News

Week in review: Sumo Logic breach, 7 free cyber threat maps, Patch Tuesday forecast

News, Week in review /

Week in review: Sumo Logic breach, 7 free cyber threat maps, Patch Tuesday forecast 12/11/2023 at 12:01 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Exploring the global shift towards AI-specific legislation In this Help Net Security interview, Sarah Pearce, Partner at Hunton Andrews […]

Week in review: Sumo Logic breach, 7 free cyber threat maps, Patch Tuesday forecast Read More »

Chinese multinational bank hit by ransomware

Banks, China, Citrix, Don't miss, financial industry, Hot stuff, News, Ransomware /

Chinese multinational bank hit by ransomware 10/11/2023 at 14:46 By Helga Labus The state-owned Industrial and Commercial Bank of China (ICBC), which is one of the largest banks in the world, has been hit by a ransomware attack that led to disrupted trades in the US Treasury market. The attack “On November 8, 2023, U.S.

Chinese multinational bank hit by ransomware Read More »

November 2023 Patch Tuesday forecast: Year 21 begins

Adobe, apple, Chrome, Don't miss, Expert analysis, Expert corner, Firefox, Hot stuff, Ivanti, Microsoft, Mozilla, News, patch, Patch Tuesday, patching, Windows, Windows Server /

November 2023 Patch Tuesday forecast: Year 21 begins 10/11/2023 at 09:03 By Help Net Security The October forecast for large numbers of CVEs addressed in Windows 10 and 11 and the recent record on the number fixed in Windows Server 2012 was spot on! Microsoft addressed 75 CVEs in Windows 11, 80 in Windows 10,

November 2023 Patch Tuesday forecast: Year 21 begins Read More »

New infosec products of the week: November 10, 2023

Aqua Security, ARMO, Druva, Ironscales, Malwarebytes, News, Varonis /

New infosec products of the week: November 10, 2023 10/11/2023 at 08:48 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Aqua Security, ARMO, Druva, IRONSCALES, Malwarebytes, and Varonis. Varonis enhances its Microsoft 365 offering to prevent sensitive email exposure Varonis announced major enhancements to

New infosec products of the week: November 10, 2023 Read More »

How to withstand the onslaught of cybersecurity threats

automation, CIO, CISO, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, hybrid workforce, IT assets, News, opinion, shadow IT, strategy, threats /

How to withstand the onslaught of cybersecurity threats 10/11/2023 at 08:31 By Help Net Security “We brought a shovel to fight an avalanche.” That’s the sentiment shared by many business leaders, especially CISOs, CIOs and IT leaders as they face the current cybersecurity threat landscape. Like an avalanche, it’s constantly shifting and changing, moving quickly

How to withstand the onslaught of cybersecurity threats Read More »

Data protection demands AI-specific security strategies

Artificial Intelligence, Compliance, cybersecurity, data, data security, Immuta, machine learning, News, phishing, report, survey /

Data protection demands AI-specific security strategies 10/11/2023 at 07:32 By Help Net Security Adoption and use of AI tools is high across organizations, however many are concerned about the impacts AI will have on their larger data security strategy, according to Immuta. Only half of the respondents say their organization’s data security strategy is keeping

Data protection demands AI-specific security strategies Read More »

Organizations lack the skills and headcount to manage Kubernetes

Artificial Intelligence, automation, CIO, Compliance, cybersecurity, DevOps, Kubernetes, News, patching, report, Spectro Cloud, survey /

Organizations lack the skills and headcount to manage Kubernetes 10/11/2023 at 07:02 By Help Net Security The Kubernetes industry is undergoing rapid change and evolution due to the growth of edge computing, the acceleration of AI, and the pressing need to modernize Kubernetes management in response to increasing technology scale and complexity, according to Spectro

Organizations lack the skills and headcount to manage Kubernetes Read More »

Sandworm hackers incapacitated Ukrainian power grid amid missile strike

APT, critical infrastructure, Don't miss, Hot stuff, ICS/SCADA, Malware, Mandiant, News, Russian Federation /

Sandworm hackers incapacitated Ukrainian power grid amid missile strike 09/11/2023 at 19:17 By Helga Labus Russia-backed ATP group Sandworm is behind the cyberattack that caused disruption of parts of the Ukrainian power grid in late 2022, according to Mandiant. About Sandworm “Sandworm is a threat actor that has carried out cyber operations in support of

Sandworm hackers incapacitated Ukrainian power grid amid missile strike Read More »

MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246)

0-day, Don't miss, exploit, extortion, Hot stuff, ITSM, Microsoft, News, Ransomware, security update, SysAid, web shell /

MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246) 09/11/2023 at 18:01 By Helga Labus A critical zero-day vulnerability (CVE-2023-47246) in the SysAid IT support and management software solution is being exploited by Lace Tempest, a ransomware affiliate known for deploying Cl0p ransomware. Lace Tempest has previously exploited zero-day vulnerability (CVE-2023-34362) in Progress Software’s

MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246) Read More »

Open-source vulnerability disclosure: Exploitable weak spots

Aqua Security, cybercriminals, Don't miss, Hot stuff, News, open source, research, vulnerability disclosure /

Open-source vulnerability disclosure: Exploitable weak spots 09/11/2023 at 15:17 By Zeljka Zorz Flaws in the vulnerability disclosure process of open-source projects could be exploited by attackers to harvest the information needed to launch attacks before patches are made available, Aqua Security researchers worry. The risk arises from “half-day” and “0.75-day” vulnerabilities “Half-day” vulnerabilities are known

