RSS_Virtulization

A new study published today by the World Economic Forum (WEF) has identified the need for cybersecurity practices within the aviation sector to be unified.  The study—Pathways to a Cyber Resilient Aviation Industry—describes how airlines, airports, and aircraft manufacturers currently take different approaches to countering cyber-risks. It includes a warning that rising levels of interdependency within the industry “can lead to systemic risks and cascading effects.” To guard against these risks, the WEF connected with leaders from…

AWS customers will be able to connect their accounts to Securonix’s AWS-hosted SaaS security software using what it calls a “bring your own cloud” model. Jirsak, Getty Images/iStockphoto Cybersecurity firm Securonix has announced a new level to its collaboration with AWS that will allow AWS customers to use Securonix security information and event management (SIEM) software without ever leaving their current AWS hosting solutions. Securonix describes the new collaborative product as a “bring your own…

An Indian security researcher has published a proof-of-concept (PoC) exploit code for a vulnerability impacting Google Chrome and other Chromium-based browsers. The Indian security researcher Rajvardhan Agarwal has publicly released a proof-of-concept exploit code for a recently discovered vulnerability that affects Google Chrome, Microsoft Edge, and other Chromium-based browsers (i.e. Opera, Brave). The researchers uploaded the PoC code on GitHub and announced its availability via Twitter: Just here to drop a chrome 0day. Yes you read that…

Detroit officials are being sued by a Michigan man who claims the city’s use of facial recognition technology led to his wrongful arrest.  Attorneys representing Robert Julian-Borchak Williams filed a federal lawsuit on April 13 against the city, its police chief James Craig, and Detroit police detective Donald Bussa for “the grave harm caused by the misuse of, and reliance upon, facial recognition technology.” Farmington Hills resident Williams was wrongfully arrested on January 9, 2020, after being mistakenly linked…

The feds removed web shells that provided backdoor access to cybercriminals in a recent exploit of Microsoft Exchange. Image: Microsoft Federal authorities in the U.S. have swooped in to eliminate malicious backdoor code planted by attackers on vulnerable Microsoft Exchange servers across the country. In a news release published Tuesday, the U.S. Department of Justice announced the court-authorized effort to copy and remove web shells that had been installed on on-premises versions of Microsoft Exchange…

Infrastructure and App Modernization Challenges Today we see incredible demand for digital–first services, from telemedicine to distance learning to touchless systems in retail and financial services. But the reality is the pace of business-wide transformation is stalled as customers contend with applications in different environments and different stages of modernization. Most organizations are already using multiple clouds depending upon application type, cloud capabilities and organizational preferences. Factors such as M&A, compliance, data sovereignty, and licensing…

There were more than 10 million DDoS attacks in 2020, driven by new attack vectors and new threat actors; most of the industries targeted were vital to life during the COVID-19 pandemic. Image: iStockphoto/ApoevAndrey Cybersecurity firm NETSCOUT has released a new report detailing the state of DDoS attacks during the past year and it leads with an unfortunate new statistic: 2020 was the first year that the number of observed DDoS attacks crossed the 10-million…

Investors pumped almost $8 billion into cybersecurity firms last year, according to Crunchbase. Image: iStock/structuresxx Continuing a decade-long run of high venture capital (VC) funding, 2020 proved to be a record year for cybersecurity investments with over $7.8 billion pouring into 665 deals globally. Driven by an increase in cybersecurity events during the COVID-19 pandemic, remote work, and companies moving operations online, cybersecurity funding in the U.S. increased 22% from 2019 to 2020, according to…

Thycotic and Centrify have completed their previously-announced merger, and are now operating under the temporary name of ThycoticCentrify, it has been announced. The two cybersecurity firms have joined together to form a single cloud identity security vendor, pooling their respective expertise and tools in the area of privileged access management (PAM). The announcement comes amid growing cloud adoption as organizations seek to enable hybrid working models, particularly following the shift to remote working during COVID-19….