Protecting patients by securing medical devices and the Internet of Medical Things (IoMT)
This blog was written by an independent guest blogger.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
$1.7 Million in NFTs Stolen in Phishing Attack on OpenSea Users
Read also: DeadBolt ransomware targets Asustor NAS devices, logistics company Expeditors falls victim to a cyber attack, and more.
Manufacturing was the top industry targeted by ransomware last year
Global supply chains are bearing the brunt of ransomware attacks, according to a new report that finds manufacturing was the most targeted industry during 2021. Knocking financial services and insurance off the top of the heap after a long reign, the manufacturing industry was found by IBM to be the most attacked sector – accounting for 23% of reports of ransomware.
Microsoft Office: VBA Blocked By Default in Files From the Internet
In January 2022, Microsoft announced that Excel 4.0 macros will be restricted by default, as a measure to protect customers against malware based on XLM 4.0 macros. As a more aggressive measure, on February 07, 2022, Microsoft announced that they will start blocking VBA macros for files downloaded from the internet.
All about Information Security Policies, and How to Draft them Effectively?
Policies and procedures are an integral part of an organisation. They determine the company’s culture, beliefs, norms, and expectations, thus they must be carefully drafted and regularly updated.
AccessPatrol Dashboards & BrowseReporter Idle Time Alerts (v7.0)
CurrentWare version 7.0 is here! Here are the most exciting features that we’d love to highlight. CurrentWare 7.0 is fully compatible with Windows 11. Learn more about the changes in version 7.0 in the release notes
Magento security requires additional patch to fix sanitization vulnerability
As technology folks, we are often under a lot of pressure to fix some deployed code, update an infrastructure component, or patch some code. Often it’s with little notice and needs to be done 5 minutes ago. The gamble with any “zero turnaround” is the rush to fix now vs. taking the time to test and check.
CloudCasa Adds AWS Cloud Security Posture to Kubernetes Security Posture Reviews
Continuing with our security-first approach to Kubernetes data protection, in addition to Kubernetes Security Posture Reviews to scan your environment for vulnerabilities and misconfigurations, CloudCasa also added Cloud Security Posture Management for Amazon Web Services (AWS). Most attacks on cloud are the result of misconfigurations and mistakes, per industry analyst, Gartner. The research firm went on to forecast that through 2025, 99% of such attacks would be the customer’s fault.
Vulnerable AWS Lambda function - Initial access in cloud attacks - Blog Article
Serverless is becoming mainstream in business applications to achieve scalability, performance, and cost efficiency without managing the underlying infrastructure. Our security research team will explain a real attack scenario from the black box and white box perspective on how a vulnerable AWS Lambda function could be used by attackers as initial access into your cloud environment. Finally, we show the best practices to mitigate this vector of attack.
Trustwave's Action Response: Russia-Ukraine Crisis - Defending Your Organization From Geopolitical Cybersecurity Threats
Trustwave security and engineering teams are on heightened alert and are actively monitoring malicious cyber activity associated with and adjacent to the escalating military conflict between Russia and Ukraine. Trustwave is working closely with its clients around the world to enhance cyber preparedness during this time.