RSS_Virtulization

When you think of the cybersecurity “CIA” triad of Confidentiality, Integrity, and Availability, which one of those is most important to your organization?  From a privacy standpoint, confidentiality reigns supreme. Confidentiality is so important that it is codified into many of the cyber regulations of recent years, most notably the California Consumer Privacy Act (CCPA), as well as others.  If you approach the CIA triad from a strict business mindset, then availability is probably a prime…

Prioritizing Security in a Remote Learning Environment  Learning environments are not what they used to be, and as educational institutions deploy new technology to facilitate a safe and effective remote learning environment, their cyber vulnerabilities also increase. Canadian schools especially have seen a rise in ransomware attacks with the transition to online learning, opening the door for hackers to exploit student data and sabotage academic research. To combat the rising cybersecurity concerns, educators need to…

Technology shows us once that tech build for good people can be harnessed by bad actors. Experts talk about how criminals are operating, and what you can do about it. Image: iStock/Roland Magnusson As a system administrator for a financial company, I am often required to take compliance courses as part of my job to learn about system threats and appropriate procedures. One course I recently took covered money laundering (and I was pleased to…

The United States’ Internal Revenue Service (IRS) has issued a warning over an ongoing phishing scam targeting higher education establishments in the United States.  In a statement released yesterday, the IRS said that it was being actively impersonated over email by cyber-attackers seeking to trick victims into handing over sensitive data.   Students and staff have received phishing emails directing them to a fraudulent website. The site asks users to provide their Social Security number, full name,…

Top trade associations in retail, hospitality, and travel are partnering with Retail and Hospitality ISAC (RH-ISAC) and the United States federal government’s Cybersecurity and Infrastructure Security Agency (CISA) to host the first industry-wide cybersecurity exercise. Day-long virtual exercise EX-RH2021 will take place on a currently unassigned date  in June 2021, opening with a training session on how participants can get the most out of the event.  Participating information security teams will be challenged to perform executive…

Google offers a password checking service that will check all of your Chrome-saved passwords for weaknesses and against known breaches. Jack Wallen shows you how to use this tool. Getty Images/iStockphoto Passwords aren’t going anywhere anytime soon. You depend on them. You use them to log in to every service and most apps. Hopefully, you use them in conjunction with two-factor authentication (2FA), otherwise it’s only a matter of time before your account is hacked.  That…

VMware has addressed a pair of vulnerabilities in vRealize Operations that, when chained together, could result in unauthenticated remote code execution in vulnerable servers. Background On March 30, VMware released a security advisory (VMSA-2021-0004) to address two vulnerabilities in vRealize Operations, an AI-powered IT operations management platform for multi-cloud, private and hybrid environments. These vulnerabilities affect vRealize Operations, and also impact VMware Cloud Foundation (vROps) and vRealize Suite Lifecycle Manager (vROps). VMware has attributed the…

Two cast members of an American reality TV show have been indicted in connection with a nationwide telemarketing fraud scheme that victimized the elderly.  Real Housewives of Salt Lake City stars Jennifer Shah and Stuart Smith were arrested on March 30 and charged with conspiracy to commit wire fraud and conspiracy to commit money laundering.  It is alleged that from 2012 until March 2021, 47-year-old Shah and 43-year-old Smith defrauded hundreds of victims throughout the United…