Yearly Archives: 2021

Surge in remotely hosted phish images? Some say it’s business as usual

In Nov. 2020 alone, company blocked 262 million emails containing malicious, remotely hosted images.

The post Surge in remotely hosted phish images? Some say it’s business as usual appeared first on SC Media.

Continue reading

Posted in Email Security, Phishing, Security News | Comments Off on Surge in remotely hosted phish images? Some say it’s business as usual

Intel unveils ransomware-fighting CPUs

The capability is an easy win for CISOs, which can benefit with limited tweaks to machines.

The post Intel unveils ransomware-fighting CPUs appeared first on SC Media.

Continue reading

Posted in Featured, Ransomware, Security News, Software and solutions | Comments Off on Intel unveils ransomware-fighting CPUs

Cybersecurity Collaborative creates task force to mitigate third-party risk

Recent supply chain attacks prompted cybersecurity professionals, under the auspices of Cybersecurity Collaborative, to stand up a task force focused on minimizing third-party risk. The need for the Third-Party Risk Task Force, which kicked off this week, has been amplified by recent advanced persistent threat attacks that infiltrated corporate and government networks, due to security…

The post Cybersecurity Collaborative creates task force to mitigate third-party risk appeared first on SC Media.

Continue reading

Posted in APT, From the Collaborative, Security News, Third-party risk | Comments Off on Cybersecurity Collaborative creates task force to mitigate third-party risk

With insured losses estimated at $90 billion, did cyber insurance firms dodge financial calamity?

The number of SolarWinds victims will likely grow in the upcoming months, but direct insured costs should remain close to the current estimate since many of the organizations hit – particularly federal agencies – do not carry insurance against cyber risks.

The post With insured losses estimated at $90 billion, did cyber insurance firms dodge financial calamity? appeared first on SC Media.

Continue reading

Posted in Data Breach, Government, Risk Management, Security News, SolarWinds hack, Third-party risk | Comments Off on With insured losses estimated at $90 billion, did cyber insurance firms dodge financial calamity?

Early-stage cybersecurity investment flowing, despite pandemic

While most industries saw a significant dip in seed and Series A investments last year, cybersecurity investment remained resilient.

The post Early-stage cybersecurity investment flowing, despite pandemic appeared first on SC Media.

Continue reading

Posted in Cloud, Cloud Security, Featured, Innovation, Security News, Software and solutions | Comments Off on Early-stage cybersecurity investment flowing, despite pandemic

CISA says multiple attacks on cloud services bypassed multifactor authentication

Threat actors have used a variety of tactics and techniques—including phishing, brute force login attempts, and possibly a so-called “pass-the-cookie” attack that bypassed multifactor authentication to exploit cloud security weaknesses.

The post CISA says multiple attacks on cloud services bypassed multifactor authentication appeared first on SC Media.

Continue reading

Posted in Cloud, Cloud Security, Security News | Comments Off on CISA says multiple attacks on cloud services bypassed multifactor authentication

Apple nixes feature that let its apps skip VPNs and firewalls, after criticism from researchers

The software essentially exempted Apple’s own programs from being routed through its Network Extension Framework, which the company created for third-party security products to monitor and filter network traffic.

The post Apple nixes feature that let its apps skip VPNs and firewalls, after criticism from researchers appeared first on SC Media.

Continue reading

Posted in Firewall, Network Security, Security News, Software and solutions | Comments Off on Apple nixes feature that let its apps skip VPNs and firewalls, after criticism from researchers

Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities

Google’s Project Zero this week introduced a six-part series that offers an analysis of four zero-day vulnerabilities on Windows and Chrome, and known-day Android exploits it found during the team’s extensive research last year.

The post Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities appeared first on SC Media.

Continue reading

Posted in Mobile, Mobile Security, Network Security, Security News, Threat intelligence | Comments Off on Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities

JumpCloud land $100 million in funding, as secure remote access market continues surge

Over the past two decades, businesses have piled a patchwork of different products and services – multi-factor authentication, single sign-on, identity governance and administration policies and others – on top of their directory. That introduces risk and complexity, says Jumpcloud CEO Rajat Bhargava.

The post JumpCloud land $100 million in funding, as secure remote access market continues surge appeared first on SC Media.

Continue reading

Posted in Cloud, Cloud Security, IAM, Security News, Software and solutions | Comments Off on JumpCloud land $100 million in funding, as secure remote access market continues surge