(IN)SECURE Magazine Notifications RSS

New version of Enzoic for Active Directory helps orgs reduce insider risks from poor password hygiene

5 days 9 hours ago

Enzoic, a leading provider of compromised password security solutions, released the latest version of Enzoic for Active Directory. The automated tool screens and identifies employees that are using compromised or weak passwords, helping organizations reduce insider risks from poor password hygiene. It is the only Active Directory plugin with 1-click NIST password guideline compliance. Insider threats continue to increase with Verizon’s 2019 Data Breach Investigations Report identifying that 34 percent of all breaches in 2018 … More →

The post New version of Enzoic for Active Directory helps orgs reduce insider risks from poor password hygiene appeared first on Help Net Security.

Industry News

IRONSCALES Themis is now fully autonomous in the classification and removal of email threats

5 days 9 hours ago

IRONSCALES, the pioneer of self-learning email security, announced that Themis, its AI-driven virtual security analyst, now has the ability to be fully autonomous in the classification and removal of email threats. Since first being released in 2018, Themis has helped render verdicts against more than 100 million trending and zero-day phishing attacks, including some of the most complex techniques, such as polymorphism, business email compromise and ransomware. Security analysts can now measurably increase the speed … More →

The post IRONSCALES Themis is now fully autonomous in the classification and removal of email threats appeared first on Help Net Security.

Industry News

RtBrick BNG: Delivering automation, web-scale and cloud operating costs for carrier IP/MPLS networks

5 days 10 hours ago

RtBrick has announced the availability of its Broadband Network Gateway (BNG) software. RtBrick’s BNG is the first use-case for its FullStack routing software, which runs on merchant-silicon hardware, transforming it into carrier IP/MPLS infrastructure. RtBrick FullStack brings web-scale, greater agility and a substantially lower cost-base to carrier networks. “We realised the huge ‘cloud-native’ IT companies can run their operations at lower cost and with more agility than telecoms operators have ever been able to,” said … More →

The post RtBrick BNG: Delivering automation, web-scale and cloud operating costs for carrier IP/MPLS networks appeared first on Help Net Security.

Industry News

EclecticIQ’s new browser extension helps analysts capture threat indicators automatically

5 days 11 hours ago

EclecticIQ, global provider of cyber threat intelligence (CTI) technology solutions, has released a new browser extension, specifically made for its Threat Intelligence Platform (TIP). The extension lets analysts process threat data directly from their web browser. Through a combination of automation and workflow tooling the browser extension reduces the time and effort for CTI analysts to process threat data found either on external websites or on the web-based front-ends of their internal security controls. Analysts … More →

The post EclecticIQ’s new browser extension helps analysts capture threat indicators automatically appeared first on Help Net Security.

Industry News

BitDam Advanced Threat Protection solution now supports Microsoft Teams and Zoom

5 days 11 hours ago

BitDam, a leading provider of cybersecurity solutions that protect enterprise communications from unknown threats hidden in files and links, announced that its Advanced Threat Protection solution now supports Microsoft Teams and Zoom. Aiming to support organizations’ ability to collaborate safely when working from home, BitDam has accelerated these solution releases and is offering businesses its trial for Zoom and Microsoft Teams protection for free for three months. The world response to the Covid-19 pandemic has … More →

The post BitDam Advanced Threat Protection solution now supports Microsoft Teams and Zoom appeared first on Help Net Security.

Industry News

Ping Identity PingID multi-factor authentication now available in AWS Marketplace

5 days 11 hours ago

Ping Identity, the Intelligent Identity solution for the enterprise, announced the availability of PingID multi-factor authentication (MFA) in AWS Marketplace. Customers can now quickly procure and deploy PingID to secure work from home while adding an additional layer of security to their AWS infrastructure. Ping’s Intelligent IdentityTM platform provides enterprises a digital identity solution for securely accessing services, applications, and APIs from virtually any device or location. The PingID MFA service makes it easy for … More →

The post Ping Identity PingID multi-factor authentication now available in AWS Marketplace appeared first on Help Net Security.

