News

Microsoft 365 users targeted by phishers abusing Microsoft Forms

Adobe, Don't miss, Hot stuff, Microsoft 365, News, Perception Point, phishing /

Microsoft 365 users targeted by phishers abusing Microsoft Forms 2024-07-29 at 12:16 By Zeljka Zorz There has been an uptick in phishing campaigns leveraging Microsoft Forms this month, aiming to trick targets into sharing their Microsoft 365 login credentials. A malicious Microsoft form (Source: Perception Point) Malicious forms leading to phishing pages impersonating Microsoft 365 […]

Microsoft 365 users targeted by phishers abusing Microsoft Forms Read More »

Enhancing threat detection for GenAI workloads with cloud attack emulation

Cloud, cloud security, cybersecurity, Don't miss, Expert analysis, Expert corner, generative AI, Hot stuff, Mitigant, News, opinion, threat detection /

Enhancing threat detection for GenAI workloads with cloud attack emulation 2024-07-29 at 08:01 By Help Net Security Cloud GenAI workloads inherit pre-existing cloud security challenges, and security teams must proactively evolve innovative security countermeasures, including threat detection mechanisms. Traditional cloud threat detection Threat detection systems are designed to allow early detection of potential security breaches;

Enhancing threat detection for GenAI workloads with cloud attack emulation Read More »

Cirrus: Open-source Google Cloud forensic collection

cloud security, computer forensics, cybersecurity, digital forensics, Don't miss, GitHub, Hot stuff, News, open source, software, Sygnia /

Cirrus: Open-source Google Cloud forensic collection 2024-07-29 at 07:16 By Mirko Zorz Cirrus is an open-source Python-based tool designed to streamline Google Cloud forensic evidence collection. It can streamline environment access and evidence collection in investigations involving Google Workspace and GCP. The tool simplifies incident response activities and enhances an organization’s security posture. Key features

Cirrus: Open-source Google Cloud forensic collection Read More »

Why a strong patch management strategy is essential for reducing business risk

cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, patching, Qualys /

Why a strong patch management strategy is essential for reducing business risk 2024-07-29 at 07:01 By Mirko Zorz In this Help Net Security interview, Eran Livne, Senior Director of Product Management, Endpoint Remediation at Qualys and Thomas Scheffler, Security Operations Manager of Cintas Corporation, discuss their experiences with automated patch management. Scheffler details how Cintas

Why a strong patch management strategy is essential for reducing business risk Read More »

The cost of cybersecurity burnout: Impact on performance and well-being

Accenture, burnout, CISO, cybersecurity, Deep Instinct, Hack The Box, Integrity360, Ivanti, News, Proofpoint, report, Splunk, survey, Trellix, Veeam Software /

The cost of cybersecurity burnout: Impact on performance and well-being 2024-07-29 at 06:31 By Help Net Security This article includes excerpts from recent reports we covered, providing statistics and insights into the levels of stress and burnout experienced by cybersecurity professionals. Most cybersecurity pros took time off due to mental health issues Hack The Box

The cost of cybersecurity burnout: Impact on performance and well-being Read More »

Whitepaper: DevSecOps Blueprint

Don't miss, GitGuardian, News, Whitepapers and webinars /

Whitepaper: DevSecOps Blueprint 2024-07-29 at 05:46 By Help Net Security In the DevSecOps Blueprint whitepaper, GitGuardian outlines a robust foundation for building an automated and technology-driven DevSecOps Program that addresses every aspect of the SDLC. Learn how your organization can embed security at every layer: the tools and technologies, the processes (like IR and security

Whitepaper: DevSecOps Blueprint Read More »

Week in review: CrowdStrike-triggered outage insights, recovery, and measuring cybersecurity ROI

News, Week in review /

Week in review: CrowdStrike-triggered outage insights, recovery, and measuring cybersecurity ROI 2024-07-28 at 11:02 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft releases tool to speed up recovery of systems borked by CrowdStrike update By now, most people are aware of – or

Week in review: CrowdStrike-triggered outage insights, recovery, and measuring cybersecurity ROI Read More »

Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327)

Code White, CVE, Don't miss, enterprise, Hot stuff, News, Progress, vulnerability /

Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327) 2024-07-26 at 09:46 By Zeljka Zorz Progress Software has fixed a critical vulnerability (CVE-2024-6327) in its Telerik Report Server solution and is urging users to upgrade as soon as possible. About CVE-2024-6327 (and CVE-2024-6096) Telerik Report Server is an enterprise solution for storing,

Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327) Read More »

16% of organizations experience disruptions due to insufficient AI maturity

Action1, Artificial Intelligence, automation, cybersecurity, News, report, survey /

16% of organizations experience disruptions due to insufficient AI maturity 2024-07-26 at 07:31 By Help Net Security While sysadmins recognize AI’s potential, significant gaps in education, cautious organizational adoption, and insufficient AI maturity hinder widespread implementation, leading to mixed results and disruptions in 16% of organizations, according to Action1. Knowledge gap and training needs Sysadmins’

16% of organizations experience disruptions due to insufficient AI maturity Read More »

AI-generated deepfake attacks force companies to reassess cybersecurity

Artificial Intelligence, authentication, deepfakes, GetApp, News, report, survey, threat /

AI-generated deepfake attacks force companies to reassess cybersecurity 2024-07-26 at 07:31 By Help Net Security As AI-generated deepfake attacks and identity fraud become more prevalent, companies are developing response plans to address these threats, according to GetApp. In fact, 73% of US respondents report that their organization has developed a deepfake response plan. This concern

