Month: August 2024
In an era of rapidly evolving Artificial Intelligence/Large Language Model (AI/LLM) technologies, cybersecurity practitioners face significant challenges in monitoring unauthorized AI solutions, detecting AI vulnerabilities, and identifying unexpected AI/LLM development. Tenable Security Center leverages advanced detection technologies – agents, passive network monitoring, dynamic application security testing, and distributed scan engines – to surface AI/LLM software,…
Read MoreCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2018-0824 Microsoft COM for Windows Deserialization of Untrusted Data Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant…
Read More
A previously undocumented Android malware named ‘LightSpy’ has been discovered targeting Russian users, posing on phones as an Alipay app or a system service to evade detection. Analysis shows that LianSpy has been actively targeting Android users since July 2021, but its extensive stealth capabilities helped it remain undetected for over three years. Kaspersky researchers…
Read More
Here’s a head-to-head comparison of AWS, Microsoft and Google Cloud’s recent financial earnings results for second-quarter 2024, including revenue, sales growth, cloud market share and operating income. The results are in for the three largest cloud computing companies on the planet with Amazon Web Services, Microsoft Azure and Google Cloud each recently reporting their financial…
Read More
Register today for mWISE™, the unique cybersecurity conference from Mandiant, now part of Google Cloud. Built by practitioners for practitioners, mWISE runs from September 18 – 19, 2024 in Denver, Colorado. There are just a few days left to get $300 off the standard conference price at mWISE—and the conference itself is just six weeks…
Read More
Here are the top 25 companies on this year’s CRN Fast Growth 150 list, which ranks solution providers with gross annual sales of at least $1 million by their two-year growth rate. Overachievers These are challenging times for solution providers as they navigate both ongoing economic uncertainty and a rapidly changing technology landscape as artificial…
Read More
Overall, this year’s Fast Growth 150 recorded an average two-year growth rate of 135 percent. That’s down a bit from the 145 percent average for the 2023 Fast Growth 150 class, but up from the 93 percent growth recorded by the 2022 Fast Growth 150. These are challenging times for solution providers as they navigate…
Read More
The cybersecurity vendor says Delta did not accept offers of help amid the multi-day outage that impacted the airline. CrowdStrike is contending that Delta did not accept offers of help amid the multi-day outage that impacted the airline, following the cybersecurity vendor’s defective July 19 update. In a letter sent to an attorney who is…
Read More
Aug 05, 2024Ravie LakshmananNetwork Security / Threat Intelligence Organizations in Kazakhstan are the target of a threat activity cluster dubbed Bloody Wolf that delivers a commodity malware called STRRAT (aka Strigoi Master). “The program selling for as little as $80 on underground resources allows the adversaries to take control of corporate computers and hijack restricted…
Read More
Aug 05, 2024Ravie LakshmananThreat Intelligence / Vulnerability Cybersecurity researchers have uncovered design weaknesses in Microsoft’s Windows Smart App Control and SmartScreen that could enable threat actors to gain initial access to target environments without raising any warnings. Smart App Control (SAC) is a cloud-powered security feature introduced by Microsoft in Windows 11 to block malicious,…
Read More