Top Information Management Today Content for August, 2023

News alert: Picus Security attack simulations report reveals organizations prevent 6 of 10 attacks

The Last Watchdog

AUGUST 8, 2023

8, 2023 – Picus Security , the pioneer of Breach and Attack Simulation (BAS) technology, has released The Blue Report 2023. Picus’ Blue Report data shows that, on average, organizations’ security controls (such as next-gen firewalls and intrusion prevention solutions) only prevent 6 out of every 10 attacks.

Security

Security Risk Ransomware Marketing

Weekly Vulnerability Recap – August 14, 2023 – Old or New, Vulnerabilities Need Management

eSecurity Planet

AUGUST 14, 2023

August 12 , 2023 Ford Auto’s TI Wi-Fi Vulnerability The Internet of Things (IoT) continues to expand and become a threat to connected businesses. August 11 , 2023 DEFCON and Black Hat Vulnerabilities Security researchers at DEFCON and Black Hat discussed a number of vulnerabilities with significant impact for affected organizations.

Cybersecurity

Cybersecurity Access IoT Manufacturing

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

eSecurity Planet

AUGUST 28, 2023

August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

Authentication

Authentication Ransomware Passwords Cybersecurity

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

eSecurity Planet

AUGUST 28, 2023

August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

Authentication

Authentication Ransomware Passwords Cybersecurity

FBI: Patches for Barracuda ESG Zero-Day CVE-2023-2868 are ineffective

Security Affairs

AUGUST 24, 2023

The FBI warned that patches for a critical Barracuda ESG flaw CVE-2023-2868 are “ineffective” and patched appliances are still being hacked. The Federal Bureau of Investigation warned that security patches for critical vulnerability CVE-2023-2868 in Barracuda Email Security Gateway (ESG) are “ineffective.”

Access

Access Phishing Security Cybersecurity

News Alert: Devo, Cybermindz partner to improve mental health of cybersecurity pros in the U.S.

The Last Watchdog

AUGUST 1, 2023

1, 2023 – Devo Technology , the cloud-native security analytics company, today announced its financial support for Cybermindz, a not-for-profit organization dedicated to improving the mental health and well-being of cybersecurity professionals. is part of our larger goal of international expansion, with a UK launch in September 2023.

Cybersecurity

Cybersecurity Analytics Military Cloud

News Alert: AppViewX – EMA study finds 79 percent of SSL/TLS certificates vulnerable to MiTM attacks

The Last Watchdog

AUGUST 1, 2023

1, 2023– AppViewX , a leader in automated machine identity management (MIM) and application infrastructure security, today announced the results of a research study conducted by Enterprise Management Associates (EMA) on SSL/TLS Certificate Security. New York, NY, Aug.

Risk

Risk Compliance Security Information Security

Archive-It Partner News, August 2023

Archive-It

AUGUST 16, 2023

2023 Archive-It Partner Meeting recap – About 30 Archive-It partners and friends gathered at the D.C 2023-08-10: Web Archiving and Digital Libraries (WADL) Workshop 2023 Trip Report Kritika Garg shares a recap of the WADL workshop, including overviews of each presentation + slides. We’re Hiring!

Archiving

Archiving IT Libraries Mining

Security Affairs newsletter Round 431 by Pierluigi Paganini – International edition

Security Affairs

AUGUST 6, 2023

Reptile Rootkit employed in attacks against Linux systems in South Korea New PaperCut flaw in print management software exposes servers to RCE attacks A cyberattack impacted operations of multiple hospitals in several US states Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016 Malicious packages in (..)

Security

Security Military Phishing Sales

UNC4841 threat actors hacked US government email servers exploiting Barracuda ESG flaw

Security Affairs

AUGUST 29, 2023

The vulnerability, tracked as CVE-2023-2868 , resides in the module for email attachment screening, the issue was discovered on May 19 and the company fixed it with the release of two security patches on May 20 and 21. Earliest identified evidence of exploitation of CVE-2023-2868 is currently October 2022.” In August, the U.S.

Government

Government Access Security Cybersecurity

Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach

Security Affairs

AUGUST 14, 2023

“While HCPF confirmed that no other HCPF systems or databases were impacted, on June 13, 2023, the investigation identified that certain HCPF files on the MOVEit application used by IBM were accessed by the unauthorized actor on or about May 28, 2023. CDHE did not disclose the number of impacted individuals.

