News

Small organizations outpace large enterprises in MFA adoption

authentication, cybersecurity, MFA, News, Okta, passwordless, report /

Small organizations outpace large enterprises in MFA adoption 15/06/2023 at 06:04 By Help Net Security The use of MFA has nearly doubled since 2020 and that phishing-resistant authenticators represent the best choice in terms of security and convenience for users, according to Okta. MFA authentication gains traction MFA authentication has steadily gained traction across organizations […]

Small organizations outpace large enterprises in MFA adoption Read More »

Switzerland under cyberattack

Data leak, data theft, DDoS, Don't miss, enterprise, Government, Hot stuff, News, Ransomware, Switzerland /

Switzerland under cyberattack 14/06/2023 at 14:18 By Helga Labus Swiss government websites are under DDoS attacks, but several ransomware gangs have also turned their sights on Swiss government organizations, cantonal governments, cities and companies in the last few months. Government sites under DDoS attacks “Several Federal Administration websites are/were inaccessible on Monday 12 June 2023,

Switzerland under cyberattack Read More »

Ignoring digital transformation is more dangerous than a recession

cyber resilience, cybersecurity, digital transformation, Insight, investment, News /

Ignoring digital transformation is more dangerous than a recession 14/06/2023 at 07:02 By Help Net Security Business leaders worldwide understand they need to invest in digital transformation to meet a new innovation imperative, despite ongoing macroeconomic pressures and an increasingly uncertain, competitive business environment, according to Insight. The pandemic accelerated transformation in every industry as

Ignoring digital transformation is more dangerous than a recession Read More »

IT providers become go-to for cybersecurity advice

attacks, BlackFog, data breach, Malware, MSP, News, Ransomware, report, SMBs /

IT providers become go-to for cybersecurity advice 14/06/2023 at 06:31 By Help Net Security 61% of SMBs have been hit by a successful cyberattack in the last year, according to BlackFog. The research study, which examined the business impact of cybersecurity for organizations in the US and UK, also revealed the growing importance of engaging

IT providers become go-to for cybersecurity advice Read More »

3 ways we’ve made the CIS Controls more automation-friendly

Center for Internet Security, News /

3 ways we’ve made the CIS Controls more automation-friendly 14/06/2023 at 06:02 By Help Net Security Compliance obligations that support data privacy and cyber risk are nearly ubiquitous. Not only that, but they’re expanding. According to Gartner, government regulations covering these areas of emphasis will apply to five billion citizens and more than 70% of

3 ways we’ve made the CIS Controls more automation-friendly Read More »

June 2023 Patch Tuesday: Critical patches for Microsoft Windows, SharePoint, Exchange

Automox, Don't miss, Hot stuff, Microsoft Exchange, News, Patch Tuesday, security update, SharePoint, Tenable, Trend Micro, Windows /

June 2023 Patch Tuesday: Critical patches for Microsoft Windows, SharePoint, Exchange 13/06/2023 at 21:48 By Zeljka Zorz For June 2023 Patch Tuesday, Microsoft has delivered 70 new patches but, for once, none of the fixed vulnerabilities are currently exploited by attackers nor were publicly known before today! Microsoft has previously fixed CVE-2023-3079, a type confusion

June 2023 Patch Tuesday: Critical patches for Microsoft Windows, SharePoint, Exchange Read More »

PoC exploit for exploited MOVEit vulnerability released (CVE-2023-34362)

data theft, Don't miss, exploit, extortion, Horizon3.ai, Hot stuff, Huntress, News, PoC, Progress, Rapid7, UK, USA /

PoC exploit for exploited MOVEit vulnerability released (CVE-2023-34362) 13/06/2023 at 14:18 By Zeljka Zorz As more victim organizations of Cl0p gang’s MOVEit rampage continue popping up, security researchers have released a PoC exploit for CVE-2023-34362, the RCE vulnerability exploited by the Cl0p cyber extortion group to plunder confidential data. CVE-2023-34362 PoC exploit released Horizon3 security

PoC exploit for exploited MOVEit vulnerability released (CVE-2023-34362) Read More »

Building a hyper-connected future with 6G networks

Artificial Intelligence, Capgemini, digital transformation, Don't miss, Features, Hot stuff, networking, News, opinion /

Building a hyper-connected future with 6G networks 13/06/2023 at 06:36 By Mirko Zorz The advent of 6G communication systems brings forth new possibilities and advancements compared to previous generations. With hyper-connectivity and machine-to-machine communication at its core, 6G aims to bridge the gap between humanity and the world of machines. In this Help Net Security

Building a hyper-connected future with 6G networks Read More »

Incorporating cloud security teams into the SOC enhances operational efficiencies

CIO, CISO, cloud security, News, report, SOC, Trend Micro, XDR /

Incorporating cloud security teams into the SOC enhances operational efficiencies 13/06/2023 at 06:02 By Help Net Security Security leaders are recognizing that cloud and the way cloud security teams work today are becoming increasingly critical to business and IT operations, according to Trend Micro. As a result, cloud security and the foundational practices of their

Incorporating cloud security teams into the SOC enhances operational efficiencies Read More »

It’s time to patch your MOVEit Transfer solution again!

