By Keely Wilkins. Keely Wilkins is an Evangelist with the Office of the CTO as well as a Pre-Sales Security Engineer in Virginia. She has worked in the technology industry for nearly thirty years, holds an MS of Cybersecurity and a variety of certifications. Keely endeavors to find balance among transparency, predictability, and security. In …
Cyber security: The counterweight to cyber insurance Read More »
Intel launched on Tuesday its newest server chips, code-named Sapphire Rapids, which will form the backbone of server infrastructure in the public and private cloud. The chips have built-in security features the company says will prevent attackers from stealing high-value data from computer systems, ensure regulatory compliance, and maintain data sovereignty. These 4th Gen Intel …
Intel’s New Xeon Chip Pushes Confidential Computing to the Cloud Read More »
Intel launched on Tuesday its newest server chips, code-named Sapphire Rapids, which will form the backbone of server infrastructure in the public and private cloud. The chips have built-in security features the company says will prevent attackers from stealing high-value data from computer systems, ensure regulatory compliance, and maintain data sovereignty. These 4th Gen Intel …
Intel’s New Xeon Chip Pushes Confidential Computing to the Cloud Read More »
42Crunch has joined the Microsoft Intelligent Security Association (MISA), a group of security technology providers who have integrated their solutions with Microsoft’s security technology products to better defend against a world of increasing threats. 42Crunch has integrated with Microsoft Sentinel to provide enterprises with end-to-end API protection and visibility, critical to the success of their …
42Crunch integrates with Microsoft to provide enterprises with end-to-end API protection Read More »
Here, I’ll show you why digital resilience is key. Over the past decade, the world has witnessed massive digital transformation, with more connected devices, more system interdependence from business ecosystems, and an even greater reliance on the internet for critical communications. Many employees increasingly can work from anywhere via mobile and home office based devices, …
Why Digital Resilience Is Key In An Uncertain World Read More »
According to leaks reported last week, the company that owns Dungeons and Dragons (D&D) is planning to revoke the open license that has, since the year 2000, applied to a wide range of unofficial, commercial products that build on the mechanics of Dungeons and Dragons. The report indicates that this wouldn’t simply be a change …
Schneider Electric partners with BitSight to develop a global Operational Technology (OT) Risk Identification and Threat Intelligence capability. In recent years, both opportunistic and advanced cyber threat actors have shown increased willingness to target industrial and operational sites. Schneider Electric and BitSight each see their partnership as an important step in furthering their commitment to …
Schneider Electric collaborates with BitSight to enhance OT exposure detection Read More »
Share this… An auction of Banksy works to raise funds to help victims of the Russian invasion of Ukraine was attacked by hackers from Russia, event organizers said Tuesday. The bid, announced by the Legacy of War Foundation, concerns 50 serigraphs by the British artist, estimated at between 5,550 euros and 6,100 dollars (from 100,000 …
Massive cyber attack by Russian hackers against Banksy art auction to benefit Ukraine Read More »
by Paul Ducklin As far as we can tell, there are a whopping 2874 items in this month’s Patch Tuesday update list from Microsoft, based on the CSV download we just grabbed from Redmond’s Security Update Guide web page. (The website itself says 2283, but the CSV export contained 2875 lines, where the first line …
Microsoft Patch Tuesday: One 0-day; Win 7 and 8.1 get last-ever patches Read More »
Waterfall Security Solutions announced a collaboration agreement with Yokogawa, a provider of industrial automation and test and measurement solutions. This new collaboration will make Waterfall’s Unidirectional Gateway cybersecurity products and technologies available to Yokogawa’s customers globally. In a world where cyber threats to industrial operations continue to become more powerful and more pervasive, making unidirectional …
Waterfall Security Solutions partners with Yokogawa to improve industrial security Read More »
Share this… A new complaint has been filed against Apple, accusing the corporation of monitoring iPhone users’ device data even when those users have requested that tracking be turned off. The lawsuit argues that Apple “illegally captures and utilizes customers’ personal information and activities.” In addition, the case alleges that the iPhone giant violated the …
Simeio’s acquisition of PathMaker Group (PMG) is a key strategic move that complements Simeio’s organic strategy of expanding into new industries and talent pools and adding new capabilities around identity orchestration and automation. The acquisition also strengthens Simeio’s presence in the utilities, travel, and logistics industries and further expands Simeio’s North American presence with its …
Simeio acquires PMG to protect digital identities Read More »
NetSPI has acquired nVisium to further scale its offensive security solutions and address heightened demand for human-delivered penetration testing. nVisium will support NetSPI’s continued efforts to deliver strategic security testing solutions to enterprises. With the acquisition, NetSPI now has over 450 offensive security experts globally who can support and scale to meet the needs of …
NetSPI acquires nVisium to scale its offensive security solutions Read More »
Patch Tuesday Microsoft fixed 98 security flaws in its first Patch Tuesday of 2023 including one that’s already been exploited and another listed as publicly known. Of the new January vulnerabilities, 11 are rated critical because they lead to remote code execution. The bug that’s under exploit, tracked as CVE-2023-21674, is an advanced local procedure …
First Patch Tuesday of the year explodes with in-the-wild exploit fix Read More »
