Security is more important than ever. Cybersecurity has been a problem from the start of IT and it will be till the end. It all started with endpoint and network security, but today, we are also facing with cloudsecurity and managing employees to incorporate good security practices.
All these new technologies that help us innovate also helps cybercriminals and state sponsored hackers to get new tools they can use to get access to our systems, and in a worst case scenario, access to our most valuable data and business secrets. Also, with new legislation in place like GDPR, you need to make sure everything is secure, otherwise you just don’t lose your reputation, but you can also be fined by the government. Protecting IT-environments is more important than ever.
Your first line of defense is usually endpoint protection. The devices your employees work with need to be protected against ransomware and other malware which can bring lots and lots of trouble. This nowadays the most basic form of protection and many of the bigger vendors and suites can help you achieve this.
Network security is a bit more advanced, where you can manage which traffic goes across your network. You can also connect different networks together with e.g. SD-WAN. So, you can run protection software and share data between multiple locations. The trend we see in network protection on the datacenter side is to lock down the traffic by only allowing known, benevolent traffic sources. Regarding office networking, we see new initiatives like ZScaler coming up, where you tunnel all your staff over the network of ZScaler so they can analyse the traffic and block patterns that they marked as malicious. Especially for companies with employees that travel a lot, this is a smart solution.
Many thought that bringing workloads to the cloud would reduce their responsibility of doing security. It is now clear that this is not the case. Most cloud vendors practice the “shared responsibility” approach. This means that big hyperscalers can offer a first line of defense against well known threats and port scanners. For the more sophisticated attacks that are directly pointed at your servers, you need to have your protection in place.
KLM warns of a data breach. The organization notified members of frequent flyer program Flying Blue that an unauthorized party may have accessed personal data. The breach was confirmed by parent company Air France-KLM, according to Dutch media. The damage appears to be limited to members of freq... Read more
1 year ago
The online marketplace could easily host malicious VSCode extensions, Aqua Security says. Researchers from Aqua Security have recently discovered that attackers can easily trick unknowing developers into downloading malicious files disguised as popular Visual Studio Code extensions. "In original... Read more
1 year ago
All objects added to the storage service will now be encrypted by default. AWS has announced that all objects added to Simple Storage Service (S3) will be encrypted automatically by default, effective immediately. This means that the Amazon Server Side Encryption (SSE) service will be applied au... Read more
1 year ago
A leaked database of more than 235 million Twitter user e-mail addresses has been published online. Alon Gal, CTO of security firm HudsonRock, shared the news in a post on LinkedIn. Gal reports that a major Twitter database has been publicly leaked after circulating for some time. Accordin... Read more
1 year ago
Cloud security company Netskope has announced that it has raised $401 million in funding through convertible notes to enhance its platform and increase its marketing efforts. The funding round was led by Morgan Stanley Tactical Value and included participation from the Ontario Teachers' Pension ... Read more
1 year ago
New platform features and integrations enable analysts to quickly detect and remediate threats. LogRhythm announced a series of expanded capabilities and integrations for its security operations solutions this week. The company, which specializes in security intelligence, says the updates "prope... Read more
1 year ago
An unauthorized user gained access to Slack's GitHub repositories. The user managed to download the repositories before Slack plugged the leak. The damage appears limited, as none of the stolen repositories involve Slack's source code or user data. The organization stresses that source code and... Read more
1 year ago
Hackers are abusing the Windows Problem Reporting tool (WerFault.exe) to compromise systems, according to a report in BleepingComputer. The attackers exploit WerFault.exe to load malware into a compromised system's memory using a DLL sideloading technique. The legitimate Windows executable allo... Read more
1 year ago
The Christmas Day attack did not compromise operations, the Port Authority said. Portugal’s third largest port suffered an attack by the LockBit ransomware gang over Christmas, according to a report in BleepingComputer. The Port of Lisbon is part of the critical infrastructure in Portugal's ca... Read more
1 year ago
Predictions for 2023 are all the rage right now, but most are either highly speculative or so obvious they are hardly worth publishing. Here’s one that should be different: two of the hottest topics in networking next year will be lateral security and XDR, or eXtended detection and response. O... Read more
1 year ago
