Month: May 2024
May 07, 2024NewsroomVulnerability / Network Security The MITRE Corporation has offered more details into the recently disclosed cyber attack, stating that the first evidence of the intrusion now dates back to December 31, 2023. The attack, which came to light last month, singled out MITRE’s Networked Experimentation, Research, and Virtualization Environment (NERVE) through the exploitation…
Read More
The Iranian state-backed hacking outfit called APT42 is making use of enhanced social engineering schemes to infiltrate target networks and cloud environments. Targets of the attack include Western and Middle Eastern NGOs, media organizations, academia, legal services and activists, Google Cloud subsidiary Mandiant said in a report published last week. “APT42 was observed posing as…
Read More
At RSA Conference 2024 this week, vendors are showcasing new products in categories including SASE, security operations and application security — with many touting newly released, GenAI-powered cybersecurity capabilities. Big RSAC Product Announcements Even as the cybersecurity industry continues to maintain its rapid growth pace — leading many vendors to roll out product announcements throughout…
Read More
The company said the acquisition of Noname Security will allow Akamai to ‘extend protection across all API traffic locations.’ Akamai Technologies on Tuesday announced a deal to acquire API security firm Noname Security for $450 million. The company said the acquisition of Noname will allow Akamai to “extend protection across all API traffic locations.” [Related:…
Read More
Citrix Bleed was assigned a CVSS score of 9.4/10, making it a high-severity, critical information disclosure vulnerability. Much like this vulnerability, Citrix Bleed’s exploit was only possible in the instances where NetScaler ADC and Gateway devices were configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server. This bug’s inability to expose data…
Read More
‘By leveraging a low-cost talent market, they can be more cost efficient,’ says Sunny Kaila, CEO of IT By Design. IT By Design has opened a new headquarters in the Philippines to further expand operations and offer cost-efficient talent to MSPs. The new office will create more than 250 new roles within the master MSP…
Read More
New data helps business leaders understand how and why to prioritize resilience. In the ever-evolving landscape of digital innovation, businesses find themselves at the intersection of progress and peril. The data reveals that the tradeoffs are not just dramatic, but they also put the organization at significant risk. One of the primary obstacles is the…
Read More
Riverbed’s CEO Dave Donatelli tells CRN that the new platform, coupled with its features and latest version of its AI service, presents a “whole new way of doing things” for the market. Riverbed has launched what the company is calling its biggest release in years: an open, AI-powered observability platform aimed at filling in the…
Read More
May 07, 2024The Hacker NewsRegulatory Compliance / Cyber Threat How safe is your comments section? Discover how a seemingly innocent ‘thank you’ comment on a product page concealed a malicious vulnerability, underscoring the necessity of robust security measures. Read the full real-life case study here. When is a ‘Thank you’ not a ‘Thank you’? When…
Read More
May 07, 2024NewsroomOnline Security / Data Breach Google on Monday announced that it’s simplifying the process of enabling two-factor authentication (2FA) for users with personal and Workspace accounts. Also called, 2-Step Verification (2SV), it aims to add an extra layer of security to users’ accounts to prevent takeover attacks in case the passwords are stolen.…
Read More