Industry News

CrowdStrike customers can now reduce endpoint attack surface with AutomoxApp through CrowdStrike Store

5 days 12 hours ago

Automox, the cloud-native cyber hygiene platform provider, announced its availability in the CrowdStrike Falcon Store. Through this growing partnership, CrowdStrike customers can now proactively reduce their endpoint attack surface by up to 80%, and dramatically reduce the alert fatigue caused by unpatched and misconfigured systems. Nearly two out of three data breaches are attributed to vulnerabilities that security and IT teams knew about but weren’t applied fast enough. Studies show that adversaries weaponize new vulnerabilities … More →

The post CrowdStrike customers can now reduce endpoint attack surface with AutomoxApp through CrowdStrike Store appeared first on Help Net Security.

Industry News

MobileIron and Teamwire to help orgs quickly and easily establish a foundation for secure communications

5 days 12 hours ago

MobileIron, the company that introduced the industry’s first mobile-centric, zero trust platform for the enterprise, announced that it has joined forces with Teamwire to help organizations quickly and easily establish a foundation for secure communications. MobileIron and Teamwire have integrated their best-of-breed technologies to securely encrypt business communications with an intuitive messaging app, so employees can collaborate on any mobile device, desktop, or network without sacrificing productivity — whether their digital workplace is at home … More →

The post MobileIron and Teamwire to help orgs quickly and easily establish a foundation for secure communications appeared first on Help Net Security.

Industry News

Unravel Data hires Sandeep Uttamchandani as its new Chief Data Officer and VP of Engineering

5 days 13 hours ago

Unravel Data, the only data operations platform providing full-stack visibility and AI-powered recommendations to drive more reliable performance in modern data applications, announced that it has hired Sandeep Uttamchandani as its new Chief Data Officer and VP of Engineering. Uttamchandani will help boost Unravel’s capabilities for optimizing data apps and end-to-end data pipelines, with special focus on driving innovations for cloud and machine learning workloads. He will also lead and expand the company’s world-class data … More →

The post Unravel Data hires Sandeep Uttamchandani as its new Chief Data Officer and VP of Engineering appeared first on Help Net Security.

Industry News

Spencer Johnson joins Pyramid Analytics as Vice President of North America Sales

5 days 13 hours ago

Pyramid Analytics, a leading global provider of next-generation business analytics for the enterprise, welcomed Spencer Johnson as Vice President of North America Sales. Responsible for ensuring that the Pyramid has the necessary people, tools, training, and resources to meet designated revenue goals, Johnson will report to Omri Kohl, co-founder and CEO of Pyramid Analytics. His hire comes on the heels of a $25 million JVP-led funding round, announced earlier this month. “Spencer brings an impressive … More →

The post Spencer Johnson joins Pyramid Analytics as Vice President of North America Sales appeared first on Help Net Security.

Industry News

Mozilla will fund open source COVID-19-related technology projects

5 days 22 hours ago

Have you come up with hardware or software that can help solve a problem that arose from COVID-19 and its worldwide spread? Mozilla is offering up to $50,000 to open source technology projects that are responding to the pandemic in some way. Crisis jumpstarts innovation Ever since COVID-19 became a global problem, there have been efforts aimed at jumpstarting solutions to the everyday challenges brought on by the outbreak. Innovative medical solutions have been introduced … More →

The post Mozilla will fund open source COVID-19-related technology projects appeared first on Help Net Security.

Zeljka Zorz

Are your MS SQL servers part of a cryptomining botnet? Check now!

5 days 23 hours ago

For the last two years or so, attackers have been infecting and reinfecting poorly secured MS SQL servers, booting other criminals’ malware from them and exploiting their compute power to mine Vollar and Monero cryptocurrency. 61.5 percent of the infected machines get cleaned up by administrators and IT security teams within two days, and the rest between three to 14 days but, according to Guardicore Labs researchers, 10 percent of the victims end up reinfected, … More →

The post Are your MS SQL servers part of a cryptomining botnet? Check now! appeared first on Help Net Security.

Zeljka Zorz

Vulnerable VPN appliances at healthcare organizations open doors for ransomware gangs

6 days 2 hours ago

The increased enterprise VPN use due to the COVID-19 pandemic and the work-from-home (WFH) shift has not gone unnoticed by ransomware gangs, Microsoft warns. “We’re seeing from signals in Microsoft Threat Protection services (Microsoft Defender ATP, Office 365 ATP, and Azure ATP) that the attackers behind the REvil ransomware are actively scanning the internet for vulnerable systems. Attackers have also been observed using the updater features of VPN clients to deploy malware payloads,” the company … More →

The post Vulnerable VPN appliances at healthcare organizations open doors for ransomware gangs appeared first on Help Net Security.

