Day: July 19, 2022

Veza partners with Google Cloud to secure cloud environments and data from cybercrime and threats

Veza announces that the company has entered a partnership with Google Cloud, including product integration that enables Google Cloud customers to harness the capabilities of Veza’s data security platform across their multi-cloud ecosystem. Veza, which recently launched in April 2022 after two years of building in stealth, makes it easy to understand, manage, and control …

Veza partners with Google Cloud to secure cloud environments and data from cybercrime and threats Read More »

Google Antitrust Judge Jumps Into Rare 'Hot Tub' Hearing

By Bonnie Eslinger (July 19, 2022, 11:43 PM EDT) — A California federal judge peppered economic experts with questions Tuesday during a rare “hot tub” hearing over a proposed antitrust class action for potentially 90 million consumers accusing Google of unlawfully blocking competition to its Google Play app store and levying excessive fees on developers …

Google Antitrust Judge Jumps Into Rare 'Hot Tub' Hearing Read More »

Conceal and Carahsoft join forces to protect government customers from ransomware

Conceal announced a partnership with Carahsoft to protect government agencies from ransomware using the Conceal Platform which incorporates intelligence-grade, zero trust technology. “Conceal has developed a powerful new approach to ransomware protection that uses isolation to prevent malware from targeting an organization’s users and infrastructure, and executing on endpoints,” said Craig P. Abod, Carahsoft President. …

Conceal and Carahsoft join forces to protect government customers from ransomware Read More »

ePlus Acquires Future Com to Strengthen Security Operations

The Combined ePlus-Future Com Will Help Customers Marry Cloud-Based SIEM With SOAR Michael Novinson (MichaelNovinson) • July 19, 2022     Lee Waskevich, vice president of strategy for security and networking, ePlus A Washington, D.C.-area technology services giant purchased a boutique security services provider to strengthen its security operations strategy and support around managed services. …

ePlus Acquires Future Com to Strengthen Security Operations Read More »

GPS Tracker In Made China Conduit For Vehicle Hacking

Six Vulnerabilities Detected With No Available Patch Prajeet Nair (@prajeetspeaks) • July 19, 2022     Severe vulnerabilities in a popular GPS tracking device made in China could allow hackers to remotely surveil vehicles’ location and shut down their engines, say security researchers in a warning echoed by the U.S. government. See Also: OnDemand Crowdsourced …

GPS Tracker In Made China Conduit For Vehicle Hacking Read More »

Cloud Security Alliance Releases Guidance on Third-Party Vendor Risk Management in Healthcare

Document outlines the security challenges facing the use of third-party vendors for Healthcare Delivery Organizations and offers assessment and protection recommendations SEATTLE – July 20, 2022 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Third-Party …

Cloud Security Alliance Releases Guidance on Third-Party Vendor Risk Management in Healthcare Read More »

CCSK Success Stories: From the Head of Digital Architecture

This is part of a blog series interviewing cybersecurity professionals who have earned their Certificate of Cloud Security Knowledge (CCSK). In these blogs we invite individuals to share some of the challenges they face in managing security for cloud computing and how they were able to leverage knowledge from the CCSK in their current roles. …

CCSK Success Stories: From the Head of Digital Architecture Read More »

Mindtree collaborates with Rubrik to launch a unified cyber-recovery platform

Mindtree announced that it has partnered with Rubrik to launch a unified cyber-recovery platform named MINDTREE VAULT. The platform combines Mindtree’s program management, cloud, data, and cybersecurity capabilities, best practices, and accelerators, with Rubrik’s data resilience, data observability, and data recovery capabilities. It enables organizations to work through the full scope of recovery, including assessment, …

Mindtree collaborates with Rubrik to launch a unified cyber-recovery platform Read More »

Security flaws in GPS trackers can be abused to cut off fuel to vehicles, CISA warns

A handful of vulnerabilities, some critical, in MiCODUS GPS tracker devices could allow criminals to disrupt fleet operations and spy on routes, or even remotely control or cut off fuel to vehicles, according to CISA. And there’s no fixes for these security flaws. Two of the bugs received a 9.8 out of 10 CVSS severity …

Security flaws in GPS trackers can be abused to cut off fuel to vehicles, CISA warns Read More »

Arch Insurance Beats Vizio's Suit Over $17M Privacy Deal

By Lauren Berg (July 19, 2022, 11:11 PM EDT) — A California federal judge Tuesday tossed for good Vizio Inc.’s lawsuit seeking to force its excess insurer, Arch Insurance Co., to cover a $17 million settlement in multidistrict litigation accusing the TV maker of selling data without consumers’ consent. U.S. District Judge Otis D. Wright …

Arch Insurance Beats Vizio's Suit Over $17M Privacy Deal Read More »

AppViewX raises $20 million to help organizations reduce their digital risk

AppViewX announced that the company has raised $20 million in a Series B funding round. Led by growth equity firm and existing investor, Brighton Park Capital (“Brighton Park”), the additional investment will help maximize AppViewX’s go-to-market operations, product development, and overall revenue growth strategies on its mission to help Global 2000 organizations to reduce risk …

