AWS launches new cloud security features 2025-06-18 at 17:59 By Zeljka Zorz Amazon Web Services has announced new and improved security features at its annual AWS re:Inforce cloud security conference. The company has also introduced features aimed at speeding up backup recovery, and has announced the completion of its push to protect all AWS root […]
React to this headline:
AWS launches new cloud security features Read More »
Corsha Raises $18 Million to Enhance and Extend Machine-to-Machine Security 2025-04-08 at 15:02 By Kevin Townsend The new funds will be used to extend Corsha’s reach into critical infrastructure and further improve its own use of AI. The post Corsha Raises $18 Million to Enhance and Extend Machine-to-Machine Security appeared first on SecurityWeek. This article
React to this headline:
Corsha Raises $18 Million to Enhance and Extend Machine-to-Machine Security Read More »
UK Software Firm Fined £3 Million Over Ransomware-Caused Data Breach 2025-03-27 at 17:32 By Eduard Kovacs The UK ICO has fined Advanced Computer Software Group £3 million ($3.8 million) over a 2022 data breach resulting from a ransomware attack. The post UK Software Firm Fined £3 Million Over Ransomware-Caused Data Breach appeared first on SecurityWeek.
React to this headline:
UK Software Firm Fined £3 Million Over Ransomware-Caused Data Breach Read More »
Account takeover detection: There’s no single tell 2025-02-24 at 14:48 By Zeljka Zorz Account takeover (ATO) is one of the most prevalent attack types; Proofpoint says that in 2024, 99% of the customer tenants the company monitors were hit with at least one account takeover attempt, and 62% of the customers experienced at least one
React to this headline:
Account takeover detection: There’s no single tell Read More »
CISA: Use Signal or other secure communications app 2024-12-20 at 14:57 By Zeljka Zorz In the wake of the widespread compromise of US telecom giants’ networks by Chinese hackers and the FBI advising Americans to use end-to-end encrypted communications, CISA is advising “highly targeted individuals” – senior government officials and politicians – to lock down
React to this headline:
CISA: Use Signal or other secure communications app Read More »
Faraway Russian hackers breached US organization via Wi-Fi 2024-11-25 at 19:03 By Zeljka Zorz Forest Blizzard, a threat group associated with Russia’s GRU military intelligence service, repeatedly breached a US-based organization via compromised computer systems of nearby firms, which they leveraged to authenticate to the target’s enterprise Wi-Fi network. The repeated attacks Volexity, a company
React to this headline:
Faraway Russian hackers breached US organization via Wi-Fi Read More »
All Google Cloud users will have to enable MFA by 2025 2024-11-06 at 17:07 By Zeljka Zorz Google has announced that, by the end of 2025, multi-factor authentication (MFA) – aka 2-step verification – will become mandatory for all Google Cloud accounts. “Given the sensitive nature of cloud deployments — and with phishing and stolen
React to this headline:
All Google Cloud users will have to enable MFA by 2025 Read More »
How hybrid workforces are reshaping authentication strategies 2024-10-08 at 07:01 By Mirko Zorz In this Help Net Security interview, Brian Pontarelli, CEO at FusionAuth, discusses the evolving authentication challenges posed by the rise of hybrid and remote workforces. He advocates for zero trust strategies, including MFA and behavioral biometrics, to enhance security while maintaining productivity.
