Author: Admin

Tripwire’s July 2022 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft and Adobe. First on the patch priority list this month are patches that resolve 2 vulnerabilities in Edge. Next is a patch that resolves a security feature bypass vulnerability in Office. Up next are patches for Adobe Reader and Acrobat that resolve 22 issues including arbitrary code execution and memory leak vulnerabilities. Up next are patches that affect components of the Windows…

The UK’s top 10 universities and most of the leading educational institutions in the US and Australia are failing to protect their staff and students from email-borne threats, according to Proofpoint. The security vendor assessed each of the leading 10 universities in each country for their DMARC policy, and found 97% across all regions are failing to actively block fraudulent emails from reaching recipients. The figure rose to 100% in the UK. Whilst not a…

Proofpoint, Inc., a leading cybersecurity and compliance company, today released new research which found that the top universities in the United States, the United Kingdom and Australia are lagging on basic cybersecurity measures, subjecting students, staff and stakeholders to higher risks of email-based impersonation attacks. Proofpoint’s research found that 97% of the top ten universities [1] across each country are not taking appropriate measures to proactively block attackers from spoofing their email domains, increasing the risk…

Oftentimes, three-letter acronyms trend and become buzzwords. At other times, they act as catalysts by influencing the business environment in which an organization operates. Such acronyms include CSR (corporate social responsibility), GRC (governance, risk, and compliance), and the most recent one, ESG (environmental, social, and governance). These are important business concepts that drive investment considerations and organizations’ cybersecurity commitments to customers. A common factor amongst CSR, GRC, and ESG is the role of governance in…

Credit cards with security chips have helped cut down on Dark Web sales of stolen card data, but the problem persists, especially in the U.S., says Cybersixgill. Image: Adobe Stock Stolen credit card data is always a hot item for sale on the Dark Web, particularly if the package includes not just the card number but the expiration date and CVV code. To crack down on fraud, card vendors have long since turned away from…

Trying to explain secure access service edge (SASE pronounced ‘sassy’) and zero trust can be exasperating when you’re making the case for business leaders to invest in new products and infrastructure. The onus is on IT leaders to focus top executives on the business benefits these technology concepts entail and how they will advance the cause of enterprise security. Both SASE and zero trust are fast-evolving security concepts, creating somewhat of a moving target. Vendors…