Zeljka Zorz

How can you strengthen an enterprise third-party risk management program?

6 days 6 hours ago

We sat down with Sean Cronin, CEO of ProcessUnity, to explore the challenges related to enterprise third-party risk today and in the future. What are the most unexpected pitfalls for a CISO that wants to strengthen an enterprise third-party risk management program? Ultimately, you need to understand where your program is today and build a plan to mature it. There are a lot of moving parts in a third-party risk management program. Most companies today … More →

The post How can you strengthen an enterprise third-party risk management program? appeared first on Help Net Security.

Mirko Zorz

vFeed: Leveraging actionable vulnerability intelligence as a service indicators

6 days 7 hours ago

vFeed is a truly exciting company and we had to include them in our list of the 10 hot industry newcomers to watch at RSA Conference 2020. In this podcast, Rachid Harrando, Advisory Board Member at vFeed, talks about how their correlation algorithm analyzes a large plethora of scattered advisories and third-party sources, and then standardizes the content with respect to security industry open standards. Here’s a transcript of the podcast for your convenience. Hello, … More →

The post vFeed: Leveraging actionable vulnerability intelligence as a service indicators appeared first on Help Net Security.

Help Net Security

Best practices and challenges in adopting continuous software testing

6 days 7 hours ago

Businesses must accelerate the shift to comprehensive continuous software testing in order to remain competitive, according to a report released by Capgemini and Broadcom. The report, based on a survey of 500 senior decision makers in corporate IT reveals that most businesses find it challenging to adapt their quality assurance and testing processes to the Agile way of working. The crux of the challenge is that organizations find it difficult to frequently deploy a large … More →

The post Best practices and challenges in adopting continuous software testing appeared first on Help Net Security.

Industry News

Total number of IoT connections to reach 83 billion by 2024

6 days 8 hours ago

The total number of IoT connections will reach 83 billion by 2024, rising from 35 billion connections in 2020, according to Juniper Research. This represents a growth of 130% over the next 4 years. The research identified the industrial sector as a key driver of this growth. It forecast that this expansion will be driven by the increasing use of private networks that leverage cellular networks standards. Industrial sector to account for a total of … More →

The post Total number of IoT connections to reach 83 billion by 2024 appeared first on Help Net Security.

Help Net Security

Large number of mobile apps may be vulnerable to hacking

6 days 8 hours ago

A team of cybersecurity researchers has discovered that a large number of mobile apps contain hardcoded secrets allowing others to access private data or block content provided by users. Hidden behaviors within the app The study’s findings: that the apps on mobile phones might have hidden or harmful behaviors about which end users know little to nothing, said Zhiqiang Lin, an associate professor of computer science and engineering at The Ohio State University and senior … More →

The post Large number of mobile apps may be vulnerable to hacking appeared first on Help Net Security.

Help Net Security

Guide: Making the financial case for outsourcing endpoint protection

6 days 9 hours ago

Outsourcing your endpoint protection can deliver positive returns by improving operational efficiency and minimizing risk, but it’s not always easy to prove the business case. This guide delivers specific guidance on how to calculate savings in the context of your organization’s risk while accounting for size and industry. Specifically, you’ll get insights on: Financial risk Operational savings Example scenarios After reading, you will be able to demonstrate to your leadership and budget authorities the value … More →

The post Guide: Making the financial case for outsourcing endpoint protection appeared first on Help Net Security.

Help Net Security

Attivo Networks unveils ADSecure solution for Google Cloud’s Managed Service for Microsoft AD

6 days 9 hours ago

Attivo Networks, the award-winning leader in deception for cybersecurity threat detection, announced the availability of its ADSecure solution for Google Cloud’s Managed Service for Microsoft Active Directory (AD). The Google Cloud team has reviewed the Attivo solution that operates and reduces the risk of attack escalation for organizations running Active Directory with Google’s managed service. Active Directory is estimated to be used by over 90% of businesses to organize users, computers, and services. Attackers target … More →

The post Attivo Networks unveils ADSecure solution for Google Cloud’s Managed Service for Microsoft AD appeared first on Help Net Security.

Industry News