LogRhythm introduces cloud-based SecOps platform Axon
Security firm LogRhythm recently presented Axon, a cloud-based SecOps platform. The platform should give security professionals insight into cloud-based and on-premises log sources.
According to LogRhythm, the solution helps security professionals solve and counter security problems and challeng... Read more
Google Chrome’s new extension platform is expected in 2023
Google provided an update on the development of Manifest V3, the first-next version of the platform that powers extensions on Google Chrome. If everything goes according to plan, users and developers will be transitioned to Manifest V3 in January 2023.
"Years in the making, Manifest V3 is more ... Read more
‘Most incident response professionals face mental health problems’
Most incident response professionals seek help for mental health problems, according to a new report from IBM Security. More than half experience stress and anxiety in their daily lives.
The Cybersecurity Awareness Month kicked off on October 1. Over the course of the month, EU and US security a... Read more
Cybercriminals hack Microsoft Exchange servers with zero-days
Microsoft confirms that cybercriminals are exploiting two zero-day vulnerabilities in Exchange Server 2013, 2016 and 2019.
The vulnerabilities allow cybercriminals to conduct remote code execution attacks. The bugs were discovered by GTSC. The security company published a mitigation guide. The ... Read more
Zscaler acquires ShiftRight to expand cloud security platform
Zscaler announced the acquisition of ShiftRight. The startup's software helps organizations manage the responsibility and accountability of security teams. An important asset, Zscaler says, because many companies don't know which departments are responsible for which security measures.
ShiftRig... Read more
IBM, Vodafone and GSMA collaborate on post-quantum cryptography
Telecom industry association GSMA launched a collaboration with IBM and Vodafone to integrate post-quantum encryption into the telecom industry.
The trio will become part of the GSMA Post-Quantum Telco Network Taskforce. The partners aim to develop policies, guidelines and workflows for post-qua... Read more
‘A third of all cyberattacks target business emails’
A recent analysis from security firm Arctic Wolf indicates a considerable increase in Business Email Compromise (BEC) attacks in the first half of 2022.
According to data analysis and observations from Arctic Wolf's incident response department Tetra Defense, BEC attacks currently account for m... Read more
New malware variant found in hundreds of Linux and Windows devices
Researchers discovered a never-before-seen cross-platform malware variant that infected various Linux and Windows systems, including tiny office routers, FreeBSD machines and huge business servers.
Black Lotus Labs, the research branch of security firm Lumen, named the malware 'Chaos', a term th... Read more
Cybercriminals hijack VMware ESXi with never-before-seen technique
A never-before-seen attack method allows cybercriminals to infiltrate VMware ESXi hypervisors. A report from security firm Mandiant reveals that the technique was used by an unknown threat actor to attack organizations in the wild.
VMware ESXi is one of the world's most widely used hypervisors.... Read more
Auth0 warns that its source code repositories may have been breached
Auth0, an authentication service provider and Okta subsidiary, has reported a security incident impacting several of its code repositories.
Over 2,000 business clients from 30 countries utilize Auth0's authentication technology to verify over 42 million daily logins. Notable clients include AM... Read more