News - Security Ticks

Organizations invest in AI tools to elevate email security

Artificial Intelligence, cybersecurity, Email, email security, Ironscales, News, Osterman Research, report, social engineering / SecurityTicks

Organizations invest in AI tools to elevate email security 21/08/2023 at 06:39 By Help Net Security To counteract new and emerging threat methods enhanced by artificial intelligence, specialized email security vendors are leveraging a synergy of AI and human insights to enhance email security, according to IRONSCALES and Osterman Research. Cybercriminals are already using AI […]

React to this headline:

Organizations invest in AI tools to elevate email security Read More »

Week in review: VPNs vulnerable to TunnelCrack attacks, Cybertech Africa 2023

News, Week in review / SecurityTicks

Week in review: VPNs vulnerable to TunnelCrack attacks, Cybertech Africa 2023 20/08/2023 at 11:02 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Deception technology and breach anticipation strategies In this Help Net Security interview, Xavier Bellekens, CEO of Lupovis, explains how the implementation of

React to this headline:

Week in review: VPNs vulnerable to TunnelCrack attacks, Cybertech Africa 2023 Read More »

Zimbra users in Europe, Latin America face phishing threat

credentials, Don't miss, ESET, Europe, Government, Hot stuff, News, phishing, SMBs, social engineering / SecurityTicks

Zimbra users in Europe, Latin America face phishing threat 18/08/2023 at 11:04 By Help Net Security ESET researchers have uncovered a mass-spreading phishing campaign aimed at collecting Zimbra account users’ credentials. Zimbra Collaboration is an open-core collaborative software platform, a popular alternative to enterprise email solutions. About the Zimbra phishing campaign The campaign has been

React to this headline:

Zimbra users in Europe, Latin America face phishing threat Read More »

Reinventing OT security for dynamic landscapes

asvin, authentication, CISO, critical infrastructure, cybersecurity, Don't miss, Features, Hot stuff, how-to, News, opinion, regulation, Risk Management, strategy, tips, zero trust / SecurityTicks

Reinventing OT security for dynamic landscapes 18/08/2023 at 07:05 By Mirko Zorz From understanding the challenges of disparate OT protocols and the increasing convergence with IT to grappling with the monumental role of human error, our latest interview with Rohit Bohara, CTO at asvin, delves deep into the landscape of OT security. As cloud solutions

React to this headline:

Reinventing OT security for dynamic landscapes Read More »

New infosec products of the week: August 18, 2023

Action1, Bitdefender, MongoDB, Netskope, News, SentinelOne / SecurityTicks

New infosec products of the week: August 18, 2023 18/08/2023 at 06:36 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Action1, MongoDB, Bitdefender, SentinelOne and Netskope. Action1 platform update bridges the gap between vulnerability discovery and remediation Action1 Corporation has released a new version

React to this headline:

New infosec products of the week: August 18, 2023 Read More »

30% of phishing threats involve newly registered domains

BEC scams, Cloudflare, Email, human error, identity, News, phishing, report, zero trust / SecurityTicks

30% of phishing threats involve newly registered domains 18/08/2023 at 05:31 By Help Net Security Phishing remains the most dominant and fastest growing internet crime, largely due to the ubiquity of email and the ceaseless issue of human error that is preyed upon by today’s threat actors, according to Cloudflare. While business email compromise (BEC)

React to this headline:

30% of phishing threats involve newly registered domains Read More »

Federal agencies gear up for zero trust executive order deadline

automation, cybersecurity, Government, News, report, SOAR, Swimlane, USA, zero trust / SecurityTicks

Federal agencies gear up for zero trust executive order deadline 18/08/2023 at 05:04 By Help Net Security Federal agencies are prepared to meet the zero trust executive order requirements from the Biden Administration with just over a year until the deadline, according to Swimlane. The research investigated the confidence level of these agencies in meeting

React to this headline:

Federal agencies gear up for zero trust executive order deadline Read More »

Citrix ShareFile vulnerability actively exploited (CVE-2023-24489)

