASE-based protection to IoT/OT environments

With the introduction of Cato IoT/OT Security, Cato Networks is enabling enterprises to simplify the management and security of Internet of Things (IoT) and operational technology (OT) devices. Cato IoT/OT Security converges device discovery and clas.....»»

Category: securitySource:  netsecurityRelated NewsDec 11th, 2024

Picus provides automated pentesting testing to help uncover critical risks

Picus Security announced new innovations to its Attack Path Validation (APV) product. The new Picus APV now offers security teams accurate, risk-free, and continuous automated penetration testing to uncover critical risks, while significantly reducin.....»»

Category: securitySource:  netsecurityRelated NewsDec 11th, 2024

Containers have 600+ vulnerabilities on average

Containers are the fastest growing – and weakest cybersecurity link – in software supply chains, according to NetRise. Companies are struggling to get container security right. Issues from misconfigured clouds, containers, and networks to.....»»

Category: securitySource:  netsecurityRelated NewsDec 11th, 2024

Why crisis simulations fail and how to fix them

In this Help Net Security interview, Allison Ritter, Head of Cyber Experiential Exercising at Cyberbit, shares her insights on the key differences between in-person and virtual cyber crisis simulations and what makes each approach effective. Ritter h.....»»

Category: securitySource:  netsecurityRelated NewsDec 11th, 2024

CyTwist’s detection engine combats AI-generated malware

CyTwist launches its patented detection engine to combat the insidious rise of AI-generated malware. Enhancing an organization’s existing security stack, CyTwist’s solution profiles threat actors using field-proven counterintelligence met.....»»

Category: securitySource:  netsecurityRelated NewsDec 11th, 2024

Trellix Drive Encryption enhances security against insider attacks

Trellix announced Trellix Drive Encryption upgrades for on-premises and SaaS management. Customers benefit from the flexibility needed for encryption protection deployment to safeguard their data and devices from unauthorized access. “The major.....»»

Category: securitySource:  netsecurityRelated NewsDec 11th, 2024

Scientists develop coating for enhanced thermal imaging through hot windows

A team of Rice University scientists has solved a long-standing problem in thermal imaging, making it possible to capture clear images of objects through hot windows. Imaging applications in a range of fields—such as security, surveillance, industr.....»»

Category: topSource:  pcmagRelated NewsDec 11th, 2024