In the ever-expanding world of cloud computing, one thing has become glaringly clear: identities are no longer just user profiles—they are the keys to the kingdom. As businesses race to harness the power of the cloud, they must also confront a growing menace: the risk posed by poorly managed identities. Imagine leaving your front door unlocked in a neighborhood known for break-ins — that’s what weak identity management is like in the cloud.

Latrodectus is a downloader first discovered by Walmart back in October of 2023. The malware became very famous due to its similarities with the famous IcedID malware, not only in the code itself but also the infrastructure, as previously reported by Proofpoint and Team Cymru S2. The malware is usually delivered via email spam campaigns conducted by two specific threat actors: TA577 and TA578.

Tanium’s latest integration for ServiceNow IT Operations Management enables end-to-end patch lifecycle management and orchestration with seamless workflows, change management controls, and audit reporting tied to the service desk and CMDB.

In this article, we outline the main elements of DORA, as well as key recommendations for preparing effectively for this important new regulation.

Sales and marketing are common challenges for MSPs. In fact, 24% of MSPs say acquiring new clients is their number one problem. 29% say it’s competition. As an MSP, getting your name out there and differentiating yourself is a constant challenge. Most MSPs start out with word-of-mouth marketing, which works great — until it doesn’t. Referral-based marketing is limited in scope. Before long, you’ll find yourself faced with diminishing returns. So, what’s next?

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Oh boy, what a trove for scammers. Really hope plugged before used…

Over the last 18 months, you’ve probably heard about Large Language Models (LLMs) like OpenAI’s GPT and Google’s Gemini. Whether you’re using them as a personal research assistant, an editor, or a data analyst, these tools represent a new frontier of Machine Learning (ML) and Artificial Intelligence (AI) and arguably will have the most significant impact of any technology in this decade.

For bad actors, using synthetic voices is easy, cheap, and worryingly effective.

The block Microsoft accounts security setting in Windows is designed to restrict or disable the use of Microsoft accounts on a device or network. This setting can be important for companies looking to have a higher security posture through the use of local accounts only. A Microsoft account is an account created through Microsoft that enables access to a variety of Microsoft services and products, all with a single set of credentials.