Citrix, Citrix ShareFile, Don't miss, enterprise, file-sharing, Hot stuff, News, PoC, security update, vulnerability / SecurityTicks

Citrix ShareFile vulnerability actively exploited (CVE-2023-24489) 17/08/2023 at 14:16 By Zeljka Zorz CVE-2023-24489, a critical Citrix ShareFile vulnerability that the company has fixed in June 2023, is being exploited by attackers. GreyNoise has flagged on Tuesday a sudden spike in IP addresses from which exploitation attempts are coming, and the Cybersecurity and Infrastructure Agency (CISA)

React to this headline:

Citrix ShareFile vulnerability actively exploited (CVE-2023-24489) Read More »

Phishers use QR codes to target companies in various industries

Cofense, Don't miss, Hot stuff, Microsoft, News, phishing, QR codes / SecurityTicks

Phishers use QR codes to target companies in various industries 17/08/2023 at 13:01 By Helga Labus A phishing campaign using QR codes has been detected targeting various industries, with the aim to acquire Microsoft credentials. “The most notable target, a major Energy company based in the US, saw about 29% of the over 1000 emails

React to this headline:

Phishers use QR codes to target companies in various industries Read More »

The road ahead for ecommerce fraud prevention

ClearSale, cybersecurity, Don't miss, e-commerce, Features, fraud, Hot stuff, identity, machine learning, News, online payment, opinion, strategy, tips / SecurityTicks

The road ahead for ecommerce fraud prevention 17/08/2023 at 07:36 By Mirko Zorz Ecommerce platforms are incorporating sophisticated fraud detection measures, but fraudsters, too, are refining their strategies. In this Help Net Security interview, Eduardo Mônaco, CEO at ClearSale, explains the complexities of ecommerce fraud, discussing the evolution of fraudster tactics, the effectiveness of social

React to this headline:

The road ahead for ecommerce fraud prevention Read More »

Heavy workloads driving IT professionals to resign

Artificial Intelligence, automation, burnout, hybrid workforce, Ivanti, machine learning, monitoring, News, professional, remote working, report / SecurityTicks

Heavy workloads driving IT professionals to resign 17/08/2023 at 06:32 By Help Net Security A quarter of IT professionals are seriously contemplating leaving their current jobs within the next six months, potentially costing US companies upwards of 145 billion dollars, according to Ivanti. These statistics highlight the pressing need for organizations to relieve the burden

React to this headline:

Heavy workloads driving IT professionals to resign Read More »

Findlargedir: Find all “blackhole” directories with a huge amount of filesystem entries

GitHub, News, open source, software / SecurityTicks

Findlargedir: Find all “blackhole” directories with a huge amount of filesystem entries 17/08/2023 at 06:04 By Help Net Security Findlargedir is a tool written to help quickly identify “black hole” directories on any filesystem having more than 100k entries in a single flat structure. When a directory has many entries (directories or files), getting a

React to this headline:

Findlargedir: Find all “blackhole” directories with a huge amount of filesystem entries Read More »

LinkedIn users targeted in account hijacking campaign

account hijacking, brute-force, Don't miss, hacking, Hot stuff, LinkedIn, News / SecurityTicks

LinkedIn users targeted in account hijacking campaign 16/08/2023 at 17:03 By Helga Labus LinkedIn users are being targeted in an ongoing account hijacking campaign, are getting locked out of their accounts; the hacked accounts are held for ransom. Users discussing their compromised LinkedIn accounts. (Source: Cyberint) The LinkedIn account hijacking campaign The Cyberint research team

React to this headline:

LinkedIn users targeted in account hijacking campaign Read More »

(Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise

backdoor, Citrix, Don't miss, enterprise, Fox-IT, Hot stuff, Mandiant, News, vulnerability, web shell / SecurityTicks

(Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise 16/08/2023 at 13:49 By Zeljka Zorz Administrators of Citrix NetScaler ADC and Gateway appliances should check for evidence of installed webshells even if they implemented fixes for CVE-2023-3519 quickly: A recent internet scan by Fox-IT researchers has revealed over 1,800 backdoored NetScaler devices,

React to this headline:

(Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise Read More »

Ivanti Avalanche vulnerable to attack by unauthenticated, remote attackers (CVE-2023-32560)

Don't miss, Hot stuff, Ivanti, News, security update, Tenable, vulnerability / SecurityTicks

Ivanti Avalanche vulnerable to attack by unauthenticated, remote attackers (CVE-2023-32560) 16/08/2023 at 12:50 By Helga Labus Two stack-based buffer overflow bugs (collectively designated as CVE-2023-32560) have been discovered in Ivanti Avalanche, an enterprise mobility management solution. A buffer overflow arises when the data in a buffer surpasses its storage capacity. This surplus data spills into

React to this headline:

Ivanti Avalanche vulnerable to attack by unauthenticated, remote attackers (CVE-2023-32560) Read More »

How CISOs break down complex security challenges

CISO, cyber resilience, cyber risk, cybersecurity, digital transformation, Don't miss, Features, Hot stuff, News, opinion, Risk Management, strategy, tips, Uptycs / SecurityTicks

How CISOs break down complex security challenges 16/08/2023 at 07:33 By Mirko Zorz The role of the CISO has evolved into a critical position that encompasses many responsibilities aimed at safeguarding digital assets, preserving data integrity, and mitigating cyber threats. In essence, the role of the CISO is a complex and ever-evolving one that demands

React to this headline:

How CISOs break down complex security challenges Read More »

Passwordless is more than a buzzword among cybersecurity pros

authentication, Black Hat, Black Hat USA 2023, conferences, cybersecurity, Delinea, News, passwordless, passwords / SecurityTicks

Passwordless is more than a buzzword among cybersecurity pros 16/08/2023 at 06:37 By Help Net Security Password security remains highly relevant even as cybersecurity strategies move toward a passwordless future. Of the 100 Black Hat USA 2023 attendees Delinea polled, 54% said passwordless is a viable concept, while 79% agreed that passwords are evolving or

React to this headline:

Passwordless is more than a buzzword among cybersecurity pros Read More »

Cybertech Africa 2023 marks the first gathering for innovation and networking in the region

5G, Artificial Intelligence, CISO, conferences, critical infrastructure, cybersecurity, Cybertech Global, IoT, News, Ransomware / SecurityTicks

Cybertech Africa 2023 marks the first gathering for innovation and networking in the region 16/08/2023 at 06:02 By Help Net Security Last week, on August 1-2, 2023, Cybertech arrived at the Kigali Convention Center in Kigali, Rwanda, in partnership with the Rwanda Ministry of ICT, Rwanda’s National Cyber Security Authority, the Rwanda Convention Bureau, and

React to this headline:

Cybertech Africa 2023 marks the first gathering for innovation and networking in the region Read More »

Balancing telecom security, law enforcement, and customer trust

5G, Artificial Intelligence, awareness, BlackDice Cyber, cybersecurity, Don't miss, Features, Hot stuff, IoT, law enforcement, machine learning, mobile devices, News, opinion, penetration testing, Privacy Policy, remote working, surveillance, telecommunications, zero trust / SecurityTicks

Balancing telecom security, law enforcement, and customer trust 15/08/2023 at 07:48 By Mirko Zorz In this Help Net Security interview, Mark O’Neill, CTO at BlackDice Cyber, talks about collaboration, transparent policies, and a security-first mindset. As 5G and IoT emerge, robust measures and AI will navigate challenges and shape the telecom industry’s future. Considering the

React to this headline:

Balancing telecom security, law enforcement, and customer trust Read More »

6 free artificial intelligence TED Talks you can watch right now

Artificial Intelligence, ChatGPT, Don't miss, News, OpenAI / SecurityTicks

6 free artificial intelligence TED Talks you can watch right now 15/08/2023 at 06:38 By Help Net Security Artificial intelligence (AI) is no longer a fragment of futuristic imagination – it’s redefining the fabric of our daily experiences and corporate strategies. The world’s tech giants are making assertive strides in AI. The TED Talks listed

React to this headline:

6 free artificial intelligence TED Talks you can watch right now Read More »