React to this headline:
How hybrid workforces are reshaping authentication strategies Read More »
Vulnerability allows Yubico security keys to be cloned 2024-09-04 at 13:31 By Zeljka Zorz Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware security keys and modules that may allow attackers to clone the devices. But the news is not as catastrophic as it may seem at first glance. “The attacker would need
React to this headline:
Vulnerability allows Yubico security keys to be cloned Read More »
Microsoft Announces Mandatory MFA for Azure 2024-08-19 at 16:46 By Ionut Arghire Microsoft is implementing automatic enforcement of multi-factor authentication (MFA) for all Azure users starting October. The post Microsoft Announces Mandatory MFA for Azure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:
React to this headline:
Microsoft Announces Mandatory MFA for Azure Read More »
Mandatory MFA for Azure sign-ins is coming 2024-08-19 at 12:31 By Zeljka Zorz Microsoft is making multi-factor authentication (MFA) – “one of the most effective security measures available” – mandatory for all Azure sign-ins. Preparing for mandatory MFA for Azure The plan is for the shift to happen in two phases: October 2024: MFA will
React to this headline:
Mandatory MFA for Azure sign-ins is coming Read More »
Review: Action1 – Simple and powerful patch management 2024-07-30 at 07:16 By Help Net Security Although endpoint anti-malware and other security controls are now standard at the operating system level, keeping all endpoint software up-to-date and secure remains an open issue for many organizations. Patch management is not yet a commodity, and substantial improvements can
React to this headline:
Review: Action1 – Simple and powerful patch management Read More »
Millions Impacted by Breach at Advance Auto Parts Linked to Snowflake Incident 2024-07-12 at 17:31 By Ionut Arghire Advance Auto Parts says the personal information of 2.3 million was compromised after hackers accessed its Snowflake account. The post Millions Impacted by Breach at Advance Auto Parts Linked to Snowflake Incident appeared first on SecurityWeek. This
React to this headline:
Millions Impacted by Breach at Advance Auto Parts Linked to Snowflake Incident Read More »
Info of 2,3+ million individuals stolen in Advance Auto Parts data breach 2024-07-12 at 14:46 By Zeljka Zorz Personal information of over 2,3 million individuals has been stolen by attackers as part of the massive data grab via compromised Snowflake accounts without MFA protection, Advance Auto Parts has confirmed by filing notices with the attorney
React to this headline:
Info of 2,3+ million individuals stolen in Advance Auto Parts data breach Read More »
Using Authy? Beware of impending phishing attempts 2024-07-11 at 15:46 By Zeljka Zorz Do you use Authy for your multi-factor authentication needs? If you do, you should keep an eye out for phishing attempts, as well as implement defenses against SIM swapping attacks. What happened? On July 1, Twilio – the company that develops the
React to this headline:
Using Authy? Beware of impending phishing attempts Read More »
Medibank breach: Security failures revealed (lack of MFA among them) 2024-06-18 at 17:31 By Zeljka Zorz The 2022 Medibank data breach / extortion attack perpetrated by the REvil ransomware group started by the attackers leveraging login credentials stolen from a private computer of an employee of a Medibank’s IT contractor. According to a statement by
React to this headline:
Medibank breach: Security failures revealed (lack of MFA among them) Read More »
AWS unveils new and improved security features 2024-06-12 at 18:31 By Zeljka Zorz At its annual re:Inforce conference, Amazon Web Services (AWS) has announced new and enhanced security features and tools. Additional multi-factor authentication option To facilitate the concerted push to get customers to secure their accounts with multiple authentication factors, AWS has added support
React to this headline:
AWS unveils new and improved security features Read More »
2024 sees continued increase in ransomware activity 2024-05-23 at 06:31 By Help Net Security In this Help Net Security video, Ryan Bell, Threat Intelligence Manager at Corvus Insurance, discusses how ransomware will continue to grow in 2024. In January, Corvus reported that global ransomware attacks in 2023 set a record high, surpassing 2022 by nearly
React to this headline:
2024 sees continued increase in ransomware activity Read More »
Fighting identity fraud? Here’s why we need better tech 2024-05-21 at 06:01 By Help Net Security In this Help Net Security video, Patrick Harding, Chief Architect at Ping Identity, discusses the state of identity fraud prevention. Businesses must adopt more advanced technologies to combat the advancing tactics of identity fraud. Organizations that do not implement
React to this headline:
Fighting identity fraud? Here’s why we need better tech Read More »
How MFA can improve your online security 2024-05-06 at 06:01 By Help Net Security In this Help Net Security round-up, we present excerpts from previously recorded videos in which security experts talk about multi-factor authentication (MFA). By requiring users to provide multiple forms of verification before granting access, MFA significantly enhances security posture, mitigating the
React to this headline:
How MFA can improve your online security Read More »