security

Patch Tuesday: Microsoft Patches One Actively Exploited Vulnerability, Among Others

Posted on by Admin
Patch Tuesday: Microsoft Patches One Actively Exploited Vulnerability, Among Others

December brought a relatively mild Patch Tuesday, with one vulnerability having been actively exploited. Of all 70 vulnerabilities fixed, 16 were classified as critical. “This year, cybersecurity professionals must be on Santa’s nice list, or, at the very least, Microsoft’s,” Tyler Reguly, associate director of security R&D at cybersecurity software and services company Fortra, told TechRepublic in an email. Microsoft patches leaky CLFS CVE-2024-49138 is an elevation of privilege vulnerability in the Windows Common Log…

Read More

EU Cyber Resilience Act: What You Need to Know

Posted on by Admin
EU Cyber Resilience Act: What You Need to Know

The E.U. Cyber Resilience Act was enacted on Dec. 10. This legislation impacts all manufacturers, distributors, and tech importers that connect to other devices or networks operating in the bloc. Examples of applicable products include smart doorbells, baby monitors, alarm systems, routers, mobile apps, speakers, toys, and fitness trackers. Those that comply with the legislation will have a CE label, which indicates the device meets E.U. standards for health, safety, and environmental protection, allowing consumers…

Read More

Cybersecurity News Round-Up 2024: Top 10 Biggest Stories

Posted on by Admin
Cybersecurity News Round-Up 2024: Top 10 Biggest Stories

This year has not been quiet for the cybersecurity field. We have seen record-breaking data breaches, huge ransomware payouts, and illuminating studies about the impact of the increasingly complex and ever-evolving threat landscape. As we approach the new year, TechRepublic revisits the biggest cybersecurity stories of 2024. 1.  Midnight Blizzard’s attack on Microsoft In January, Microsoft disclosed that it had been a victim of a nation-state-backed attack beginning in November 2023. The Russian threat actor…

Read More

UK Cyber Risks Are ‘Widely Underestimated,’ Warns Security Chief

Posted on by Admin
UK Cyber Risks Are ‘Widely Underestimated,’ Warns Security Chief

In his first speech on Tuesday, the new head of the U.K.’s National Cyber Security Centre warned that the country’s cyber risks are “widely underestimated.” Richard Horne, who took the position in October, says that hostile activity has “increased in frequency, sophistication and intensity,” largely from foreign actors in Russia and China. He highlighted the ransomware attacks on the British Library and pathology company Synnovis, which disrupted the NHS, illustrating a dependence on technology for…

Read More

Are Long-Lived Credentials the New Achilles' Heel for Cloud Security?

Posted on by Admin
Are Long-Lived Credentials the New Achilles' Heel for Cloud Security?

The head of security advocacy at Datadog, a cloud-based monitoring and analytics platform, has urged enterprises in Australia and the APAC region to accelerate phasing out long-lived credentials for popular hyperscale cloud services, warning that they remain a serious data breach risk. Speaking with TechRepublic, Andrew Krug highlighted findings from Datadog’s State of Cloud Security 2024 report, which identified long-lived credentials as a persistent security risk factor. While credential management practices are improving, Krug noted…

Read More

CISA, FBI Release Guidance for Improving Cybersecurity

Posted on by Admin
CISA, FBI Release Guidance for Improving Cybersecurity

On Dec. 3, the Federal Bureau of Investigation, the Cybersecurity and Infrastructure Security Agency, and international partners issued guidance on strengthening systems against intrusions by threat actors targeting telecommunications. The guidance was informed by recent breaches affiliated with the Chinese government. The recommendations come weeks after the FBI and CISA identified that China-affiliated threat actors had “compromised networks at multiple telecommunications companies.” Initially, the breaches were believed to target specific individuals in government or political…

Read More

Over 600,000 Personal Records Exposed by Data Broker

Posted on by Admin
Over 600,000 Personal Records Exposed by Data Broker

A database linked to SL Data Services, a U.S.-based data broker, has exposed 644,869 sensitive records online. The records included personally identifiable information, property ownership details, vehicle records, court records, and background check documents, and they lacked password protection or encryption. Security researcher Jeremiah Fowler discovered the exposure and reported it to the review and cyber research site WebsitePlanet. He observed a sample of the documents stored in the 713.1 GB database and said 95%…

Read More

Top 5 Cyber Security Trends for 2025

Posted on by Admin
Top 5 Cyber Security Trends for 2025

The cyber landscape is more turbulent than ever. Microsoft recently reported a 2.75-fold increase in ransomware attempts this year, while research predicts that global cyber attacks in 2024 will surge 105% compared to 2020. There is a dire need for more qualified cyber professionals as generative AI is lowering the barrier to entry for attacks. Unfortunately, cyber skills gaps have been reported in both the U.K. and Australia, with women making up only a quarter…

Read More

Securing Ireland's Technology Future

Posted on by Admin
Securing Ireland's Technology Future

Shaping AI Governance and Securing the Digital Age As Ireland gears up for the election this week, here at Cisco, we’ve been reflecting on the pivotal role technology now plays across the issues politicians talk about when they knock on doors and make pitches to the electorate. Whether defining Ireland’s economic growth prospects, changing the way we work, or delivering more innovative and secure public services; the way we use new technologies underpins so many…

Read More

Securing Ireland's Technology Future

Posted on by Admin
Securing Ireland's Technology Future

As Ireland gears up for the election this week, here at Cisco, we’ve been reflecting on the pivotal role technology now plays across the issues politicians talk about when they knock on doors and make pitches to the electorate. Whether defining Ireland’s economic growth prospects, changing the way we work, or delivering more innovative and secure public services; the way we use new technologies underpins so many of the issues voters in Ireland care about…

Read More
1 2 3 15