'

Ivanti patches critical EPM flaw that could allow hackers to hijack managed devices

Ivanti patches critical EPM flaw that could allow hackers to hijack managed devices

A vulnerability patched in the Ivanti Endpoint Manager (EPM), an asset monitoring solution for enterprises, could potentially allow managed devices to be hijacked. Users are advised to deploy the patch as soon as possible because vulnerabilities in device management solutions have been attractive targets for attackers in the past. The vulnerability, tracked as CVE-2023-39336, affects … Read more

US DOD’s CMMC 2.0 rules lift burdens on MSPs, manufacturers

US DOD’s CMMC 2.0 rules lift burdens on MSPs, manufacturers

New cybersecurity rules for US Department of Defense (DOD) contractors are entering the home stretch. The rules, which establish a comprehensive and scalable assessment mechanism within the agency’s Cybersecurity Maturity Model Certification (CMMC) program, aim to ensure that contractors and subcontractors are implementing information security measures required by the DOD. The department, which has largely … Read more

23andMe shifts blame to users for data breach

23andMe shifts blame to users for data breach

The DNA testing company 23andMe has had a rough few months – first reported in October that data had been breached – and now, the response to those breaches due to customers taking legal action against the company. In an almost bizarre twist, 23andMe has stated in a letter that plaintiffs who had moved to … Read more