Security is more important than ever. Cybersecurity has been a problem from the start of IT and it will be till the end. It all started with endpoint and network security, but today, we are also facing with cloudsecurity and managing employees to incorporate good security practices.
All these new technologies that help us innovate also helps cybercriminals and state sponsored hackers to get new tools they can use to get access to our systems, and in a worst case scenario, access to our most valuable data and business secrets. Also, with new legislation in place like GDPR, you need to make sure everything is secure, otherwise you just don’t lose your reputation, but you can also be fined by the government. Protecting IT-environments is more important than ever.
Your first line of defense is usually endpoint protection. The devices your employees work with need to be protected against ransomware and other malware which can bring lots and lots of trouble. This nowadays the most basic form of protection and many of the bigger vendors and suites can help you achieve this.
Network security is a bit more advanced, where you can manage which traffic goes across your network. You can also connect different networks together with e.g. SD-WAN. So, you can run protection software and share data between multiple locations. The trend we see in network protection on the datacenter side is to lock down the traffic by only allowing known, benevolent traffic sources. Regarding office networking, we see new initiatives like ZScaler coming up, where you tunnel all your staff over the network of ZScaler so they can analyse the traffic and block patterns that they marked as malicious. Especially for companies with employees that travel a lot, this is a smart solution.
Many thought that bringing workloads to the cloud would reduce their responsibility of doing security. It is now clear that this is not the case. Most cloud vendors practice the “shared responsibility” approach. This means that big hyperscalers can offer a first line of defense against well known threats and port scanners. For the more sophisticated attacks that are directly pointed at your servers, you need to have your protection in place.
The company has added two new languages and a password history feature that provides an extra layer of security and peace of mind. The password history feature, now available across all operating systems and devices, is an essential addition for NordPass users who share or jointly manage passwor... Read more
1 year ago
Cyber criminals recently modified the ESXi ransomware against scripts that managed to recover affected servers. The new version encrypts 50 percent of all files starting at 128 MB, making recovery operations nearly impossible. This writes Bleeping Computer. The recent ransomware attack on VMware... Read more
1 year ago
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently released a script that can be used to restore servers affected by the ESXiArgs ransomware. The cybersecurity agency made this script available on GitHub. The published CISA ESXiArgs-Recover script from the U.S. government'... Read more
1 year ago
VMware advises users with VMware ESXi servers to perform updates as soon as possible to counter the recent ESXiArgs ransomware and disable the OpenSLP service. In addition, it is confirmed that the attack is not a zero-day vulnerability. VMware states in a response that the attack does not invol... Read more
1 year ago
Cisco expands integration between networking portfolios also in the area of secure access. Last year at Cisco Live, there was quite a bit of focus on Cisco+ Secure Connect. This SASE service should ensure secure access to enterprise networks, cloud environments and SaaS solutions from anywhere... Read more
1 year ago
Thousands of VMware ESXi servers worldwide were hit by a ransomware attack this weekend. The attack in question uses a two-year-old vulnerability for this type of servers, according to the French Computer Emergency Response Team (CERT-FR). According to the French cybersecurity watchdog, a ransom... Read more
1 year ago
New research suggests that the adoption of a "virtuous cycle" model can close security gaps. This week Darktrace, the cybersecurity AI provider, announced the release of a new IDC InfoBrief that it has sponsored. The report is entitled "Building the Case for a Virtuous Cycle in Cybersecurity" an... Read more
1 year ago
The combined solution also uses AIOps to reduce networking complexity while enhancing security. This week NTT announced the addition of Palo Alto Networks's Prisma SASE to its Managed Campus Networks portfolio. The new offering is a comprehensive managed Secure Access Service Edge (SASE) solutio... Read more
1 year ago
Between February 6 and 8, Cisco Live will take place in Amsterdam. Security is prominently on the agenda during those days. Luckily, we would argue, because the security market is far from clear. Many suppliers, many promises, but ultimately also many incidents. In short, organizations can no longe... Read more
1 year ago
The cybercriminals were abusing a verification mechanism in the Microsoft Cloud Partner Program (MCPP). In December 2022, the tech giant quickly stopped the hackers' efforts to steal data by exploiting third-party OAuth apps. Security firm Proofpoint uncovered the "malicious campaign" where the ... Read more
1 year ago