AppViewX raises $20 million to help organizations reduce their digital risk Read More »

Push Security raises $4 million to introduce user-centric approach to securing SaaS

Push Security announced it completed a $4 million seed round led by Decibel and backed by prominent industry leaders, including Jon Oberheide, co-founder of Duo Security, and Haroon Meer, CEO and founder of Thinkst. With this funding, Push will continue to develop technology that guides employees to make smart decisions while they are using company …

Push Security raises $4 million to introduce user-centric approach to securing SaaS Read More »

Cloud Data Protection

Written by Luigi Belvivere, Elena Minghelli, and Sara Frati of NTT DATA. Introduction In the digital era and its digital transition, business and institutions have clearly understood that a robust cloud security is essential. It is well known that security threats evolve in parallel with the evolution of technology and are becoming more and more …

Cloud Data Protection Read More »

Researchers Warn of New Variants of ChromeLoader Browser in the Wild

ChromeLoader malware is spread through pirated games, malicious QR codes, and cracked software that hijacks the victim’s web browser and inserts ads into webpages. Palo Alto Networks’ Unit 42 researchers have uncovered new variants of the notorious ChromeLoader info-stealer malware, codenamed Choziosi Loader and ChromeBack. The discovery indicates that the malware is still evolving. Researchers …

Researchers Warn of New Variants of ChromeLoader Browser in the Wild Read More »

Stop Modern Identity-Based Attacks in Chrome

This blog was originally published by CrowdStrike here. Written by Eamonn Ryan, Matthew Puckett, and Liviu Arsene of CrowdStrike. A novel technique that reduces the overhead in extracting sensitive data from Chromium browser’s memory was recently found by researchers from CyberArk Labs Existing access to the targeted system is required before leveraging the technique Successful …

Stop Modern Identity-Based Attacks in Chrome Read More »

John Romero is starting work on a new FPS

On Tuesday, John Romero announced his studio has a new first-person shooter in development with an as-of-yet unnamed major publisher. Romero Games is currently hiring for the project. The famed designer is widely known for his work on Wolfenstein 3D, Doom, and Quake, so the fact that he’s got another…Read more

Federal Agencies Invest More Each Year in Cloud as Benefits Outweigh Challenges

Federal agencies are having success migrating to cloud services, but training employees to use the new technology and navigating regulatory hurdles are still factors that must be addressed during the transition, federal IT experts explained during the Advanced Technology Academic Research Center’s 2022 Cloud Migration Virtual Summit on Tuesday.  Skip Jentsch, a cloud products manager …

Federal Agencies Invest More Each Year in Cloud as Benefits Outweigh Challenges Read More »

How to Mitigate Fraud Risks and Best Serve eCommerce Customers

How to Mitigate Fraud Risks and Best Serve eCommerce Customers | CIO Skip to content iStock/ AsiaVision Technologies such as wireless, mobile apps and digital payments have given consumers more options than ever for purchasing products and services. This ongoing evolution in technology-based payment choices is both creating opportunities for and putting pressure on merchants …

How to Mitigate Fraud Risks and Best Serve eCommerce Customers Read More »

DOJ Seizes $500,000 From North Korean Attacks on Healthcare

Feds Clawed Back Money Paid in ‘Maui’ Ransomware Assaults Marianne Kolbasuk McGee (HealthInfoSec) • July 19, 2022     The U.S. Department of Justice clawed back about $500,000 worth of illicit cryptocurrency from North Korean hackers who launched Maui ransomware assaults on at least two U.S. medical facilities. See Also: OnDemand Crowdsourced Security and DevOps: …

DOJ Seizes $500,000 From North Korean Attacks on Healthcare Read More »

State-backed threat actors use Google Drive, Dropbox to launch attacks

Dive Brief: The Russia-linked threat actor responsible for the SolarWinds attack is behind a series of attacks, leveraging Google Drive and other cloud-based storage systems to attack several Western diplomatic missions, research from Palo Alto Network’s Unit 42 released Tuesday shows.  Campaigns in May and June 2022 targeted foreign embassies in Brazil and Portugal using …

State-backed threat actors use Google Drive, Dropbox to launch attacks Read More »

New House Bill Threatens to Expand the TCPA to Regulate Text Messages

Last week, six House Democrats introduced H.R. 8334, the Robotext Scam Prevention Act, which seeks to expand federal telemarketing laws to, among other things, expressly cover text messaging.       It would likely surprise some people to hear that the Telephone Consumer Protection Act (“TCPA”)—the most-consequential statute for consumer telemarketing, usually cited as the largest feeder …

New House Bill Threatens to Expand the TCPA to Regulate Text Messages Read More »

FBI Warns Fake Crypto Apps are now Milking Investors of Millions!

Threat players now offer victims what seem to be investment services from legitimate companies to tempt them to downloading malicious apps aimed at fraud. They have defrauded 244 US investors of about $42m through fake cryptocurrency apps that exploit people’s legitimate investments in digital currency, the FBI has revealed. Fooled People The agency observed a …

FBI Warns Fake Crypto Apps are now Milking Investors of Millions! Read More »