AI-generated deepfake attacks force companies to reassess cybersecurity Read More »

Most CISOs feel unprepared for new compliance regulations

CISO, Compliance, cybersecurity, News, Onyxia, regulation, report, survey /

Most CISOs feel unprepared for new compliance regulations 2024-07-26 at 06:31 By Help Net Security With the new stringent regulations, including the SEC’s cybersecurity disclosure rules in the USA and the Digital Operational Resilience Act (DORA) in the EU, a significant challenge is emerging for many organizations, according to Onyxia Cyber. CISO role has changed

Most CISOs feel unprepared for new compliance regulations Read More »

New infosec products of the week: July 26, 2024

GitGuardian, LOKKER, News, Permit.io, Secure Code Warrior, Strata Identity /

New infosec products of the week: July 26, 2024 2024-07-26 at 06:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from GitGuardian, LOKKER, Permit.io, Secure Code Warrior, and Strata Identity. GitGuardian’s tool helps companies discover developer leaks on GitHub GitGuardian released a tool to help

New infosec products of the week: July 26, 2024 Read More »

Docker fixes critical auth bypass flaw, again (CVE-2024-41110)

containers, CVE, Docker, Don't miss, Hot stuff, News, security update, virtualization, vulnerability /

Docker fixes critical auth bypass flaw, again (CVE-2024-41110) 2024-07-25 at 15:01 By Zeljka Zorz A critical-severity Docker Engine vulnerability (CVE-2024-41110) may be exploited by attackers to bypass authorization plugins (AuthZ) via specially crafted API request, allowing them to perform unauthorized actions, including privilege escalation. About CVE-2024-41110 CVE-2024-41110 is a vulnerability that can be exploited remotely,

Docker fixes critical auth bypass flaw, again (CVE-2024-41110) Read More »

Learning from CrowdStrike’s quality assurance failures

cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, News, opinion, security testing, software, update /

Learning from CrowdStrike’s quality assurance failures 2024-07-25 at 13:01 By Help Net Security CrowdStrike has released a preliminary Post Incident Review (PIR) of how the flawed Falcon Sensor update made its way to millions of Windows systems and pushed them into a “Blue Screen of Death” loop. The PIR is a bit confusing to read

Learning from CrowdStrike’s quality assurance failures Read More »

BIND 9.20 released: Enhanced DNSSEC support, application infrastructure improvements

BIND, DNS, DNSSEC, Don't miss, networking, News, open source /

BIND 9.20 released: Enhanced DNSSEC support, application infrastructure improvements 2024-07-25 at 10:01 By Help Net Security BIND (Berkeley Internet Name Domain) is an open-source DNS software system with an authoritative server, a recursive resolver, and related utilities. BIND 9.20, a stable branch suitable for production use, has been released. According to the current software release

BIND 9.20 released: Enhanced DNSSEC support, application infrastructure improvements Read More »

How CISOs enable ITDR approach through the principle of least privilege

access control, access management, CISO, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, identity, News, Opal Security, opinion, regulation, threat detection /

How CISOs enable ITDR approach through the principle of least privilege 2024-07-25 at 07:31 By Help Net Security Somewhere, right now, a CISO is in a boardroom making their best case for stronger identity threat detection and response (ITDR) initiatives to lower the risk of intrusion. For a good reason, too: Look no further than

How CISOs enable ITDR approach through the principle of least privilege Read More »

Cloud security threats CISOs need to know about

AlgoSec, Artificial Intelligence, cloud security, cybersecurity, Data Protection, Don't miss, Features, Hot stuff, Incident Response, News, opinion, vulnerability management /

Cloud security threats CISOs need to know about 2024-07-25 at 07:01 By Mirko Zorz In this Help Net Security interview, Ava Chawla, Head of Cloud Security at AlgoSec, discusses the most significant cloud security threats CISOs must be aware of in 2024. These threats include data breaches, misconfiguration, insider threats, advanced persistent threats, ransomware, API

Cloud security threats CISOs need to know about Read More »

The most urgent security risks for GenAI users are all data-related

cybersecurity, data, data security, generative AI, Netskope, News, report, survey /

The most urgent security risks for GenAI users are all data-related 2024-07-25 at 06:01 By Help Net Security Regulated data (data that organizations have a legal duty to protect) makes up more than a third of the sensitive data being shared with GenAI applications—presenting a potential risk to businesses of costly data breaches, according to

The most urgent security risks for GenAI users are all data-related Read More »

Network of ghost GitHub accounts successfully distributes malware

automa, Check Point, Don't miss, GitHub, Hot stuff, Malware, News, phishing /

Network of ghost GitHub accounts successfully distributes malware 2024-07-24 at 17:31 By Zeljka Zorz Check Point researchers have unearthed an extensive network of GitHub accounts that they believe provides malware and phishing link Distribution-as-a-Service. Set up and operated by a threat group the researchers dubbed as Stargazer Goblin, the “Stargazers Ghost Network” is estimated encompass

Network of ghost GitHub accounts successfully distributes malware Read More »

CrowdStrike blames buggy testing software for disastrous update

CrowdStrike, cybersecurity, Don't miss, Hot stuff, Microsoft, News /

CrowdStrike blames buggy testing software for disastrous update 2024-07-24 at 15:32 By Zeljka Zorz A bug in the Content Validator – a software element CrowdStrike relies on for testing and validating Rapid Response Content updates for its Falcon Sensors – is (partly) why the faulty update wasn’t caught in time, the company said. In a

CrowdStrike blames buggy testing software for disastrous update Read More »

Scroll to Top