Tag: Security

May 6, 2022

A misconfiguration in Google Cloud Platform has been found which could give threat actors full control over a target virtual machine (VM) endpoint, researchers have said. In a blog post published by cloud incident response experts Mitiga, the company noted […]

May 4, 2022

Security researcher John Page (aka hyp3rlinx) specializes in finding bugs in malware and publishing them on his website and Twitter account. Recently he published a way to use those vulnerabilities to stop ransomware from encrypting files. As it turns out, […]

May 3, 2022

Security would be so much easier if our networks were not so complicated! It’s a tempting illusion that we can just take out our checklists of best and worst practices, compare each component to the rules, make sure each configuration […]

April 21, 2022

Almost all Android smartphones could be vulnerable to remote code execution as a result of vulnerabilities discovered in the audio decoders of Qualcomm and MediaTek chips. The discovery of these vulnerabilities was made by Check Point Research (CPR) and if […]

April 6, 2022

When enabled, Smart App Control uses AI and Microsoft’s cloud knowledge base to check every app that runs, blocking anything unsigned, unfamiliar, or known to be malicious. There is no whitelist, so blocked apps will only get through if their […]

January 24, 2022

Outside the insurance industry, few people likely noticed that Lloyd’s of London “will no longer cover the fallout of cyberattacks exchanged between nation-states.” It would be easy to overlook, except that Lloyd’s is a major global insurer; its actions will […]

January 4, 2022

If 2020 was the year that we became acutely aware of the consumer goods supply chain (toilet paper, anyone? Anyone?), then 2021 was the year that the software supply chain rose in our collective consciousness. In perhaps the most infamous […]

January 3, 2022

Big results don’t always require a big effort. Maintaining your online and offline privacy can seem like a Herculean, or even Sisyphean, task. Never-before-heard-of companies with vaguely menacing names regularly brag about infringing upon it, and each day seems to […]

December 27, 2021

Earlier this month, security researchers uncovered a series of major vulnerabilities in the Log4j Java software that is used in tens of thousands of web applications. The code is widely used across consumer and enterprise systems, in everything from Minecraft, […]

December 23, 2021

A flaw in Microsoft’s Azure App Service has been exposing customer source code for years, security researchers have discovered. According to cloud security providers Wiz.io, Microsoft’s platform for building and hosting web apps has contained insecure default behavior in its […]

December 16, 2021

Last weekend, the internet caught fire, and it is still unclear just how many developers with fire extinguishers will be needed to bring it under control. There was a set of first responders on the scene, however: largely unpaid maintainers […]

December 13, 2021

For security teams, 2020 was all about firefighting. They rushed to ensure employees could work from home securely during the first few months of the pandemic, investing in VPNs and video-conferencing and collaboration solutions. Most took a short-term approach, bridging […]

December 13, 2021

With 2021 drawing to a close and many closing their plans and budgets for 2022, the time has come to do a brief wrap-up of the SaaS Security challenges on the horizon. Here are the top 3 SaaS security posture […]

December 7, 2021

Attacks on cloud-native infrastructures are on the rise. Research over a six-month period in 2021 shows a 26% increase in attacks on container environments over the previous six months. Malicious actors are targeting the auto-build process, packing the payloads, using […]

December 1, 2021

A new version of Microsoft’s endpoint security platform is preventing users from opening some Office files and launching various applications, Microsoft has confirmed. The company says Microsoft Defender for Endpoint (version 1.353.1874.0) is triggering false positive security alerts relating to […]

November 19, 2021

Valtix recently released research that multicloud will be a strategic priority in 2022, according to the vast majority of more than 200 IT leaders in the United States who participated in the study. Security is top of mind, with only […]

September 22, 2021

macOS users running Catalina and Big Sur are now able to update to Safari 15, an update that’s been in testing since its unveiling at WWDC 2021 in June. The new version of Apple’s web browser has seen major changes […]

September 1, 2021

More than a quarter of security leaders in the UK say remote-working employees either circumvented or purposely turned off security tools and services, and a third admit compromising their organisation’s security to some degree in order to facilitate the practice, […]

August 20, 2021

We all know data privacy does not exist in isolation. It is not a solitary indication of an enterprise’s morality and compliance, separated from the operations and lifeblood of the organisation. As an indication of this, we are beginning to […]

August 11, 2021

A lawsuit was filed by Apple back in 2019, stating that the company Corellium had breached copyright laws with their virtual iOS software. The product in question enabled researchers to do tests on a virtual iOS device, eliminating the need […]