With threats like Lapsus$, security playbooks ‘go out the window’
Cybersecurity experts say tactics used by the hacker group Lapsus$ in cyberattacks on Microsoft, Nvidia and Okta are unusual and variable. Cybersecurity experts say tactics used by the hacker group Lapsus$ in cyberattacks on Microsoft, Nvidia and.....»»
Patch actively exploited Microsoft SharePoint bug, CISA orders federal agencies (CVE-2023-24955)
The Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2023-24955 – a code injection vulnerability that allows authenticated attackers to execute code remotely on a vulnerable Microsoft SharePoint Server – to its KEV ca.....»»
How CISOs tackle business payment fraud
In this Help Net Security video, Shai Gabay, CEO of Trustmi, discusses why payments are a source of cyber worry for CISOs. CISOs are worried about Business Email Compromise (BEC), cyber attackers’ use of AI, and securing the supply chain. These.....»»
Enterprises increasingly block AI transactions over security concerns
Enterprises must secure a transformation driven by generative AI (GenAI) bidirectionally: by securely adopting GenAI tools in the enterprise with zero trust while leveraging it to defend against the new AI-driven threat landscape, according to Zscale.....»»
Apple quietly releases revised build of iOS 17.4.1 and iPadOS 17.4.1
Apple last week released iOS 17.4.1 and iPadOS 17.4.1 to iPhone and iPad users. Although the updates don’t add any new features, they do bring two important security patches. For some unknown reason, Apple has now quietly released a revised build o.....»»
CyberArk Secure Browser helps prevent breaches resulting from cookie theft
CyberArk launched CyberArk Secure Browser, an identity-centric secure browser, providing enhanced security and privacy alongside a familiar, productive user experience. Backed by intelligent privilege controls and simple to deploy across devices, Cyb.....»»
Malwarebytes adds AI functionality to ThreatDown Security Advisor
Malwarebytes has added AI functionality to its Security Advisor, available in every ThreatDown Bundle. Leveraging generative AI technology, the new capabilities will transform Security Advisor into a dynamic experience that allows customers to use si.....»»
Bedrock Security protects sensitive data within one unified platform
Bedrock Security unveiled its data security platform. Empowering organizations to manage data risk introduced by cloud and generative AI, Bedrock continuously discovers, manages, and protects sensitive data. The platform is powered by data AI Reasoni.....»»
Drozer: Open-source Android security assessment framework
Drozer is an open-source security testing framework for Android, whose primary purpose is to make the life of mobile application security testers easier. Drozer features The solution enables the identification of security vulnerabilities in applicati.....»»
Essential elements of a strong data protection strategy
In this Help Net Security interview, Matt Waxman, SVP and GM for data protection at Veritas Technologies, discusses the components of a robust data protection strategy, emphasizing the escalating threat of ransomware. He highlights the importance of.....»»
Cybersecurity jobs available right now: March 27, 2024
Cyber Product Owner UBS | Israel | On-site – View job details Your primary responsibilities will include owning and managing application security testing products, collaborating with the cyber hygiene operational team, and understandi.....»»
How security leaders can ease healthcare workers’ EHR-related burnout
Staff experiencing burnout in healthcare settings is not something that security leaders typically worry about – unless, maybe, it is the security team itself that is suffering from it. Healthcare CISOs and privacy officers worry more about the con.....»»
How to catch iMessage impersonators with Contact Key Verification
iOS includes an iMessage security feature called Contact Key Verification (CKV) that gives users more certainty they’re messaging with the people they think they are. Follow along for what this feature is, how it works, and how to turn on Contact K.....»»
When Will Grand Theft Auto 6 Be Released?
Rockstar’s first Grand Theft Auto 6 trailer provided us with a vague release window for the highly anticipated game. So when will the GTA 6 release date drop? Here’s what we know right now. In December, Rockstar released the first Grand T.....»»
Essays on democracy draw attention to critical threats, explore safeguards ahead of Jan. 6
Following the events of Jan. 6, 2021—when a violent mob stormed the U.S. Capitol building in an effort to interrupt the certification process of the 2020 presidential election—experts began to question how to protect the next presidential electio.....»»
How to mount your Blink Mini 2 security camera
If you want to mount your Blink Mini 2, you'll be glad to know it's an easy process. Here's a look at how it works, along with how to flip your video if needed......»»
17,000+ Microsoft Exchange servers in Germany are vulnerable to attack, BSI warns
Around 12% of the 45,000 or so Microsoft Exchange servers in Germany that can be accessed from the Internet without restrictions “are so outdated that security updates are no longer offered for them,” the German Federal Office for Informa.....»»
ArmorCode Risk Prioritization provides visibility into security findings with business context
ArmorCode announced ArmorCode Risk Prioritization, providing a 3D scoring approach for managing application security risks. ArmorCode combines the three dimensions of technical severity ratings, unique business context, and insight on whether a threa.....»»
Vercara UltraAPI offers protection against malicious bots and fraudulent activity
Vercara has launched UltraAPI, a product suite that protects APIs and web applications from malicious bots and fraudulent activity while ensuring regulatory compliance. Powered by Cequence Security UltraAPI helps organizations protect applications an.....»»
Legit Security launches enterprise secrets scanning solution
Legit Security has unveiled its standalone enterprise secrets scanning product, which can detect, remediate, and prevent secrets exposure across the software development pipeline. An AI-powered solution that enables secrets discovery beyond source co.....»»
Researchers discover 125,000-year-old coastal ecosystem underneath spaceport in Kourou
In what is an intriguing mix of past and future, an international team of researchers, including some from the University of Bonn, has stumbled upon a surprising window to the past in Kourou in French Guiana. In the clay underneath the new launch pad.....»»