Data Breach Today

NOVEMBER 23, 2023

Market Watchers Forecast Large Rise in Offensive and Defensive Tool Adoption The Asia-Pacific region will dramatically increase its investment in offensive and security tools over the next decade, amid a worsening threat landscape and rising losses, experts predict.

Cybersecurity 257

Cybersecurity Marketing Security IT 257

Data Breach Today

JULY 6, 2023

Dionisio Zumerle of Gartner on Impact of XDR and SASE, Consolidation Misconceptions A growing number of security teams are looking to consolidate tools to simplify operations, said Gartner analyst Dionisio Zumerle.

Security 144

Security IT 144

Data Breach Today

OCTOBER 25, 2023

Series B Funding Will Allow Security Operations Vendor to Pursue Product-Led Growth A mid-market security operations vendor founded by a ex-Marine Corps officer closed its Series B funding round to pursue a product-led growth strategy. Washington D.C.-based

Cloud 270

Cloud Marketing Security IT 270

Krebs on Security

FEBRUARY 20, 2024

Instead of listing data stolen from ransomware victims who didn’t pay, LockBit’s victim shaming website now offers free recovery tools, as well as news about arrests and criminal charges involving LockBit affiliates. This prompted several XSS members to start posting memes taunting the group about the security failure.

Ransomware 259

Ransomware Encryption Insurance Manufacturing 259

Data Breach Today

AUGUST 1, 2023

OpenText Cybersecurity Director Steven Wood on Consolidation, Skills Shortage As more organizations undergo resource and cost pressures, 86% of managed security services customers are deciding to consolidate security tools and outsource their security requirements, according to the OpenText Cybersecurity 2023 Global Managed Security Survey.

Cybersecurity 239

Cybersecurity Security 239

Data Breach Today

APRIL 9, 2021

Cisco Talos: Reliance on These Tools Expands Attack Surface The increasing reliance on collaboration tools such as Slack and Discord to support those working remotely during the COVID-19 pandemic has opened up new ways for fraudsters and cybercriminals to bypass security tools and deliver malware, Cisco Talos reports.

Security 322

Security 322

eSecurity Planet

OCTOBER 18, 2021

But that success and the openness inherent in the community have led to a major challenge – security. Therefore, any security vulnerabilities are disclosed publicly. This has given rise to a large number of open source security tools. However, the tools themselves vary considerably in scope, sophistication, and function.

Security 135

Security Encryption Compliance Libraries 135

Data Breach Today

DECEMBER 19, 2023

Okta Says Acquisition Will Expand Its Ability to Detect High-Risk Accounts Okta finalized an agreement to acquire Spera Security, saying the purchase will expand its ability to track risky accounts and access misconfigurations.

Security 292

Security Risk Access IT 292

Data Breach Today

MARCH 18, 2024

Data Security Vendor Retains Unicorn Status With Riverwood Capital-Led Growth Round A data security firm led by a former CA Technologies executive raised $60 million to boost both organic and inorganic expansion around data and compliance.

Compliance 270

Compliance Security Access IT 270

Data Breach Today

MAY 31, 2022

Verified ID and Permissions Management Will Extend Secure Access to Workloads, Apps Microsoft plans to roll out new decentralized identity and cloud infrastructure entitlement management products to extend secure access from users to workloads and apps.

Access 228

Access Security Cloud 228

Dark Reading

NOVEMBER 13, 2023

We need to treat security as a process issue, not try to solve it with a collection of tools. Process failures are the root cause of most serious cybersecurity incidents.

Security 90

Security Cybersecurity IT 90

eSecurity Planet

AUGUST 26, 2021

In fact, there are more than a few flaws present, as well as the occasional gaping security hole. Code debugging and code security tools exist to find and help developers fix the problems that occur. Such tools typically capture exceptions as they occur and provide diagnostic and contextual data to make resolution easier.

Security 143

Security Libraries IT Cloud 143

The Last Watchdog

JANUARY 12, 2024

12, 2024 – Trimarc Security , the professional services company with extensive expertise in securing Active Directory for enterprise organizations, today announced the early access availability of its new product, Trimarc Vision. What is the current security posture of ALL of my AD forests? Washington, DC, Jan.

Security 100

Security Risk Cloud Access 100

Data Breach Today

OCTOBER 9, 2023

Updates Expected Wednesday for Open-Source Command-Line Tool, Library Maintainers of the widely used open-source command-line tool cURL and libcurl library that supports key network protocols said two upcoming vulnerabilities are set to be disclosed this week.

Libraries 292

Libraries Security 292

Data Breach Today

JULY 1, 2021

Tool Designed to Gauge Whether Organizations Have Adequate Defense, Recovery Measures The U.S. Cybersecurity and Infrastructure Security Agency has released a Ransomware Readiness Assessment audit tool to help organizations size up their ability to defend against and recover from attacks.

Ransomware 284

Ransomware Cybersecurity Security 284

Security Affairs

MARCH 30, 2024

Red Hat warns of a backdoor in XZ Utils data compression tools and libraries in Fedora development and experimental versions. Red Hat urges users to immediately stop using systems running Fedora development and experimental versions because of a backdoor in the latest versions of the “xz” tools and libraries. rpm and xz-libs-5.6.0-2.fc40.x86_64.rpm

Libraries 125

Libraries Authentication Access Risk 125

Security Affairs

APRIL 22, 2024

Russia-linked APT28 group used a previously unknown tool, dubbed GooseEgg, to exploit Windows Print Spooler service flaw. Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028.

Military 93

Military File names Education Phishing 93

Data Breach Today

OCTOBER 13, 2023

Not so long ago, security organizations rallied behind "best of breed" security solutions. But now, trying to reduce tech debt, rationalize tools and consolidate vendors, there is a push for the platform approach. Cisco's Amilcar Alfaro talks about how to tap into the platform advantage.

