%term

Critical Remote Code Execution & Authentication Bypass Vulnerabilities in Aruba EdgeConnect Enterprise Orchestrator

Oct 14, 2022 By James Liolios In Arctic Wolf

On Tuesday, October 11th, 2022, Aruba disclosed three critical vulnerabilities impacting EdgeConnect Enterprise Orchestrator. The vulnerabilities, CVE-2022-37913, CVE-2022-37914, CVE-2022-37915, are remote code execution and authentication bypass vulnerabilities that could enable remote threat actors to compromise a host. In order for a threat actor to exploit these vulnerabilities, WAN access would need to be available for the CLI and/or web-based management interfaces.

Read Post

Arctic Wolf

Read more about Critical Remote Code Execution & Authentication Bypass Vulnerabilities in Aruba EdgeConnect Enterprise Orchestrator

Elastic continues to gain momentum in SIEM market

Oct 14, 2022 By Mike Nichols, In Elastic

Elastic has successfully delivered a leading Security Information and Event Management (SIEM) offering with only two years in the market. According to IDC Worldwide Security Information and Event Management Market Shares, 2021: The Cardinal SIEMs report, Elastic is one of the fastest growing SIEMs (more than 80% year-over-year growth) — and had the fifth largest market share in 2021 of the 20+ SIEM vendors in the report.

Read Post

Elastic

Read more about Elastic continues to gain momentum in SIEM market

Why Data Security is So Important

Oct 14, 2022 By Rubrik In Rubrik

Register Now Nearly every day, news articles showcase big-name companies that became victims of cyberattacks and the hundreds of millions of dollars of loss it will have on their business. These headlines should not be surprising when you look at the data. The number of ransomware detected in Q1 2022 alone was double that of the whole year of 2021.

Read Post

Rubrik

Read more about Why Data Security is So Important

The 443 Podcast Episode 212 - Q2 Threats and Guilty CSOs

Oct 14, 2022 By WatchGuard In WatchGuard

This week on the podcast, we focus on highlighting WatchGuard's Q2 Internet Security Report, covering the latest threat trends and what you can do to avoid them. However, we also pack in our security news segment, with an Optus breach update from an Australian IT and security expert and WatchGuard Partner, the latest on the UBER CSO trial, and a warning about the recent zero day Exchange exploit that some call ProxyNotShell. This week's episode is a long one, so grab a fresh coffee and listen during a long walk or drive.

View Video

WatchGuard

Read more about The 443 Podcast Episode 212 - Q2 Threats and Guilty CSOs

Save the Data

Oct 14, 2022 By Rubrik In Rubrik

Witness a ransomware attack firsthand. Then, work with peers and pros to strategize real-world solutions in this fully immersive tabletop exercise. Visit SavetheData.com to find an event near you.

View Video

Rubrik

Read more about Save the Data

The Simply Cyber Report for 2022-10-14

Oct 14, 2022 By LimaCharlie In LimaCharlie

The consequences of trying to hide the hack for the CISO for Uber, new Microsoft Exchange on-prem vulnerabilities, shout out to Gossi the dog, new on the scene: phishing as a service, and hacktivism in Iran.

View Video

LimaCharlie

Read more about The Simply Cyber Report for 2022-10-14

The Capital of Information Security is Knowledge - Dartmouth College + Netskope

Oct 14, 2022 By Netskope In Netskope

Learn how Netskope enables the team at Dartmouth to pull in intelligence for multiple sources and synthesize that into meaningful results, right down to the actions they should take.

View Video

Netskope

Read more about The Capital of Information Security is Knowledge - Dartmouth College + Netskope

The biggest concerns within the US Financial Sector in 2022

Oct 13, 2022 By Anastasios Arampatzis In AT&T Cybersecurity

The value of digital payment transactions is growing as the world's payment environment moves more and more away from cash. Over the past few years, BFSI (Banking, Financial Service, and Insurance) firms have continued to be a top target for hackers. In fact, the Sixth Annual Bank Survey found that more than 70% of fintech companies named information security as their top issue.

Read Post

AT&T Cybersecurity

Read more about The biggest concerns within the US Financial Sector in 2022

Playing Hide-and-Seek with Ransomware, Part 1

Oct 13, 2022 By Mathilde Venault In CrowdStrike

At CrowdStrike, our mission is to stop breaches. To achieve this, we’re always on the lookout to defend customers against active attacks and preemptively protect them against emerging threats. In July 2021, researchers from Royal Holloway, University of London, published a white paper, “RansomClave: Ransomware Key Management using SGX,” that presents a novel ransomware based on an Intel feature called Software Guard Extension (SGX).

Read Post