In April of 2024, the FBI released a warning that threat actors are sending SMS phishing, also known as smishing, messages to individuals pretending to be toll road operators messaging about unpaid toll fees. This kind of attack is a common one, and targets more than just individuals –— think the MGM resorts breach of 2023 that started with a phishing call to an IT professional and ended up costing the casino millions.

Cloud computing has gained traction in recent years due to its ease of scalability, flexibility, and efficiency. It allows businesses to accelerate innovation and spend less in meeting client or consumer demands. With several businesses migrating their operations to the cloud, cloud computing has become the technology of choice as it becomes more readily accessible and affordable.

A malicious code, commonly known as malware is simply a software created to harm computer systems and applications, make changes to networks, and the victim completely unaware. Unlike accidental security flaws and applications’ configuration failures, which are occurring because of irrelevant mistakes like coding mistakes or other mistakes during development activities, deliberate code is purposely designed in order to cause some harm.

Airbnb has brought a new paradigm to the hospitality industry. It has become the go-to platform for persons looking to make additional income with their properties and travelers looking for unique accommodation experiences away from home. However, this new model and its appeal have also attracted individuals looking to exploit the platform for fraud. Scams on Airbnb are becoming increasingly common, as both hosts and guests are not left out from becoming targets.

As businesses transition to hybrid and multi-cloud setups, vulnerabilities arising from misconfigurations and security gaps are escalating, attracting attention from bad actors. In response, the US National Security Agency (NSA) issued a set of ten recommended mitigation strategies, published earlier this year (with support from the US Cybersecurity and Infrastructure Security Agency on six of the strategies).

As data breaches continue to rise, businesses face significant financial losses. The recent $350 million loss incurred by T-Mobile underscores the urgency of addressing data theft. Despite these challenges, many companies overlook data privacy, extending the risk of further breaches. In this article, we explore why data privacy is crucial for businesses, and address important data privacy questions you should be asking now.

The experience of seeing a doctor has transformed dramatically, thanks in part to the emergence of telemedicine. This digital evolution promises convenience and accessibility but brings with it a host of cybersecurity risks that were unimaginable up until a few years ago. The unique cybersecurity challenges facing telemedicine today underscore the importance of adopting stringent security measures to protect the sanctity of this vital service.

Developers are responsible for mitigating risk of web applications through secure software development. This requires a culture of secure software development, which can be promoted with tactics that engage developers in the security process.

Wallarm introduced its ongoing Open Source API Firewall project to the world at the recently concluded Blackhat Asia 2024 conference in Singapore. The open-source API Firewall by Wallarm is a free, lightweight API Firewall designed to protect REST and GraphQL API endpoints across cloud-native environments using API schema validation. By relying on a positive security model, our API Firewall only allows calls that match a predefined API specification while rejecting everything else.

With technological advancements, organizations are moving to the public cloud, which has resulted in a major concern: data security. Traditional methods of managing secrets and sensitive information are proving inadequate, especially when there is a high volume of private data. Here comes the need for HashiCorp Vault: a solution that offers a centralized and robust system to safeguard sensitive information. In this blog, we will explore HashiCorp Vault’s purpose, benefits, and use cases.