RSS_Virtulization

This blog is part of our SOCwise series where we’ll be digging into all things related to SecOps from a practitioner’s point of view, helping us enable defenders to both build context and confidence in what they do.  Although there’s been a lot of chatter about supply chain attacks, we’re going to bring you a slightly different perspective. Instead of talking about the technique, let’s talk about what it means to a SOC and more importantly focusing…

Organizations in the United States are impacting their security by dilly-dallying when it comes to granting and revoking system access, according to new research.  A study published today by the Identity Defined Security Alliance (IDSA) uncovered significant delays in giving and rescinding access to corporate systems, impacting operations and increasing potential risk to the organization. The non-profit’s report, “Identity and Access Management: The Stakeholder Perspective,” found that for the majority of companies (72%) it takes…

Cyber-criminals are increasingly making use of automation and bots to launch attacks, according to a new analysis by Barracuda Networks. In its new report, Threat Spotlight: Automated attacks on web applications, the cybersecurity firm revealed that over half (54%) of all cyber-attacks it blocked in November and December were web application attacks which involved the use of automated tools. The most prevalent form was fuzzing attacks, making up around one in five (19.5%). This uses…

American technology company IBM announced today that it will be making $3m available to US public schools in the form of cybersecurity grants. Grants in the form of in-kind services will be awarded to six school districts to sponsor “teams of IBMers” from the company’s Service Corps Program who will help schools proactively prepare for cyber-attacks and learn how to mitigate them.  The announcement comes after an IBM-sponsored study revealed that nearly 60% of school staff are unprepared…

Security researchers at Google have claimed that a quarter of all zero-day software exploits could have been avoided if more effort had been made by vendors when creating patches for vulnerabilities in their software. In a blog post, Maddie Stone of Google’s Project Zero team says that 25% of the zero-day exploits detected in 2020 are closely related to previously publicly disclosed vulnerabilities, and “potentially could have been avoided if a more thorough investigation and…

We are happy to announce that Docker has contributed Docker Distribution to the Cloud Native Computing Foundation (CNCF). Docker is committed to the Open Source community and open standards for many of our projects, and this move will ensure Docker Distribution has a broad group maintaining what is the foundation for many registries.  What is Docker Distribution? Distribution is the open source code that is the basis of the container registry that is part of Docker…

A lack of security training for educators and budget limitations are two reasons schools are susceptible to cyberattack, says IBM Security. Image: iStock/Maria Symchych-Navrotska Preventing ransomware and other attacks is challenging enough if you work for a large corporation with the means to educate your employees and spend the necessary money on cybersecurity. But if you’re at a smaller organization, such as a school, with a tiny budget and limited security training, combating cyberattacks is…

A substantial rise in industrial control system (ICS) vulnerabilities were detected in the second half of 2020, according to Claroty’s second Biannual ICS Risk & Vulnerability Report. The research revealed that there had been a 25% year-on-year rise in ICS vulnerabilities disclosed in this period, and a 33% increase compared to H1 of 2020. Throughout the six-months, a total of 449 vulnerabilities affecting ICS products from 59 vendors were highlighted, 70% of which were assigned…

Fourth Quarter Highlights Total revenue of $275.1 million, up 13% year-over-year Billings of $374.9 million, up 8% year-over-year GAAP EPS of $(0.61) per share, Non-GAAP EPS of $0.51 per share Operating cash flow of $55.7 million and free cash flow of $28.9 million SUNNYVALE, Calif., – February 4, 2021 – Proofpoint, Inc. (NASDAQ: PFPT), a leading next-generation security and compliance company, today announced financial results for the fourth quarter and full year ended December 31,…

Three in five (60%) organizations in London and the South East of England have seen an increased level of risk to their IT infrastructure due to remote working, with 88% expecting this risk to persist for the next 12-18 months. That’s according to a survey of 400 senior decision makers by international law firm Bird & Bird exploring how changes to the way businesses operate as a result of the COVID-19 pandemic have created challenges…