New infosec products of the week: February 9, 2024 2024-02-09 at 08:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Cisco, Metomic, OPSWAT, Qualys, and Varonis. Varonis MDDR helps organizations prevent data breaches Varonis introduced Varonis Managed Data Detection and Response (MDDR), a managed […]
New infosec products of the week: February 9, 2024 Read More »
Fortinet Warns of Critical FortiOS SSL VPN Vulnerability Under Active Exploitation 2024-02-09 at 07:46 By Fortinet has disclosed a new critical security flaw in FortiOS SSL VPN that it said is likely being exploited in the wild. The vulnerability, CVE-2024-21762 (CVSS score: 9.6), allows for the execution of arbitrary code and commands. “A out-of-bounds write vulnerability [CWE-787]
Fortinet Warns of Critical FortiOS SSL VPN Vulnerability Under Active Exploitation Read More »
India to make its digital currency programmable 2024-02-09 at 07:32 By Laura Dobberstein Reserve Bank also wants a national 2FA framework The Reserve Bank of India (RBI) announced on Thursday it would make its digital currency programmable, and ensure it can be exchanged when citizens are offline.… This article is an excerpt from The Register
India to make its digital currency programmable Read More »
Key strategies for ISO 27001 compliance adoption 2024-02-09 at 07:32 By Mirko Zorz In this Help Net Security interview, Robin Long, founder of Kiowa Security, shares insights on how best to approach the implementation of the ISO/IEC 27001 information security standard. Long advises organizations to establish a detailed project roadmap and to book certification audits
Key strategies for ISO 27001 compliance adoption Read More »
Learning to say “no” in your security career 2024-02-09 at 07:16 By Security leaders all want to prove their value, pull their weight, support the team. But saying no appropriately and strategically goes to the heart of leadership. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source
Learning to say “no” in your security career Read More »
The voices of security 2024-02-09 at 07:16 By From leadership advice to explorations of emerging security threats, guests on The Security Podcasts share career stories for the good of the industry. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source
The voices of security Read More »
Cybersecurity teams recognized as key enablers of business goals 2024-02-09 at 07:01 By Help Net Security 97% of office workers across the UK and US trust their cybersecurity team’s ability to prevent or minimize damage from cyberattacks, according to CybSafe. The study examining attitudes towards cybersecurity teams within organizations has uncovered that despite minor issues
Cybersecurity teams recognized as key enablers of business goals Read More »
How companies are misjudging their data privacy preparedness 2024-02-09 at 06:31 By Help Net Security In this Help Net Security video, Karen Schuler, Global Privacy & Data Protection Chair at BDO, discusses overconfidence in data privacy and data protection practices. There is an apparent disconnect between tech CFOs’ confidence and consumer perceptions. BDO’s 2024 Technology
How companies are misjudging their data privacy preparedness Read More »
Crime gang targeted jobseekers across Asia, looted two million email addresses 2024-02-09 at 06:17 By Laura Dobberstein That listing for a gig that looked too good to be true may have been carrying SQL injection code Singapore-based infosec firm Group-IB has detected a group that spent the last two months of 2023 stealing personal info
Crime gang targeted jobseekers across Asia, looted two million email addresses Read More »
How AI is revolutionizing identity fraud 2024-02-09 at 06:02 By Help Net Security Nearly half of businesses reported a growth in synthetic identity fraud, while biometric spoofs and counterfeit ID fraud attempts also increased, according to AuthenticID. Consumers and businesses alike are facing new challenges in today’s digital existence, from considering the ramifications of digital
How AI is revolutionizing identity fraud Read More »
Warning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA Gateways 2024-02-09 at 06:02 By Ivanti has alerted customers of yet another high-severity security flaw in its Connect Secure, Policy Secure, and ZTA gateway devices that could allow attackers to bypass authentication. The issue, tracked as CVE-2024-22024, is rated 8.3 out of 10 on the
Warning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA Gateways Read More »
How did China get so good at chips and AI? Congressional investigation blames American venture capitalists 2024-02-09 at 05:32 By Tobias Mann Capitalism made communism stronger The US has gone to great lengths to stifle China’s fledgling semiconductor industry and deprive it of the tools to develop AI models. Yet a newly published congressional report
Uncle Sam sweetens the pot with $15M bounty on Hive ransomware gang members 2024-02-09 at 05:02 By Jessica Lyons Honor among thieves about to be put to the test The US government has placed an extra $5 million bounty on Hive ransomware gang members – its second such reward in a year. And it also
Uncle Sam sweetens the pot with $15M bounty on Hive ransomware gang members Read More »
Mitchell Baker logs off for good as CEO of Firefox maker Mozilla 2024-02-09 at 04:16 By Thomas Claburn HTTP 301 Moved Permanently Mitchell Baker announced on Thursday she’s stepping down as CEO of Firefox maker Mozilla Corporation to resume her role as executive chair of the not-for-profit software house.… This article is an excerpt from
Mitchell Baker logs off for good as CEO of Firefox maker Mozilla Read More »
Google silences Bard, restrings it as Gemini with optional $20-a-month upgrade 2024-02-09 at 03:33 By Katyanna Quach Say Gemini again, I dare you. I double dare you. Say Gemini one more goddamn time Google on Thursday said it is bringing Gemini Ultra – its most powerful large language model yet – to the world in
Google silences Bard, restrings it as Gemini with optional $20-a-month upgrade Read More »
FBI: Give us warrantless Section 702 snooping powers – or China wins 2024-02-09 at 02:31 By Jessica Lyons Never mind the court orders obtained to thwart Volt Typhoon botnet Analysis The FBI’s latest PR salvo, as it fights to preserve its warrantless snooping powers on Americans via FISA Section 702, is more big talk of
FBI: Give us warrantless Section 702 snooping powers – or China wins Read More »
Fake LastPass lookalike made it into Apple App Store 2024-02-09 at 00:16 By Brandon Vigliarolo No walled garden can keep out every weed, we suppose LastPass says a rogue application impersonating its popular password manager made it past Apple’s gatekeepers and was listed in the iOS App Store for unsuspecting folks to download and install.…
Fake LastPass lookalike made it into Apple App Store Read More »
With $1B to burn on green tech, HSBC seeks Google’s help 2024-02-08 at 22:46 By Tobias Mann The clock’s ticking on those 2030 net zero climate goals Europe’s largest bank, HSBC, has tapped Google Cloud to make sure a proposed $1 billion in investments go to green tech startups and don’t end up in the
With $1B to burn on green tech, HSBC seeks Google’s help Read More »
New MacOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group 2024-02-08 at 22:31 By Andrei LAPUSNEANU Bitdefender researchers have discovered a new backdoor targeting Mac OS users. This previously undocumented family of malware is written in Rust and includes several interesting features. While the investigation is ongoing, we’re sending out this alert
New MacOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group Read More »
Ransomware Payments Surpassed $1 Billion in 2023: Analysis 2024-02-08 at 20:47 By Eduard Kovacs The payments made by victims in response to ransomware attacks doubled in 2023 compared to 2022, according to Chainalysis. The post Ransomware Payments Surpassed $1 Billion in 2023: Analysis appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
Ransomware Payments Surpassed $1 Billion in 2023: Analysis Read More »