Hey there, I hope you’ve been doing well! Annual Review Last week I invited you to share any annual review or similar resources you liked. Big thanks to Chris White, Nick Arvanitis, Tad Whitaker, and others who contributed links! Alternatively, your approach to 2023 could be: Sponsor 📢 This Is How To Punch Cloud Ransomware …
As we head into a new year, I wanted to share with the Darktrace Community a recap of the new innovations that came out of the Cyber AI Research Centre. As always, our entire Darktrace team thanks you for your input into how we can continue to evolve our products as we work to free …
In a new post on the Inside Tech Media blog, our colleagues discuss the “Quantum Computing Cybersecurity Preparedness Act,” which President Biden signed into law in the final days of 2022. The Act recognizes that current encryption protocols used by the federal government might one day be vulnerable to compromise as a result of quantum computing, …
President Biden Signs Quantum Computing Cybersecurity Preparedness Act Read More »
AT&T, the American telecommunications giant, has confirmed to Restore Privacy that it is investigating claims about a data breach impacting its customers. This is in response to a January 6 post on the hacking forum Breached, where a user claimed to hold an AT&T database containing the information of 37,000,000 subscribers. The threat actor published …
AT&T Says It’s Investigating Claims About a Data Breach Read More »
Too Long; Didn’t ReadOpenAI’s ChatGPT is an NLP system that can be used to create conversation bots, automated customer service assistants, or even chatbots for personal use. Check Point Research recently conducted an analysis of underground hacking communities and found that many of them are actively using AI-based tools for malicious purposes. The most common …
Governance & Risk Management , Zero Trust Ex-FBI Special Agent Taddeo Wants to Capture Zero Trust Opportunities With the DOD Michael Novinson (MichaelNovinson) • January 10, 2023 Leo Taddeo, president and CEO, Appgate (Image: Appgate) Appgate has promoted CISO and Federal President Leo Taddeo to CEO and tasked him with capturing zero trust …
Secure Access Vendor Appgate Promotes CISO Leo Taddeo to CEO Read More »
3rd Party Risk Management , Governance & Risk Management HHS Breach Tally Signals Biggest Risks, Threats Likely in 2023 Marianne Kolbasuk McGee (HealthInfoSec) • January 10, 2023 The HHS OCR HIPAA Breach Reporting website lists reported health data breaches affecting 500 or more individuals. Hacking and business associate incidents were the crux of …
Analysis: Third-Party Health Data Breaches Dominated in 2022 Read More »
Cloud Security , Security Operations Kinsing Malware Targeting Kubernetes Environment, Oracle Flaw Prajeet Nair (@prajeetspeaks) • January 10, 2023 Researchers have found that Kinsing malware gained access to Kubernetes servers by exploiting misconfigured and exposed PostgreSQL servers. The threat actors gained access by exploiting weakly configured PostgreSQL containers and vulnerable container images. See …
Misconfigured PostgreSQL Used to Target Kubernetes Clusters Read More »
CFTC Takes First-Ever Action Against an Oracle Price Manipulation Strategy Rashmi Ramesh (rashmiramesh_) • January 10, 2023 Image: Candoy/Pixabay The man allegedly behind a $114 million scheme to defraud decentralized cryptocurrency platform Mango Markets now faces a civil lawsuit from U.S. federal regulators as well as a criminal prosecution. See Also: Mobile App …
Mango Markets Hacker in US Regulator’s Crosshairs Read More »
More than 10,000 beneficiaries of a local branch of the French social security agency CAF, or Family Allowance Fund, saw their data exposed for about 18 months, after a file containing personal information was sent to a service provider. The mistake, discovered by France Info — Radio France’s news and investigation service — just before …
Data leak exposes information of 10,000 French social security beneficiaries Read More »
I wish I had a dollar for every time we have collectively had a conversation about a zero day — each and every time we’ve discussed the dangerous nature of the latest vulnerability. I would have a nice tidy sum squirreled away by this point. As security practitioners, we have developed a finely honed ability …
Artificial intelligence will soon take center stage in your contact center — if it hasn’t already. Artificial intelligence (AI) uptake increased dramatically over the last few years. A 2022 PwC report revealed that more than 70% of companies were already using or planning to deploy AI in some form within their business operations. Business leaders …
On August 25th, 2022, LastPass announced their discovery of “unusual activity within portions of the LastPass development environment.” On December 22, 2022, LastPass updated their statement based on further investigation, and announced that source code, credentials, and encryption keys had been compromised, resulting in the attacker(s) copying encrypted customer data. This document provides an overview …
Share this… In the previous year, hackers used ransomware to successfully attack over one hundred networks that were affiliated with local government bodies. The most recent year for which the Treasury Department has given statistics is 2021, and it has predicted that ransomware attacks would cost firms in the United States a total of $886 …
San Francisco transit police confidential data leaked by ransomware gang Read More »
The seller claims to offer alleged access to an “archive of correspondence” for six months, as well as IP addresses and registered cellphone numbers of active Telegram users. The cybersecurity researchers at SafetyDetectives have discovered a dark web marketplace claiming to offer its customers access to Telegram’s internal server for $20,000. The price, according to …
Alleged Insider Access to Telegram Servers Sold on the Dark Web Read More »
The latest version of Android Auto is now available for Android phone users with compatible vehicles. It includes a new adaptive interface with improvements to navigation, communication, and entertainment features.Read more