Don't miss, Hot stuff, Huntress, Kroll, Netcraft, News, Progress, SQL injection, vulnerability /

It’s time to patch your MOVEit Transfer solution again! 12/06/2023 at 16:47 By Zeljka Zorz Progress Software customers who use the MOVEit Transfer managed file transfer solution might not want to hear it, but they should quickly patch their on-prem installations again: With the help of researchers from Huntress, the company has uncovered additional SQL

It’s time to patch your MOVEit Transfer solution again! Read More »

The multiplying impact of BEC attacks

BEC scams, Don't miss, enterprise, FBI, Hot stuff, Microsoft, News, phishing, SMBs, social engineering /

The multiplying impact of BEC attacks 12/06/2023 at 16:22 By Helga Labus The 2023 Verizon Data Breach Investigations Report (DBIR) has confirmed what FBI’s Internet Crime Complaint Center has pointed out earlier this year: BEC scammers are ramping up their social engineering efforts to great success. BEC attackers targeting the real estate sector The FBI

The multiplying impact of BEC attacks Read More »

Building a culture of security awareness in healthcare begins with leadership

CISO, cyber risk, cybersecurity, Don't miss, Features, healthcare, Hot stuff, how-to, News, security controls, strategy, tips /

Building a culture of security awareness in healthcare begins with leadership 12/06/2023 at 07:35 By Mirko Zorz With the rise of modern trends such as cloud computing and remote work, healthcare institutions strive to balance accessibility, convenience, and robust security. In this Help Net Security interview, Ken Briggs, General Counsel at Salucro, discusses how fostering

Building a culture of security awareness in healthcare begins with leadership Read More »

Cyber extortion hits all-time high

attacks, Don't miss, extortion, Government, law enforcement, News, Orange Cyberdefense, report /

Cyber extortion hits all-time high 12/06/2023 at 06:32 By Help Net Security Cyber extortion attacks have become increasingly prevalent in recent years, posing a significant threat to organizations of all sizes and industries, according to Orange Cyberdefense. Examining data from a total of 6,707 confirmed business victims, the findings show a fluctuation in the number

Cyber extortion hits all-time high Read More »

Lack of adequate investments hinders identity security efforts

cyberattack, cybersecurity, framework, identity, IDSA, News, report /

Lack of adequate investments hinders identity security efforts 12/06/2023 at 06:03 By Help Net Security Organizations are still grappling with identity-related incidents, with an alarming 90% reporting one in the last 12 months, a 6% increase from last year, according to The Identity Defined Security Alliance (IDSA). Protecting digital identities As identities continue to significantly

Lack of adequate investments hinders identity security efforts Read More »

Fortinet patches pre-auth RCE, update your Fortigate firewalls ASAP! (CVE-2023-27997)

Don't miss, Fortinet, FortiOS, Hot stuff, Lexfo, News, Olympe Cyberdefense, security update, vulnerability /

Fortinet patches pre-auth RCE, update your Fortigate firewalls ASAP! (CVE-2023-27997) 11/06/2023 at 22:06 By Zeljka Zorz Fortinet has released several versions of FortiOS, the OS/firmware powering its Fortigate firewalls and other devices, without mentioning that they include a fix for CVE-2023-27997, a remote code execution (RCE) flaw that does not require the attacker to be

Fortinet patches pre-auth RCE, update your Fortigate firewalls ASAP! (CVE-2023-27997) Read More »

Week in review: 9 free cybersecurity whitepapers, Patch Tuesday forecast

News, Week in review /

Week in review: 9 free cybersecurity whitepapers, Patch Tuesday forecast 11/06/2023 at 11:22 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Cl0p announces rules for extortion negotiation after MOVEit hack The Cl0p cyber extortion crew says that the many organizations whose data they have

Week in review: 9 free cybersecurity whitepapers, Patch Tuesday forecast Read More »

Replace Barracuda ESG appliances, company urges

Barracuda Networks, data theft, Don't miss, exploit, Hot stuff, Malware, News, Rapid7, vulnerability /

Replace Barracuda ESG appliances, company urges 09/06/2023 at 18:47 By Helga Labus Barracuda Networks is urging customers running phyisical Email Security Gateway (ESG) appliances to replace them immediately, “regardless of patch version level.” Vulnerability identification and disclosure Barracuda has identified a critical vulnerability (CVE-2023-2868) in their ESG appliances on May 19, 2023, and pushed a

Replace Barracuda ESG appliances, company urges Read More »

June 2023 Patch Tuesday forecast: Don’t forget about Apple

apple, Don't miss, Expert analysis, Expert corner, Google, Hot stuff, Ivanti, Microsoft, News, Patch Tuesday /

June 2023 Patch Tuesday forecast: Don’t forget about Apple 09/06/2023 at 08:39 By Help Net Security The odd month-to-month pattern of CVEs addressed by Microsoft continued with the May Patch Tuesday. After seeing high numbers for April, we saw 20 and 23 CVEs fixed for Windows 11 and 10, respectively, in May. And after 62

June 2023 Patch Tuesday forecast: Don’t forget about Apple Read More »

New infosec products of the week: June 9, 2023

1Password, Datadog, Enveedo, Lacework, News, NinjaOne /

New infosec products of the week: June 9, 2023 09/06/2023 at 08:00 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from 1Password, Datadog, Enveedo, Lacework, and NinjaOne. Lacework simplifies cloud security with risk calculation on users’ permissions Lacework announced new CIEM functionality to address the

New infosec products of the week: June 9, 2023 Read More »

Employee cybersecurity awareness takes center stage in defense strategies

cybercrime, cybersecurity, Fortinet, News, Ransomware, report, security awareness /

Employee cybersecurity awareness takes center stage in defense strategies 09/06/2023 at 06:31 By Help Net Security As cyberattacks intensify, more and more organizations recognize the need to have a strong security culture for all employees, according to Fortinet. Employee cybersecurity awareness The most recent report from Fortinet’s FortiGuard Labs found that ransomware threats remain at

Employee cybersecurity awareness takes center stage in defense strategies Read More »

Scroll to Top