Data breaches

Data breaches Ransomware Education Access

Microsoft fixed a flaw in Power Platform after being criticized

Security Affairs

AUGUST 6, 2023

On 30 March 2023, the vulnerability was reported to Microsoft by Tenable under Coordinated Vulnerability Disclosure (CVD). On July 6, 2023 Microsoft informed Tenable that the issue is fixed, but on July 10, 2023, Tenable informed Microsoft that the fix is incomplete.

Authentication

Authentication Access Communications Security

Massive MOVEit campaign already impacted at least 1,000 organizations and 60 million individuals

Security Affairs

AUGUST 28, 2023

The Cl0p ransomware gang exploited the zero-day vulnerability CVE-2023-34362 to hack the platforms used by organizations worldwide and steal their data. The data is sourced from state breach notifications, SEC filings, and other public disclosures, as well as the leak site maintained by the Cl0p group, and is current as of August 25, 2023.

Insurance

Insurance Ransomware Data breaches Education

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

The Last Watchdog

AUGUST 3, 2023

3, 2023 — Vaultree, a cybersecurity leader pioneering Fully Functional Data-In-Use Encryption (FFDUE), today announces a strategic integration with Tableau, a renowned platform for data visualization and business intelligence. Vaultree is also thrilled to announce its sponsorship at Black Hat USA 2023.

Encryption

Encryption Analytics Data Privacy Cybersecurity

BlackCat ransomware group claims the hack of Seiko network

Security Affairs

AUGUST 21, 2023

On August 10, 2023, the Japanese maker of watches Seiko disclosed a data breach following a cyber attack. The BlackCat/ALPHV ransomware group claims to have hacked the Japanese maker of watches Seiko and added the company to its data leak site.

Ransomware

Ransomware Data breaches Cybersecurity Access

Spoofing an Apple device and tricking users into sharing sensitive data

Security Affairs

AUGUST 21, 2023

Friendly remember to be careful at #Defcon I keep getting these alerts pic.twitter.com/ygUiCCJQmb — Jaime Blasco (@jaimeblascob) August 10, 2023 The security researcher who goes by Jae Bochs said on Mastodon that the messages were part of their research project. not from control center) and to have a laugh.”

Passwords

Passwords Security IT Information Security

News alert: Fireblocks uncovers vulnerabilities impacting dozens of major wallet providers

The Last Watchdog

AUGUST 9, 2023

9, 2023 – Today, the Fireblocks Cryptography Research Team announced the findings of multiple zero-day vulnerabilities in some of the most used cryptographic multi-party computation (MPC) protocols, including GG-18, GG-20, and implementations of Lindell 17. New York, N.Y.,

Retail

Retail Insurance Libraries Paper

Microsoft Patch Tuesday, August 2023 Edition

Krebs on Security

AUGUST 8, 2023

They were assigned a single placeholder designation of CVE-2023-36884. Satnam Narang , senior staff research engineer at Tenable, said the August patch batch addresses CVE-2023-36884 , which involves bypassing the Windows Search Security feature. out of a possible 10, even though Microsoft rates it as an important flaw, not critical.

Passwords

Passwords Security Risk IT

News alert: Voxel AI increases funding to $30M, aims to transform industrial workplace safety

The Last Watchdog

AUGUST 31, 2023

30, 2023 — Every year over 340m workers suffer a workplace injury: slips and falls, strains and sprains, vehicle collisions and crashes. Best B2B Tech Tool of 2023 by Products That Count. San Francisco, Calif., Featured in the Fast Company magazine Most Innovative Companies list.

Artificial Intelligence

Artificial Intelligence Manufacturing B2B Retail

Ongoing Xurum attacks target Magento 2 e-stores

Security Affairs

AUGUST 14, 2023

The campaign is active since at least January 2023, threat actors seem to be interested in payment stats from the orders in the victim’s Magento store placed in the past 10 days. The name Xurum comes from the domain name of the attacker’s command and control (C2) server.

CMS

CMS IT Security Information Security

6 Best IT Asset Management (ITAM) Software 2023

eSecurity Planet

AUGUST 23, 2023

Additional capabilities – 10% Other features that our research team scored included financial and risk analysis, third-party asset vendor management, and configuration management databases. 23, 2023 Read next: Vulnerability Patching: How to Prioritize and Apply Patches Is the Answer to Vulnerabilities Patch Management as a Service?

IT

IT IoT Compliance Cybersecurity

New study reveals why mainframe application modernization is key to accelerating digital transformation

IBM Big Data Hub

AUGUST 21, 2023

The new research from the IBM Institute for Business Value found that nearly 7 in 10 IT executives say mainframe-based applications are central to their business and technology strategies. On top of that, 68% of respondents say mainframe systems are central to their hybrid cloud strategy.

