RSS_Virtulization

The Natural State is considering a new piece of legislation that would hold social media companies accountable for “unfairly censoring or banning someone.” The Arkansas Unfair Social Media Censorship Act would make sites like Twitter, YouTube, Instagram, and Facebook liable for damages if they remove content for “dubious or pretextual” reasons that are inconsistent with their own terms of service.  Arkansas attorney general Leslie Rutledge said: “This legislation would allow everyone, no matter the circumstances, to have…

MITRE ATT&CK enterprise is a “knowledge base of adversarial techniques”.   In a Security Operations Center (SOC) this resource is serving as a progressive framework for practitioners to make sense of the behaviors (techniques) leading to system intrusions on enterprise networks. This resource is centered at how SOC practitioners of all levels can craft purposeful defense strategies to assess the efficacy of their security investments against that knowledge base. To enable practitioners in operationalizing these strategies,…

Telecommunications giant Vodafone is calling for the introduction of new cybersecurity policies to help small businesses in the UK recover from the impact of the global health pandemic. In a statement released today, the company asked Boris Johnson’s government to protect small and medium-sized businesses by providing more support to the National Cyber Security Centre and making cybersecurity protections more accessible. Vodafone proposed that the value-added tax (VAT) on cybersecurity products should be reduced to 5% to ensure that…

Overview For the March 2021 Patch Tuesday, Microsoft released a set of seven DNS vulnerabilities. Five of the vulnerabilities are remote code execution (RCE) with critical CVSS (Common Vulnerability Scoring Standard) scores of 9.8, while the remaining two are denial of service (DoS). Microsoft shared detection guidance and proofs of concept with MAPP members for two of the RCE vulnerabilities, CVE-2021-26877 and CVE-2021-26897, which we have confirmed to be within the DNS Dynamic Zone Update…

The latest Docker Desktop release, 3.2, includes support for iTerm2 which is a terminal emulator that is highly popular with macOS fans. From the Containers/Apps Dashboard, for a running container, you can click `CLI` to open a terminal and run commands on the container. With this latest release of Docker Desktop, if you have installed iTerm2 on your Mac, the CLI option opens an iTerm2 terminal. Otherwise, it opens the Terminal app on Mac or…

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: APT, China Chopper, Gozi, Hafnium, Phishing, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential malicious activity. Figure 1 – IOC Summary Charts. These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed. Trending Cyber News…

WhatsApp, Messenger and Telegram are just a few messaging app options to consider. Tom Merritt lists five things you need to know about messaging apps. You can’t spell “messaging” without “mess.” There are dozens of apps and protocols with varying levels of security and protection. How do you choose? Mostly, you choose based on who you’re trying to reach, since everybody seems to use a different one. If you want to try to get your…

English Premier League football club West Ham United appears to have accidently leaked personal data of supporters on its official website, potentially leaving fans exposed to phishing attacks. As reported today by Forbes, multiple details of fans including full names, dates of birth, telephone numbers, address and email address were displayed when supporters attempted to log into their accounts on the club’s ticketing website. The article stated that the official club website showed several error messages earlier…

The SolarWinds incident was a wake-up call for most of the security professionals surveyed by DomainTools. Image: iStock/BalkansCat The SolarWinds breach has affected a host of government agencies and organizations around the world with a sophisticated attack that exploited vulnerabilities in the Orion network management software. The cybersecurity community, government agencies, and affected victims are still picking up the pieces and investigating the causes and effects of the hack. SEE: Incident response policy (TechRepublic Premium) Whether or…

Koch Industries Deploys Alkira Cloud Networking as a Service Embedded with Palo Alto Networks VM-Series Virtual Firewalls SANTA CLARA, Calif., March 9, 2021 /PRNewswire/ — Palo Alto Networks (NYSE: PANW), the global cybersecurity leader, and Alkira® Inc., the network cloud pioneer, announced today that Koch Industries, one of the largest private companies in America with an estimated annual revenue of $115 billion, according to Forbes, has initially deployed the combined offering of Alkira’s Cloud Services Exchange™…