Month: June 2024
Apply appropriate patches provided by PHP to vulnerable systems immediately after appropriate testing. (M1051: Update Software)o Safeguard 7.1: Establish and Maintain a Vulnerability Management Process: Establish and maintain a documented vulnerability management process for enterprise assets. Review and update documentation annually, or when significant enterprise changes occur that could impact this Safeguard.o Safeguard 7.4: Perform…
Read MoreSecurity and Human Behavior (SHB) 2024 This week, I hosted the seventeenth Workshop on Security and Human Behavior at the Harvard Kennedy School. This is the first workshop since our co-founder, Ross Anderson, died unexpectedly. SHB is a small, annual, invitational workshop of people studying various aspects of the human side of security. The fifty…
Read MoreApple will reportedly unveil a standalone password manager named ‘Passwords’ as part of iOS 18, iPadOS 18, and macOS 15 during the upcoming Apple Worldwide Developers Conference. According to sources speaking to Bloomberg, the app will be powered by Apple’s iCloud Keychain, the current built-in password management system for macOS and iOS. While Keychain is a full-fledged password…
Read More“SORBS has a long and somewhat checkered history. It was created in the early 2000s, with a DNSBL (Domain Name System-based Blackhole List) version coming online in January 2002,” Chandler wrote. “The closure of SORBS does not mark any real turning point in the email security landscape. Although it was one of the oldest DNSBL…
Read More‘I’ve been trying to build a great company and whenever [a sale happens], we’re ready to go,’ ConnectWise CEO Jason Magee says. A hyperfocus on AI, hitting a billion dollars in revenue, the possibility of being sold and still watching out for the competition gives ConnectWise CEO Jason Magee a lot of balls to juggle…
Read MoreBritish auction house Christie’s is notifying individuals whose data was stolen by the RansomHub ransomware gang in a recent network breach. Christie’s discovered that it was the victim of a security breach that affected some of its systems on May 9, 2024. After becoming aware of the event, Christie’s took measures to secure its network…
Read More‘If you listen to really smart people around the globe, they’ll tell you that [AI] is one of those technologies that is actually going to live up to the hype. And so the $1 billion global AI investment fund we just announced this week, that’s just the start for us, frankly,’ Cisco Executive Vice President…
Read More‘It gives [us] the ability to look at our stuff a bit more, see where we need to make investments and improvements and then we bring it to market. Competitors make you better if you do the right things,’ says ConnectWise CEO Jason Magee. When it comes to the competition, Jason Magee wants to see…
Read MoreFrontier Communications is warning 750,000 customers that there information was exposed in a data breach after an April cyberattack claimed by the RansomHub ransomware operation. Frontier is a leading U.S. communications provider that provides gigabit Internet speeds over a fiber-optic network to millions of consumers and businesses across 25 states. The telecommunications provider says it…
Read MoreWith Nvidia, Intel and AMD signaling that the semiconductor industry is entering a new era of hyperdrive, Computex 2024 was an event not to miss for channel partners who are building businesses around next-generation PCs and data centers, especially when it comes to AI. The future of AI computing was on full display at this…
Read MoreRecent Posts
- A Vulnerability in Apache Struts2 Could Allow for Remote Code Execution
- CISA Adds One Known Exploited Vulnerability to Catalog | CISA
- Xerox To Buy Lexmark For $1.5B In Blockbuster Print Deal
- Vulnerability Summary for the Week of December 16, 2024 | CISA
- Arm To Seek Retrial In Qualcomm Case After Mixed Verdict