RSS_Virtulization

Total vulnerability disclosures for 2020 are on track to exceed the previous year’s figures, with a large percentage not recorded in the official National Vulnerability Database (NVD), according to Risk Based Security. The security vendor’s 2020 Year End Vulnerability QuickView Report recorded 23,269 bugs last year, although there may still be some left to come in. “Organizations should be aware that … 1917 have a public exploit, are remotely exploitable, and do not have a…

Security experts have warned of an increase in published vulnerabilities which are relatively easy to exploit and require no user interaction. Managed security service provider Redscan’s latest report, NIST Security Vulnerability Trends in 2020: An Analysis, takes a look back at the 18,000+ CVEs recorded in NIST’s National Vulnerability Database (NVD). Aside from the fact that more CVEs were reported in 2020 than any year previously, a fact Infosecurity reported on in December, it raised…

One of APAC’s biggest telecoms companies has admitted that a supply chain attack may have led to the compromise of customer data. Singtel released a statement on Thursday revealing that it was running Accellion’s legacy file sharing system FTA to share information internally and with external stakeholders. Cyber-criminals appear to have exploited potentially multiple FTA vulnerabilities in attacks against various customers. Although Singtel said its core operations “remain unaffected and sound,” it admitted there may be…

Queen’s University Belfast in the UK has been recognized for its cybersecurity education program and work promoting cyber-skills in its local community. As a result of these efforts, the institution has been awarded silver recognition from its Academic Center of Excellence in Cyber Security (ACE-CSE) program by the National Cyber Security Center (NCSC). The ACE-CSE initiative was introduced by the NCSC and Department for Digital, Culture, Media and Sport with the purpose of developing a community of cybersecurity…

When workers need to get things done in a dangerous locale, sometimes they have to be distant. This opens up plenty of cybersecurity hazards. We spoke with one expert about how to achieve that security. Image: iStock/NanoStockk As a science fiction fan, I’ve always been fascinated with the concept of humans being able to safely get work done in dangerous or hard-to-reach areas. For instance, the film “Titanic” features a submersible that can retrieve or…

Nine new vulnerabilities have been identified across several TCP/IP stacks embedded in millions of OT, IoT and IT devices, spurring continued scrutiny of these already vulnerable asset types. Background On February 10, researchers at Forescout published a report called NUMBER:JACK, which details nine vulnerabilities discovered across nine open source TCP/IP stacks. The prevalence of these stacks across embedded devices is significant. NUMBER:JACK follows in the footsteps of AMNESIA:33, a previous report by the same researchers that…

Nine new vulnerabilities have been identified across several TCP/IP stacks embedded in millions of OT, IoT and IT devices, spurring continued scrutiny of these already vulnerable asset types. Background On February 10, researchers at Forescout published a report called NUMBER:JACK, which details nine vulnerabilities discovered across 11 open source TCP/IP stacks. The prevalence of these stacks across embedded devices is significant. NUMBER:JACK follows in the footsteps of AMNESIA:33, a previous report by the same researchers…

Top 100 Cybersecurity Startups Top 100 CISOs Top 100 Women in Cybersecurity Top 100 Black Unicorns What other Top 100 lists are you looking for and we’ll consider producing them?  Send us an email at marketing@cyberdefensemagazine.com and if we like your idea and implement it, we’ll send you a $200 Amazon eGift card. Source link