Security is more important than ever. Cybersecurity has been a problem from the start of IT and it will be till the end. It all started with endpoint and network security, but today, we are also facing with cloudsecurity and managing employees to incorporate good security practices.
All these new technologies that help us innovate also helps cybercriminals and state sponsored hackers to get new tools they can use to get access to our systems, and in a worst case scenario, access to our most valuable data and business secrets. Also, with new legislation in place like GDPR, you need to make sure everything is secure, otherwise you just don’t lose your reputation, but you can also be fined by the government. Protecting IT-environments is more important than ever.
Your first line of defense is usually endpoint protection. The devices your employees work with need to be protected against ransomware and other malware which can bring lots and lots of trouble. This nowadays the most basic form of protection and many of the bigger vendors and suites can help you achieve this.
Network security is a bit more advanced, where you can manage which traffic goes across your network. You can also connect different networks together with e.g. SD-WAN. So, you can run protection software and share data between multiple locations. The trend we see in network protection on the datacenter side is to lock down the traffic by only allowing known, benevolent traffic sources. Regarding office networking, we see new initiatives like ZScaler coming up, where you tunnel all your staff over the network of ZScaler so they can analyse the traffic and block patterns that they marked as malicious. Especially for companies with employees that travel a lot, this is a smart solution.
Many thought that bringing workloads to the cloud would reduce their responsibility of doing security. It is now clear that this is not the case. Most cloud vendors practice the “shared responsibility” approach. This means that big hyperscalers can offer a first line of defense against well known threats and port scanners. For the more sophisticated attacks that are directly pointed at your servers, you need to have your protection in place.
Microsoft unveiled two new solutions that give SOCs more access to the threat intelligence data that Microsoft collects on a daily basis. In this way, organizations can better protect themselves and have the same data at their disposal as Microsoft cybersecurity experts. Earlier this week, Micro... Read more
2 years ago
VMware warns of an authentication vulnerability that could allow hackers to gain administrator privileges. The vulnerability affects Workspace ONE Access, Identity Manager and vRealize Automation. The vulnerability was dubbed CVE-2022-31656 and given a high-priority status. Administrators are ad... Read more
2 years ago
APIs are increasingly targeted to attack organizations. Salt Security's customers saw twice as much malicious API traffic in the past quarter as they did last year. Salt Security develops an API security platform. Users gain into all APIs of their environment. Suspicious network traffic and misc... Read more
2 years ago
Private investor Thoma Bravo announced the acquisition of Ping Identity. Ping Identity develops access management solutions. Thoma Bravo intends to acquire the company for $2.8 billion (€2.75 billion). Ping Identity's announced its quarterly results on the same day as the acquisition. Revenue ... Read more
2 years ago
Qualys added external attack surface management (EASM) capabilities to CyberSecurity Asset Management 2.0, a solution that detects unknown systems in infrastructures. The new capabilities allow users to view an infrastructure from the perspective of a hacker. Each internet-facing asset is presented... Read more
2 years ago
The company says that the latest builds of Windows 11 block even sophisticated attacks. Microsoft released new Windows 11 builds to the Beta Channel with improved Microsoft Defender for Endpoint ransomware attack blocking capabilities, according to a report in BleepingComputer. As the compan... Read more
2 years ago
The company was the victim of an LV Ransomware attack and claims to have its data stolen. German power electronics manufacturer Semikron has disclosed that it was hit by a ransomware attack that partially encrypted the company's network, according to a report in BleepingComputer. Semikron has... Read more
2 years ago
The Black Cat ransomware takes charge of a cyberattack on a Luxembourg-based power company. On July 22 and 23, an attack on Encevo's energy and gas rail line corporation in Luxembourg contributed to network invaders trying to withdraw data. The connection to Black Cat, also recognized as ALPH... Read more
2 years ago
SentinelOne launches Storage Sentinel for Amazon S3. The solution scans cloud storage and intercepts incoming malware. Amazon S3 is one of the most popular object storage services. A customer's drives should only be accessible by authorized users and applications. S3 reviews authorization by req... Read more
2 years ago
Microsoft Defender Experts for Hunting is now generally available. The managed security service is part of Microsoft Security Experts for Microsoft 365 Defender. The service helps security operations centers (SOCs) find threats in endpoints, Office 365, cloud apps and identity management systems... Read more
2 years ago