Digital transformation

Digital transformation Cloud Marketing Compliance

India Passes Digital Personal Data Protection Act

Hunton Privacy

AUGUST 22, 2023

reports that in early August 2023, the Indian Parliament passed the Digital Personal Data Protection Act (the “Act”), bringing to a close a 5-year process to enact an omnibus data privacy law in India. Effective Date The Government has announced that it would implement the Act within 10 months, but has not yet set an effective date.

Personal data

Personal data Data breaches GDPR Government

New from Collibra in Q3 2023: Faster time to value with expanded visibility across your data landscape

Collibra

AUGUST 29, 2023

The post New from Collibra in Q3 2023: Faster time to value with expanded visibility across your data landscape appeared first on Collibra. Our latest 2023.08 release offers powerful innovations and integrations that help you achieve faster time to value with expanded visibility across your data landscape.

Cloud

Cloud Metadata Access Security

News Alert: Guardz uncovers new macOS malware – Hidden Virtual Network Computing (hVNC)

The Last Watchdog

AUGUST 1, 2023

1, 2023 – Guardz , the cybersecurity company securing and insuring SMEs, today disclosed the existence of a Hidden Virtual Network Computing (hVNC) malware targeting macOS devices. Tel Aviv, Israel, Aug.

Insurance

Insurance Cybersecurity Risk Education

Cloud Key Management Solution for Azure, Azure Stack and M365

Thales Cloud Protection & Licensing

AUGUST 2, 2023

Cloud Key Management Solution for Azure, Azure Stack and M365 madhav Thu, 08/03/2023 - 05:59 Uncover Your Cybersecurity Blind Spots Cybersecurity is a strategic risk that should be managed at the highest levels of an organization. Join our Webinar Tune in for a webinar with a short demo on August 24 at 10 am Central.

Cloud

Cloud Encryption Digital transformation Compliance

Accounts Payable: The Eternal Low-Hanging Fruit of the IDP Industry

Info Source

AUGUST 4, 2023

We’re now in 2023 and like I said it’s been more than eleven years and paper is still around. So I think those are several events and if you think about it, that’s in the span of; what, maybe 10-15 years? I know I’m lying a little about my age, but let’s stick with 11 years. And it’s amazing to see.

Paper

Paper Digital transformation Communications IT

Take advantage of AI and use it to make your business better

IBM Big Data Hub

AUGUST 15, 2023

Regulations to protect consumers are ever expanding; In July 2023, the EU Commission proposed new standards of GDPR enforcement and a data policy that would go into effect in September. Without proper governance and transparency, companies risk reputational damage, economic loss and regulatory violations.

Artificial Intelligence

Artificial Intelligence IT Customer Experience Government

Information Management Today

August, 2023

News alert: Picus Security attack simulations report reveals organizations prevent 6 of 10 attacks

Weekly Vulnerability Recap – August 14, 2023 – Old or New, Vulnerabilities Need Management

Webinars

Trending Sources

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

Webinars

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

FBI: Patches for Barracuda ESG Zero-Day CVE-2023-2868 are ineffective

News Alert: Devo, Cybermindz partner to improve mental health of cybersecurity pros in the U.S.

News Alert: AppViewX – EMA study finds 79 percent of SSL/TLS certificates vulnerable to MiTM attacks

Archive-It Partner News, August 2023

Security Affairs newsletter Round 431 by Pierluigi Paganini – International edition

UNC4841 threat actors hacked US government email servers exploiting Barracuda ESG flaw

Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach

Microsoft fixed a flaw in Power Platform after being criticized

Massive MOVEit campaign already impacted at least 1,000 organizations and 60 million individuals

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

BlackCat ransomware group claims the hack of Seiko network

Spoofing an Apple device and tricking users into sharing sensitive data

News alert: Fireblocks uncovers vulnerabilities impacting dozens of major wallet providers

Microsoft Patch Tuesday, August 2023 Edition

News alert: Voxel AI increases funding to $30M, aims to transform industrial workplace safety

Ongoing Xurum attacks target Magento 2 e-stores

6 Best IT Asset Management (ITAM) Software 2023

New study reveals why mainframe application modernization is key to accelerating digital transformation

India Passes Digital Personal Data Protection Act

New from Collibra in Q3 2023: Faster time to value with expanded visibility across your data landscape

News Alert: Guardz uncovers new macOS malware – Hidden Virtual Network Computing (hVNC)

Cloud Key Management Solution for Azure, Azure Stack and M365

Accounts Payable: The Eternal Low-Hanging Fruit of the IDP Industry

Take advantage of AI and use it to make your business better

Stay Connected