In April 2024, a significant breach rattled the financial sector as HSBC and Barclays, two prominent banking institutions, fell victim to a data breach. The breach occurred within the infrastructure of a direct contractor working for both banks, sending shockwaves through the industry and raising concerns about the security of sensitive financial data.

In part 1 of this series, we covered a lot of ground including the three converging trends that point to the need for an attack surface management (ASM) solution – the growing attack surface, attackers having more opportunities and tools to infiltrate the attack surface, and manual SecOps being slow and ineffective. We also outlined the key features you should be looking for when selecting an ASM tool.

The manufacturing landscape is undergoing a digital revolution, driven significantly by Industrial IoT (IIoT), cloud adoption, and remote access needs. These advancements enable manufacturing companies to unlock efficiency gains, optimize operations, and enhance collaboration, but they also introduce a raft of new cybersecurity challenges. Legacy equipment and complex network setups have always made it difficult to secure manufacturing environments.

Read also: a hacker-for-hire arrested in the UK, the BTC-e mastermind pleads guilty, and more.

In a world that’s gone digital, it’s no surprise that so have our assets. Protecting digital assets is crucial to maintaining an organization’s operations and revenues, whether it’s sensitive personal identifiable information (PII), business data, or intellectual property. Online threats rapidly evolve to employ complex counterfeiting and spoofing of digital assets and new means to break down the software gates they hide behind.

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Ah, so you’ve seen those random shops that pop up on unrelated domains?

If you need to reach PCI DSS 4.0 compliance, GitGuardian has solutions that can help.

The highly competitive digital setting that we have today requires modern software applications to serve as the foundation of business operations, communication, and service innovation. However, this agility has some risks since outsourcing part of application development to external tools and libraries implies that the organization can unintentionally introduce vulnerabilities that cybercriminals can use against them.

Privilege escalation in AWS refers to the unauthorized elevation of user privileges within the AWS environment, allowing users to access resources and perform actions beyond their intended level of permissions. This security risk would arise in case the attackers utilize the vulnerabilities or misconfigurations in AWS services, IAM policies, or access controls to take up privileges above the current level.

With the advent of digital technology that makes its way into every sphere of our lives, software’s reliability and integrity are particularly important. Hackers never stop trying to gain unauthorized access and exploit application weaknesses to achieve their goals and gain from outact. This can mean peril respectively for individuals and organizations.