Security 284

Security 284

eSecurity Planet

MAY 19, 2023

Application security tools and software solutions are designed to identify and mitigate vulnerabilities and threats in software applications. These tools play a vital role in ensuring the security, integrity, and confidentiality of sensitive information, such as personal data and financial records.

Security 94

Security Cloud Compliance Risk 94

Data Breach Today

AUGUST 5, 2020

Sophos Says Malware Designed to Avoid Security Measures WastedLocker, a ransomware strain that reportedly shut down Garmin's operations for several days in July, is designed to avoid security tools within infected devices, according to a technical analysis from Sophos.

Ransomware 293

Ransomware Security 293

Data Breach Today

JUNE 19, 2023

BatCloak Slips Batch Files Past AV and EDR Detection Malware developers are adopting an easy-to-use obfuscation tool that slips malware past antivirus, warn security researchers. BatCloak requires minimal programming skills to use. Among its recent successes is a recent remote access Trojan dubbed SeroXen.

Access 157

Access Security IT 157

Security Affairs

SEPTEMBER 28, 2022

nuvola is the new open-source cloud security tool to address the privilege escalation in cloud environments. nuvola is the new open source security tool made by the Italian cyber security researcher Edoardo Rosa ( @_notdodo_ ), Security Engineer at Prima Assicurazioni. Cloud Security Context.

Cloud 91

Cloud Security Metadata Data breaches 91

Data Breach Today

APRIL 4, 2024

Fictitious Dialogue' About Harmful Content Subverts Defenses, Researchers Find After testing safety features built into generative artificial intelligence tools developed by the likes of Anthropic, OpenAI and Google DeepMind, researchers have discovered that a technique called "many-shot jailbreaking" can be used to defeat safety guardrails and obtain (..)

Artificial Intelligence 268

Artificial Intelligence Security 268

Data Breach Today

JANUARY 20, 2021

FireEye Also Describes Hackers' Tools and Techniques Security firm FireEye has released a free auditing and remediation tool on GitHub that it says can help organizations determine if the hacking group that targeted SolarWinds used similar techniques within their network to gain access to Microsoft Office 365 accounts.

Access 263

Access Security IT 263

Schneier on Security

MAY 11, 2021

Microsoft researchers just released an open-source automation tool for security testing AI systems: “ Counterfit.” ” Details on their blog.

Risk 120

Risk Security Artificial Intelligence 120

Data Breach Today

JUNE 13, 2020

Suspected Russia-Linked Hackers Have Previously Focused on Ukraine The Gamaredon hacking group is now using a new set of malicious tools to compromise Microsoft Outlook as a way of sending spear-phishing emails to victims' contact lists, according to security firm ESET.

Phishing 321

Phishing Security 321

Schneier on Security

MARCH 28, 2023

Both Google’s Pixel’s Markup Tool and the Windows Snipping Tool have vulnerabilities that allow people to partially recover content that was edited out of images.

Security 81

Security Cybersecurity Privacy 81

Data Breach Today

APRIL 29, 2021

Complain Alleges 'Exposure Notification System' Allows Third-Party Access to Personal Info A lawsuit alleges that a security flaw in a Google COVID-19 contact tracing tool is exposing personal and medical information of millions of users to third parties through device system logs.

Access 273

Access Security IT 273

Data Breach Today

OCTOBER 17, 2018

The Department of Health and Human Services has updated its HIPAA security risk assessment tool to better assist small and mid-sized healthcare entities and their vendors in performing a comprehensive risk analysis. But Why Is Conducting a Risk Analysis So Challenging for So Many Organizations?

Risk 174

Risk Security IT 174

The Last Watchdog

MARCH 29, 2022

Log4j is the latest, greatest vulnerability to demonstrate just how tenuous the security of modern networks has become. By no means has the cybersecurity community been blind to the complex security challenges spinning out of digital transformation. Related: The exposures created by API profileration.

Security 218

Security Cloud Digital transformation Cybersecurity 218

Schneier on Security

FEBRUARY 20, 2024

Microsoft announced that it caught Chinese, Russian, and Iranian hackers using its AI tools—presumably coding tools—to improve their hacking abilities.

IT 132

IT Artificial Intelligence 132

Data Breach Today

DECEMBER 8, 2020

Security Vendor Believes No Customer Data Was Exfiltrated FireEye, one of the world's top cybersecurity firms, says in a striking announcement on Tuesday that attackers stole its penetration testing tools and sought information about its government clients. However, FireEye doesn't believe the attackers exfiltrated data.

Cybersecurity 274

Cybersecurity Government Security IT 274

Data Breach Today

OCTOBER 22, 2021

Tools Used for Personal Surveillance, Malicious Activities Must Be Licensed The U.S.

Sales 272

Sales Cybersecurity Security 272

The Last Watchdog

MARCH 17, 2022

Cybersecurity tools evolve towards leveraging machine learning (ML) and artificial intelligence (AI) at ever deeper levels, and that’s of course a good thing. Sophisticated tools were employed to auto generate content that compelled users to respond. Related: Business logic hacks plague websites. Accelerate time-sensitive processes.

Cybersecurity 213

Cybersecurity Artificial Intelligence Personal data Phishing 213

Security Affairs

OCTOBER 12, 2023

Cybernews presented Ransomlooker , a tool to monitor ransomware groups’ extortion sites and delivers consolidated feeds of their claims worldwide. The researchers have created the tool to help cybersecurity experts in their daily jobs by providing real-time updates and actionable insights. ” reads the announcement.

Ransomware 129

Ransomware Personal data Access Cybersecurity 129