Open-source vulnerability disclosure: Exploitable weak spots Read More »

Security in the impending age of quantum computers

attacks, cybersecurity, Don't miss, Encryption, Expert analysis, Expert corner, Government, Hot stuff, News, NIST, NSA, opinion, public-key cryptography, Quantinuum, quantum computing, standards, strategy /

Security in the impending age of quantum computers 09/11/2023 at 09:02 By Help Net Security Quantum computing is poised to be one of the most important technologies of the 21st century. With global governments having collectively pledged more than $38 billion in public funds for quantum technologies and $2.1 billion of new private capital flowing

Security in the impending age of quantum computers Read More »

Most cybersecurity investments aren’t used to their full advantage

Artificial Intelligence, Axonius, burnout, ChatGPT, Cloud, cybersecurity, generative AI, investment, News, phishing, report, survey /

Most cybersecurity investments aren’t used to their full advantage 09/11/2023 at 07:31 By Help Net Security While organizations are slashing budgets across other departments, IT and security budgets are growing to address evolving IT infrastructure and rising threats from new tactics such as AI-based attacks, according to Axonius. Budget growth in IT and security In

Most cybersecurity investments aren’t used to their full advantage Read More »

Tech leaders struggle to keep up with AI advances

Artificial Intelligence, cybersecurity, generative AI, Harvey Nash, hybrid workforce, News, regulation, report, survey /

Tech leaders struggle to keep up with AI advances 09/11/2023 at 07:01 By Help Net Security New data reveals artificial intelligence is challenging organizations in significant ways, with only 15% of global tech leaders reporting they are prepared for the demands of generative AI and 88% saying stronger regulation of AI is essential, according to

Tech leaders struggle to keep up with AI advances Read More »

Product showcase: Red Piranha’s security first, single vendor SASE, collaboration with Intel

cybersecurity, News, Product showcase, Red Piranha, Threat Intelligence /

Product showcase: Red Piranha’s security first, single vendor SASE, collaboration with Intel 09/11/2023 at 07:01 By Help Net Security Red Piranha has released the latest Crystal Eye consolidated security platform officially in global collaboration with Intel on the 12th of October and more details on the Network Builders Panel with Intel later that month. Crystal

Product showcase: Red Piranha’s security first, single vendor SASE, collaboration with Intel Read More »

Sumo Logic discloses potential breach via compromised AWS credential

AWS, credentials, data breach, Don't miss, Hot stuff, News, Sumo Logic /

Sumo Logic discloses potential breach via compromised AWS credential 08/11/2023 at 14:49 By Helga Labus Cloud-native big data and security analytics firm Sumo Logic is investigating a potential security incident within their platform, the company revealed on Tuesday. The Sumo Logic incident “On Friday, November 3rd, 2023, Sumo Logic discovered evidence of a potential security

Sumo Logic discloses potential breach via compromised AWS credential Read More »

Marina Bay Sands breach exposed data of 665,000 customers

Asia, data breach, Don't miss, hospitality industry, News, Singapore /

Marina Bay Sands breach exposed data of 665,000 customers 08/11/2023 at 12:31 By Helga Labus Singapore-based luxury resort and casino Marina Bay Sands has suffered a data breach that exposed data of 665,000 non-casino rewards program members. The Marina Bay Sands data breach “Marina Bay Sands became aware of a data security incident on 20

Marina Bay Sands breach exposed data of 665,000 customers Read More »

The 3 key stages of ransomware attacks and useful indicators of compromise

attacks, cybersecurity, data, DNS, Don't miss, Email, Encryption, Expert analysis, Expert corner, Gurucul, hacker, Hot stuff, network, News, opinion, phishing, Ransomware, servers, SOC /

The 3 key stages of ransomware attacks and useful indicators of compromise 08/11/2023 at 09:02 By Help Net Security For SOC teams to be able to defend their organization against ransomware attacks, they need to have the right security toolset, but also an understanding of the three primary ransomware attack stages. In this article, we

The 3 key stages of ransomware attacks and useful indicators of compromise Read More »

Aqua Trivy open-source security scanner now finds Kubernetes security risks

Aqua Security, cybersecurity, Don't miss, GitHub, Kubernetes, News, scanning, software /

Aqua Trivy open-source security scanner now finds Kubernetes security risks 08/11/2023 at 08:31 By Mirko Zorz The Aqua Trivy open-source scanner now supports vulnerability scanning for Kubernetes components and Kubernetes Bill of Materials (KBOM) generation. Now, companies can better understand the components within their Kubernetes environment and how secure they are to reduce risk. “Aqua

Aqua Trivy open-source security scanner now finds Kubernetes security risks Read More »

Companies have good reasons to be concerned about generative AI

Artificial Intelligence, Compliance, cybersecurity, data security, generative AI, News, Portal26, report, survey /

Companies have good reasons to be concerned about generative AI 08/11/2023 at 07:32 By Help Net Security Companies need help to get visibility into the operations of their AI programs, potentially reducing productivity while creating significant risks around governance, data security, and more, according to Portal26. Two-thirds of respondents admitted to a Generative AI security

Companies have good reasons to be concerned about generative AI Read More »

Scroll to Top