CrowdStrike Falcon XDR now integrates with Rubrik Security Cloud
CrowdStrike and Rubrik have announced a strategic partnership. Customers can now combine CrowdStrike's XDR platform with Rubrik Security Cloud, allowing security teams to better protect sensitive data.
Both parties state that IT environments today are highly complex, requiring defenses against c... Read more
Number of exploited zero-days up more than 50%
Figures from Google show that last year there were 97 actively exploited zero-day vulnerabilities. In 2022, the number was still 62 vulnerabilities.
With this, the upward trend has returned. A year ago, the figures still showed a positive trend downward. According to Google data, the year 2021 m... Read more
Cisco: ‘3% of companies fully prepared for cyber attack’
Most companies globally are still not fully maturely prepared for cyber incidents.
That's according to research by Cisco. Companies are still major targets of cyber attacks, such as phishing, ransomware, supply chain and social engineering attacks. Nearly three-quarters of companies expect to be... Read more
Supply chain risks are becoming an ever larger problem for businesses
The increasing complexity of IT environments is leading to more hidden cyber threats. The risk of cyberattacks and data breaches through the software supply chain is hard to ward off, according to research by JFrog.
To point out how cluttered corporate IT infrastructures can be today, JFrog cite... Read more
Expert talks
The impact of evolving regulation and compliance on API security
Regulations are constantly evolving, becoming more punitive with larger fines and penalties every year. As a result, there is a collective industry movement towards the continuous improvement of cybersecurity in business and their ecosystem. This includes understanding what policies and processes m... Read more
FBI implores developers to finally eradicate SQL injections
The FBI and the U.S. Cybersecurity and Infrastructure Agency (CISA) argue that SQL injections should be a thing of the past. Despite developers' knowledge for two decades of how to prevent this type of attack, it continues to cause widespread exploits.
SQL injections insert malicious code into S... Read more
StrelaStealer malware steals login credentials in Europe and U.S.
A new StrelaStealer malware campaign has affected more than 100 companies and organizations in the U.S. and Europe. Hackers are now also using ZIP files to spread the malware payload, Palo Alto Networks Unit42 concludes.
The StrelaStealer malware spread particularly quickly in November 2023, as ... Read more
Fortinet warns vulnerability in FortiClientEMS is exploited in the wild
Fortinet is warning users of the Fortinet FortiClient Enterprise Management Server (EMS) about the active misuse of a critical vulnerability in the product. The vulnerability allows hackers to run code through the system without having physical access to the device.
The vulnerability was reporte... Read more
Personal data exposed at Air Europa
The data leak involved the airline's passengers' identity card and passport information.
The company announced this in an email to customers. Names, birthdays, nationalities, and phone numbers were also exposed. The airline, which works with AirFrance and KLM through the SkyTeam alliance, stress... Read more
Dutch researcher discovers Fujitsu blunder: AWS keys and logins in public bucket
Fujitsu failed to keep customers' sensitive information secure. AWS keys and passwords were publicly published on the Internet for a year. Dutch water utility PWN is one of the victims.
Security researcher Jelle Ursem, who works for the Dutch Institute for Vulnerability Disclosure (DIVD), disco... Read more