Following its annual Special Interest Group (SIG) election process, the PCI Security Standards Council has confirmed the winning SIG topic for 2021. The Council’s Participating Organizations voted to select “Best Practices for Container Orchestration” as the focus for the year ahead. The goal of the SIG is to provide guidance for companies on how to enhance security when using container orchestration tools. This guidance will include an overview of container orchestration tools as well…

McAfee’s Advanced Threat Research team just completed its second annual capture the flag (CTF) contest for internal employees. Based on tremendous internal feedback, we’ve decided to open it up to the public, starting with a set of challenges we designed in 2019.   We’ve done our best to minimize guesswork and gimmicks and instead of flashy graphics and games, we’ve distilled the kind of problems we’ve encountered many times over the years during our research projects. Additionally, as this contest is educational in nature, we won’t be focused as…

Jack Wallen discusses why the upcoming Ubuntu 21.04 is more important than some of its features would imply. Image: Ubuntu At one point, the Ubuntu faithful were excited that 21.04 (aka Hirsute Hippo) would be one of the first distributions to include GNOME 40. The upcoming release of the GNOME desktop promises to bring about some serious workflow changes that could make everything on the desktop flow a bit more efficiently. GNOME 40 would also…

Tenable®, Inc., the Cyber Exposure company, today announced an enhanced Managed Security Service Provider (MSSP) portal to supercharge partners’ cloud-based vulnerability management offerings with Tenable.io®. The updated portal will enable MSSPs to self-provision and self-service their own Tenable.io instances, up to 1,000 assets, empowering partners to build and launch vulnerability management services in the cloud within minutes. In 2021, there will be an estimated 3.5 million unfilled cybersecurity jobs. This widening skills gap comes at…

VMware Cloud on AWS has achieved a number of industry leading compliance certifications and is able to support a wide variety of customer use cases and compliance requirements. Our compliance offerings cover a wide range of global certifications from ISO 27001/17/18 certifications to various region specific certifications covering North America, EMEA and Asia Pacific regions. VMware has also published a number of compliance whitepapers addressing the various regional governmental and financial services industry compliance requirements….

Increased digital adoption since the start of COVID-19 is leaving consumers more vulnerable to cyber-attacks, according to McAfee’s 2021 Consumer Security Mindset Report. The analysis found that Brits across all age groups have embraced new digital solutions amid ongoing social distancing restrictions. Nearly three-quarters purchased at least one connected device in 2020 and one in five brought at least three. However, more than half (56%) did not adopt or purchase any additional security solutions last…

Active accounts for people who have left your organization are ripe for exploitation, according to Sophos. Michael Borgers, Getty Images/iStockphoto Cybercriminals can choose a variety of ways to infiltrate and compromise an organization as a prelude to ransomware. One tried and true method is to exploit an admin account. And if it’s an account that’s no longer being used by an employee but is still available, so much the better. A report released Tuesday by…