Category: Security

November 2, 2023

Attackers have begun exploiting a critical remote code execution vulnerability patched last week in Apache ActiveMQ to deploy ransomware in enterprise networks. Users are urged to upgrade the software as soon as possible. “Beginning Friday, October 27, Rapid7 Managed Detection […]

November 1, 2023

More cloud computing solutions, remote and work-from-home systems and internet-connected devices increase risk from an expanded attack surface. As surveys predict the enterprise attack surface will continue to increase, the best way to reduce the number of vulnerabilities is to […]

October 31, 2023

Data loss prevention (DLP) vendors are racing to add support for generative AI use cases to their platforms, following the popularity and increasing adoption of ChatGPT since its release in November 2022. The tool quickly became the fastest-growing app in […]

October 31, 2023

The cybersecurity workforce shortage has risen to a record high of just under 4 million despite the cybersecurity workforce growing by almost 10% in the last year. That’s according to the latest Cybersecurity Workforce Study from ISC2, the nonprofit member […]

October 30, 2023

Zero trust is a high-level strategy that assumes that individuals, devices, and services that are attempting to access company resources, even those inside the network, cannot implicitly be trusted. To enhance security, these users are verified every time they request […]

October 26, 2023

Rapid growth in cloud vulnerabilities, hijacked cloud credentials, sophisticated threat actors targeting cloud deployments, and difficulty troubleshooting performance issues across multi cloud environments have made one thing very clear: visibility into network activity is just as essential in public cloud […]

October 26, 2023

Increased network complexity, constant security challenges, and talent shortages are driving enterprises to depend more on channel business partners, including managed service providers, system integrators, resellers and other tech providers. Greater use of partners by enterprises is expected to continue […]

October 24, 2023

In today’s rapidly evolving digital landscape, network security is of paramount importance. Recent high-profile network outages have underscored the need for organizations to not only automate improvements in network security but also recover quickly and minimize downtime when disaster strikes. […]

October 23, 2023

It’s been about 15 years since public cloud stormed onto the scene and established itself as a core component of any enterprise’s digital transformation strategy. Over that time, the threat landscape has changed radically. As such, enterprises need to take […]

October 16, 2023

Recent data paints a conflicting picture in relation to cybersecurity budgets. Some research indicates that budgets are increasing healthily with CISOs eyeing up their next spending sprees. Other studies suggest security budgets are tightening or even being slashed despite previously […]

October 12, 2023

At the beginning of August, the Cybersecurity & Infrastructure Security Agency (CISA) and the Federal Emergency Management Agency (FEMA) announced a partnership to allocate $374.9 million in grants to strengthen state and local cybersecurity initiatives. This represents a crucial pivot […]

October 12, 2023

Progress Software could be staring at fresh litigations over the explosive zero-day found in its file transfer service, MOVEit, which affected millions of end users globally. The latest probe comes from the US Security and Exchange Commission (SEC), which is […]

October 12, 2023

An Internet-wide security vulnerability is at the root of a zero-day attack dubbed “HTTP/2 Rapid Reset,” which resulted in a distributed denial-of-service (DDoS) flood that was orders of magnitude larger than any previous attack ever recorded. It marks a new […]

October 10, 2023

Over the past two months attackers have been abusing a feature of the HTTP/2 web communication protocol that makes web application servers, load balancers, and web proxies vulnerable to distributed denial-of-service (DDoS) attacks of unprecedented scale. Google, AWS, Cloudflare, and […]

October 10, 2023

Despite organizations upping their spend on cybersecurity technology, infrastructure, and services each year, threat actors are still finding ways to slip through the cracks. There are two main reasons for this: One, human error: Unfortunately, many users still don’t take […]

October 9, 2023

The point at which quantum computers will be capable of breaking existing cryptographic algorithms — known as “Q-Day” — is approaching. It’s a juncture that’s been discussed for years, but with advancements in computing power, post-quantum threats are becoming very […]

October 7, 2023

IBM is rolling out AI-based managed services that promise to help network and security operations teams more quickly and effectively respond to enterprise cyber threats. Managed by the IBM Consulting group, the Threat Detection and Response (TDR) Services offering promises […]

October 5, 2023

Only about a fifth of cybersecurity leaders today are confident about their organization’s cybersecurity approach, with only a half trusting the training they provide in-house, according to an EY study. The study that surveyed 500 cybersecurity leaders worldwide found them […]

October 4, 2023

As National Cybersecurity Awareness Month kicks off, it’s a good time to reflect on how secure the systems you manage are – whether they’re running Linux, Windows or some other OS. While Linux is considered by many to be more […]

October 4, 2023

Identity and access management company Okta has announced the launch of a new initiative focused on finding and developing cybersecurity talent and providing equitable access to careers. Through philanthropic and educational grants, Okta aims to support global organizations providing career […]