CISA Orders Action Against Exchange Vulnerabilities
Underscoring the continued potential threat from the recently discovered exploitation of vulnerabilities in Microsoft Exchange Servers, the Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to take a number of actions to shore up security, including immediately scanning the servers for malware. “CISA has determined that this exploitation of ... Read More
Leaky Apps Heighten Supply Chain Risk
Securing the apps that businesses and individuals have come to rely on, particularly during the pandemic, has become a multidimensional challenge. Recent research underscored the need to more tightly knit DevOps together with SecOps early in the development process. More than 40% of apps actively leaked information, increasing the risk ... Read More
New Details on Astoria Company Hack Emerge
When the ShinyHunters hacking group started hawking the personal data of millions of people on the Dark0de market early last month, it was notable because of the sheer number of records in play – and because of who was hacked. In addition to information on 400 million Facebook and a database ... Read More
Microsoft Office 365 Attacks on the Rise
It’s not surprising the COVID-19 pandemic that pushed workers home also accelerated cloud migration and digital transformation, but new research from Vectra.ai unearthed a troubling trend – 71% of Microsoft Office 365 deployments in medium to large companies suffered, on average, seven legitimate account takeovers at a time when remote ... Read More
Post-Privacy Shield Guidance From French Court
For U.S. companies scrambling to protect cross-border data transfer after the Court of Justice of the European Union invalidated the Privacy Shield, a recent ruling by a French court could provide some guidance on developing a legal framework and establishing some technical protocols that could protect them from the long ... Read More
