Read also: Conti threatens to overthrow the Costa Rican government, the US warns of risks of hiring North Korean tech workers, and more.

A new protocol, DNS over HTTPS (DoH), is a sensation in modern times, designed for enterprise security products and policies. A combination of DNS protocol and HTTPS protocol, DoH affects businesses, organisations, and regular users. DNS over HTTPS is used to enhance the security of network communication.

One of our partners in the LATAM region is working with an end customer, to implement a custom predictive maintenance dashboard, by pulling in and correlating data from multiple sources (like Zabbix, Jira Cloud, Cato Networks, Extreme Networks CloudIQ, etc.) and sending out the data to update a Grafana dashboard, which can read data from OpenSearch. Partner is using our data bots and low-code/no-code pipelines to implement this project.

Phishing website links are commonly delivered via email to their respective targets. Once clicked, these websites often show a single webpage that outright asks for sensitive information like account login credentials, credit card details, and other personally identifiable information (PII). Recently, we have encountered an interesting phishing website containing an interactive component in it: a chatbot.

With the rise of internet penetration and increased mobile usage, the significance of mobile applications has increased multifold. Everything is covered through mobile applications, from mundane day-to-day activities to high-end financial transactions. According to Techjury, there are 10 billion mobile devices currently in use, and a staggering more than 51% of people in the USA spend their time on mobile phones.

On May 5, 2022, the National Institutes of Standards and Technology (NIST) formally recognized outside-in third party security ratings and vendor risk assessment in their update to Special Publication 800-161. This update to federal standards specifically cites security ratings as a “foundational capability that "provide 14028." NIST SP 800-161 was designed to standardize supply chain risk management best practices for federal agencies and industry.

CVE-2022-30617 and CVE-2022-30618 are sensitive data exposure vulnerabilities that may lead to account compromise in the admin panel of the headless CMS software Strapi.

It should be hard for malicious hackers to break into systems, but all too often it isn’t. That’s a takeaway from a joint cybersecurity advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA), the NSA and FBI, and their counterparts in Canada, New Zealand, the Netherlands, and United Kingdom.

Spanish police say that they have dismantled a phishing gang operating across the country, following the arrest of 13 people and the announcement that they are investigating a further seven suspects. According to police, the phishing ring defrauded some 146 victims, stealing at least 443,600 Euros from online bank accounts. Victims were tricked into handing over their login credentials through the distribution of emails that pretended to come from legitimate banks, posing as security alerts.

Trusted vendor to financial institutions expanding fraud detection, cybersecurity and compliance platform to digital currencies space as FIs look to protect customer holdings