In December on the heels of its SFI announcement, Microsoft appointed Tsyganskiy, a relative newcomer to the company, to replace former and longtime CISO Bret Arsenault, who transitioned to an adviser position. Ongoing security struggles Around the same time — but unbeknownst to Microsoft until January — a Russia-based threat group Midnight Blizzard, also known…
Read MoreRare Interviews with Enigma Cryptanalyst Marian Rejewski The Polish Embassy has posted a series of short interview segments with Marian Rejewski, the first person to crack the Enigma. Details from his biography. Tags: cryptanalysis, Enigma, history of cryptography, war Posted on May 3, 2024 at 7:10 AM • 0 Comments Sidebar photo of Bruce Schneier…
Read More
May 03, 2024The Hacker NewsSaaS Security / Browser Security SaaS applications are dominating the corporate landscape. Their increased use enables organizations to push the boundaries of technology and business. At the same time, these applications also pose a new security risk that security leaders need to address, since the existing security stack does not enable…
Read More
According to Mandiant’s M-Trends report for 2024, exploits were the top initial infection vector in 2023, used in 38% of attacks, followed by phishing (17%), prior compromise (15%), stolen credentials (10%), and brute force (6%) to round out the top 5. Foundry How malware spreads You’ve probably heard the words virus, trojan, and worm used interchangeably. In fact, the…
Read More
May 03, 2024NewsroomEmail Security / Malware The U.S. government on Thursday published a new cybersecurity advisory warning of North Korean threat actors’ attempts to send emails in a manner that makes them appear like they are from legitimate and trusted parties. The joint bulletin was published by the National Security Agency (NSA), the Federal Bureau…
Read More
May 03, 2024NewsroomPasswordless / Encryption Google on Thursday announced that passkeys are being used by over 400 million Google accounts, authenticating users more than 1 billion times over the past two years. “Passkeys are easy to use and phishing resistant, only relying on a fingerprint, face scan or a pin making them 50% faster than…
Read More
May 03, 2024NewsroomVulnerability / Software Security HPE Aruba Networking (formerly Aruba Networks) has released security updates to address critical flaws impacting ArubaOS that could result in remote code execution (RCE) on affected systems. Of the 10 security defects, four are rated critical in severity – CVE-2024-26304 (CVSS score: 9.8) – Unauthenticated Buffer Overflow Vulnerability in…
Read More
LayerX, pioneer of the LayerX Browser Security platform, today announced $26 million in Series A funding led by Glilot+, the early-growth fund of Glilot Capital Partners, with participation from Dell Technologies Capital and other investors. Lior Litwak, Managing Partner at Glilot Capital and Head of Glilot+, and Yair Snir, Managing Partner at Dell Technologies Capital,…
Read More
In Apple’s first-quarter earnings call, the chief executive of Apple says the company will make an announcement in the ‘weeks head’ and added that he expects generative AI capabilities to come to the ‘vast majority of our devices.’ Apple CEO Tim Cook said the company plans to share details “soon” about new generative AI capabilities…
Read More
Onur Aksoy, the CEO of a group of companies controlling multiple online storefronts, was sentenced to six and a half years in prison for selling $100 million worth of counterfeit Cisco network equipment to government, health, education, and military organizations worldwide. The 40-year-old Florida man was arrested in Miami on June 29, 2022, and was…
Read More