'

CISA discovered a new backdoor, named Whirlpool, used in Barracuda ESG attacks

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) observed a new backdoor, named Whirlpool, in attacks on Barracuda ESG appliances. The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has discovered a new backdoor, named Whirlpool, that was employed in attacks targeting Barracuda ESG devices. At the end of May, the network security solutions provider Barracuda warned … Read more

Embrace Services to Improve Security Operations

Embrace Services to Improve Security Operations

It’s no secret that the threat landscape is becoming more complex by the day. At the same time, the attack surface at many organizations continues to grow. The combination means security analysts are bogged down more than ever to effectively triage, respond to, and remediate alerts, threats, and incidents across their complex hybrid environments. Security … Read more

Making Chrome more secure by bringing Key Pinning to Android

Making Chrome more secure by bringing  Key Pinning to Android

Posted by David Adrian, Joe DeBlasio and Carlos Joan Rafael Ibarra Lopez, Chrome Security Chrome 106 added support for enforcing key pins on Android by default, bringing Android to parity with Chrome on desktop platforms. But what is key pinning anyway? One of the reasons Chrome implements key pinning is the “rule of two”. This … Read more

Google Cloud launches Chronicle CyberShield to help government agencies tackle threats

Google Cloud launches Chronicle CyberShield to help government agencies tackle threats

Google Cloud has announced the launch of Chronicle CyberShield to help government agencies integrate threat intelligence, detection, and response to tackle cyber threats. The solution enables governments to raise threat and situational awareness, build cybersecurity skills and capabilities, and facilitate knowledge sharing and collaboration to increase security at a national level, Google Cloud said. Governments … Read more

Lookout incorporates generative AI assistant to support security professionals and boost security

Lookout incorporates generative AI assistant to support security professionals and boost security

Lookout, the endpoint-to-cloud security company, today announced the launch of Lookout SAIL, the Company’s new generative artificial intelligence (gen AI) assistant that will reshape the way cybersecurity professionals interact with Lookout Mobile Endpoint Security and Lookout Cloud Security solutions and conduct cybersecurity analysis and data protection.   In the rapidly evolving landscape of cybersecurity, companies are … Read more

KnowBe4 helps protect endangered species to celebrate 13th anniversary

KnowBe4 helps protect endangered species to celebrate 13th anniversary

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, has celebrated its 13th anniversary by donating to protect 13 endangered species and adopt 13 beehives. The company says it continuously seeks opportunities to care for and support the environment and this year, the organisation has opted to help protect 13 … Read more

DTX Europe 2023

DTX Europe 2023

DTX brings together creative minds, technical experts and the latest tools needed to drive change and generate value across today’s organisations. “Your Home of Digital Transformation” Covering cloud, networks and infrastructure; data, analytics and AI; software engineering and DevOps; and cyber security, the event showcases the technology, solutions and strategies essential to advance digital projects … Read more

New runtime security tool scans ongoing attacks in cloud workloads

New runtime security tool scans ongoing attacks in cloud workloads

Cloud cybersecurity provider Sweet Security has launched a new runtime security platform, dubbed Sweet, to enable security teams to detect and respond to cloud-based attacks in runtime. The platform deploys sensors in the runtime environment to provide CISOs and security teams with cloud-native cluster visibility. “Like legacy detection and responses solutions, we have sensors deployed … Read more

CISA adds actively exploited flaw in .NET, Visual Studio to its Known Exploited Vulnerabilities catalog

US CISA added zero-day vulnerability CVE-2023-38180 affecting .NET and Visual Studio to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added an actively exploited zero-day vulnerability CVE-2023-38180 (CVSS score 7.5) affecting .NET and Visual Studio to its Known Exploited Vulnerabilities Catalog. The vulnerability can be exploited to trigger a denial-of-service (DoS) condition, … Read more

US Govt launches Artificial Intelligence Cyber Challenge

The US Government House this week launched an Artificial Intelligence Cyber Challenge competition for creating a new generation of AI systems. On Wednesday, the United States Government House introduced an Artificial Intelligence Cyber Challenge competition. The two-year competition aims to foster the development of innovative AI systems that can protect critical applications from cyber threats. … Read more

Understanding Changes in the OWASP API Security Top 10 List

Understanding Changes in the OWASP API Security Top 10 List

The Open Web Application Security Project (OWASP),  a non-profit foundation devoted to web application security, recently released the 2023 OWASP API Security Top 10 list. The list aims to raise awareness about the most common API security risks plaguing organisations and how to defend against them. The 2023 list provides an update to the original … Read more

Data of all serving police officers Police Service of Northern Ireland (PSNI) mistakenly published online

Data of all serving police officers Police Service of Northern Ireland (PSNI) mistakenly published online

Police Service of Northern Ireland (PSNI) mistakenly shared sensitive data of all 10,000 serving police officers in response to a FOI request. The Police Service of Northern Ireland (PSNI) has mistakenly shared sensitive data of all 10,000 serving police officers in response to a Freedom of Information (FOI) request. The request aimed at determining the … Read more