A cyber-attack on a cryptocurrency exchange last September which led to the theft of hundreds of millions of dollars in digital money has been blamed on North Korean actors. A United Nations report to the UN Security Council seen by Reuters “strongly suggests” that hackers from the “hermit kingdom” were involved in the cyber-heist at KuCoin last September. The attack led to the theft of $281m in cryptocurrency from the Singapore-headquartered firm, although CEO Johnny Lyu subsequently…

British law enforcers have arrested eight men on suspicion of running a SIM swapping ring targeting US celebrities and sports stars. The National Crime Agency (NCA) led the investigation in the UK, working alongside agents from the US Secret Service, Homeland Security Investigations, the FBI and the Santa Clara California District Attorney’s Office. SIM swapping is an increasingly popular way to hijack high-profile users’ social media and other accounts, and can also be used to…

Cloud security firm iboss has announced the appointment of two high-profile senior leaders as it looks to continue its rapid growth during the COVID-19 pandemic. Eric Cornelius has become its new chief product officer, while Wallace Sann joins as senior vice-president of technical operations, with the pair tasked with increasing adoption of iboss’ Secure Access Service Edge (SASE) and zero-trust (ZTNA) solutions. Cornelius will oversee the strategy and development of the company’s security products and…

Recently I installed vRealize Operations Manager 8.2 in my home lab environment. Less than a week later 8.3 was released – of course it was! The new version has some extra features like 20-second peak metrics and VMware Cloud on AWS objects, but what I’m interested to look at is the new Cloud Management Assessment (CMA). The vSphere Optimisation Assessment (VOA) has been around for a while to show the value of vRealize Operations (vROps)…

Organizations are overwhelmed by the choice of cyber security tools in the market. They need to balance prioritizing and remediating vulnerabilities with managing their secure configurations. What’s more, many organizations are using hybrid clouds where they need to protect assets that are hosted both on premises and in the cloud. This complexity requires a thoughtful approach to cyber security. Specifically, it requires that they spend some time figuring out what kind of solution they need,…

SIEM, we need to talk!  Albert Einstein once said, “We cannot solve our problems with the same thinking we used when we created them”.  Security vendors have spent the last two decades providing more of the same orchestration, detection, and response capabilities, while promising different results. And as the old adage goes, doing the same thing over and over again whilst expecting different results is…? I’ll let you fill in the blank yourself.    Figure 1: The Impact of XDR in the Modern SOC: Biggest SIEM…

Carefully allocating limited resources lets districts get the best bang for the buck. By Saryu Nayyar, CEO, Gurucul While we read about a lot of high profile cyberattacks against large organizations, and even sophisticated long-term attacks by State actors against well respected security companies, the reality is that cybercriminals are more likely to go after “low hanging fruit” before they engage with a high profile, well defended, target.  The “target of opportunity” mentality is easy…

Tenable Holdings today announced that it has entered into a definitive agreement to acquire Active Directory security startup Alsid SAS for $98m in cash. Alsid specializes in providing a Software as a Service (SaaS) solution that monitors the security of Active Directory in real time. The company was founded in France in 2016 by two former incident responders from the French National Cybersecurity Agency (ANSSI), Emmanuel Gras and Luc Delsalle.  After securing €13m in Series A funding in 2019, Alsid entered into…