Tag: Cyberattacks
The vulnerability affects Palo Alto Networks’ Expedition migration tool and was originally disclosed in July. A critical-severity vulnerability affecting a Palo Alto Networks tool — originally disclosed in July — is now known to have been exploited in cyberattacks, according to the U.S. Cybersecurity and Infrastructure Security Agency (CISA). CISA released an advisory Thursday mentioning…
Read More
Left unchecked, ‘generative AI in the software development process is going to produce worse outcomes from a software security perspective,’ says software security pioneer and Veracode Co-Founder Chris Wysopal. While generative AI continues to deliver massive boosts to workplace productivity as adoption climbs, the trade-offs for security are becoming increasingly evident, as well, according to…
Read More
‘Our acquisition of Adaptive Shield takes us another step forward in giving our customers the best possible protection against modern cyberattacks with the Falcon platform,’ said CrowdStrike President Michael Sentonas. Cybersecurity all-star CrowdStrike is significantly boosting its Falcon platform with the acquisition of SaaS security startup Adaptive Shield. CrowdStrike President Michael Sentonas said the purchase…
Read More
The provider of power management technologies confirmed that a developer platform was impacted by ‘unauthorized access.’ Schneider Electric confirmed Monday that a developer platform used by the company was impacted by a “cybersecurity incident” that is now under investigation. According to a BleepingComputer report, a threat actor has claimed, during a conversation with the media…
Read More
The $859 million deal seeks to enable MSPs to deliver improved detection and response to smaller customers, which are relentlessly targeted by cyberattacks, according to Levy and Secureworks CEO Wendy Thomas. The planned acquisition by Sophos of extended detection and response specialist Secureworks will accelerate the cybersecurity giant’s effort to bring improved XDR capabilities to…
Read More
CRN staff compiled the top partner-friendly products that launched or were significantly updated over the last year. Now it’s up to solution providers to choose the winners. Application Performance and Observability As more applications run in hybrid-cloud and multi-cloud environments, maintaining application performance has becoming a more complex task. Application performance management and observability tools…
Read More
According to a New York Times report, hackers working for the Chinese government sought to access the devices through a previously reported compromise of Verizon. Hackers believed to be working on behalf of the Chinese government sought to access devices belonging to Donald Trump and JD Vance, in connection with a previously reported compromise of…
Read More
‘Approximately 100 million individual notices have been sent regarding this breach,’ the U.S. Department of Health and Human Services says. UnitedHealth Group disclosed that data belonging to an estimated 100 million individuals was impacted in the widely felt breach of Change Healthcare earlier this year. The insurer had already said in June it believes sensitive…
Read More
A suspected nation-state campaign has been targeting FortiManager customers — likely including MSPs — since at least late June, according to security researchers. The attacks exploiting a critical-severity vulnerability in Fortinet FortiManager are likely targeting MSPs in a nation-state espionage campaign, according to a security researcher. In a post Tuesday, well-known researcher Kevin Beaumont noted…
Read More
The vulnerability—which has been exploited in attacks compromising more than 50 FortiManager devices, according to Mandiant researchers—was disclosed by Fortinet Wednesday. A critical-severity FortiManager vulnerability publicly disclosed by Fortinet this week has been exploited in attacks dating back to late June, according to Mandiant researchers. The attacks exploiting the flaw (tracked at CVE-2024-47575) has compromised…
Read More