(IN)SECURE Magazine Notifications RSS

New infosec products of the week: September 17, 2021

2 hours 21 minutes ago

Here’s a look at the most interesting product releases from the past week, featuring releases from Alation, IDrive, Hornetsecurity, Palo Alto Networks, Qualys, ThreatConnect and Titania. Qualys Patch Management keeps endpoints up to date to reduce risk from exploits Qualys is integrating zero-touch patching capabilities into Qualys Patch Management. Zero-Touch Patch ensures that companies’ endpoints and servers are proactively updated as soon as patches are available, reducing their overall attack surface. Hornetsecurity launches security and … More →

The post New infosec products of the week: September 17, 2021 appeared first on Help Net Security.

Mirko Zorz

The digital identity imperative

2 hours 36 minutes ago

The ever-evolving shift to digital means that most of our day-to-day activities are carried out online. We’re now accustomed to simply toggling through a few apps to book a ride, order dinner and scroll through content from friends and public figures alike. Each of these actions requires a basic premise of trust and safety online which starts with identities needing to be verified and authenticated. But creating an identity layer wasn’t imperative for the creators … More →

The post The digital identity imperative appeared first on Help Net Security.

Help Net Security

Open source cyberattacks increasing by 650%, popular projects more vulnerable

2 hours 51 minutes ago

Sonatype released a report that revealed continued strong growth in open source supply and demand dynamics. Further, with regard to open source security risks, the report reveals a 650% year over year increase in supply chain attacks aimed at upstream public repositories, and a fascinating dichotomy pertaining to the level of known vulnerabilities present in popular and non-popular project versions. Based on survey responses collected from 702 software engineering professionals, the research observes a fundamental … More →

The post Open source cyberattacks increasing by 650%, popular projects more vulnerable appeared first on Help Net Security.

Help Net Security

Highest paying IT certifications in 2021

3 hours 21 minutes ago

A report on the skills and salaries of professionals in the technology sector reveals the true value of certification. It also identifies the number one reason for leaving a job is a lack of career growth and professional development. Questionmark, the online assessment provider, is encouraging leaders to embrace professional development and certification, both in terms of the value to the organization and to their employees. Based on an annual survey of 3,700 professionals, the … More →

The post Highest paying IT certifications in 2021 appeared first on Help Net Security.

Help Net Security

Modern security strategies key to support remote workforce demands

3 hours 51 minutes ago

COVID-19 quickly ushered in the era of remote work, introducing new risks that IT professionals are struggling to manage with existing security tools, according to a Thales study. Six in 10 respondents said traditional security tools such as VPNs are still the primary vehicle for employees accessing applications remotely — likely the reason why 44% were not confident that their access security systems could scale effectively to secure remote work. These are among the key … More →

The post Modern security strategies key to support remote workforce demands appeared first on Help Net Security.

Help Net Security

Data and AI professionals prioritize learning new skills amid labor shortage

4 hours 21 minutes ago

O’Reilly announced the results of a survey, which revealed that 64% of respondents took part in training or obtained new certifications in the past year to build upon their professional skills. The survey also found that 61% of respondents participated in training or earned certifications to solicit a salary increase or promotion. Despite this, the average change in compensation over the last three years was $9,252—an increase of just 2.25% annually. Most interested in learning … More →

The post Data and AI professionals prioritize learning new skills amid labor shortage appeared first on Help Net Security.

Help Net Security

5G trends accelerating, all major regions pursuing 5G Core testing and deployments

4 hours 51 minutes ago

5G trends are continuing to accelerate, with 5G SA Core evaluation, testing and launch activities growing significantly across all geographic regions, according to Spirent. In particular, there is considerable demand for managed solutions and XaaS (Anything as a Service) offerings, with automation technology providing a proven, practical approach to cumbersome testing in complex, multi-vendor environments. “At the halfway point in 2021, the dominant 5G trends that were present at the start of the year continue … More →

The post 5G trends accelerating, all major regions pursuing 5G Core testing and deployments appeared first on Help Net Security.

Help Net Security

Safe Systems CloudInsight M365 Security Basics provides visibility into Microsoft security settings

5 hours 21 minutes ago

Safe Systems released CloudInsight M365 Security Basics, which provides financial institutions visibility into their security settings for Azure Active Directory and O365/M365 tenants. Digital security will continue to be a growing concern for modern financial institutions. According to a recent KPMG report, 92% of companies have their cloud service credentials for sale on the dark web. Safe Systems’ M365 Security Basics protects against common risks and helps improve cloud security posture. “Many people don’t realize … More →

The post Safe Systems CloudInsight M365 Security Basics provides visibility into Microsoft security settings appeared first on Help Net Security.

Industry News

Sentry’s capabilities enable enterprise teams to reduce risk and management overhead

6 hours 21 minutes ago

Sentry announced new capabilities that reduce management overhead and accelerate issue response times for enterprise development teams. With percent-based alerts, Code Owners for GitHub and GitLab, team and personal notifications in Slack, and SCIM support for Okta, teams can find the right people at the right time to fix the right issues, streamline workflows, and improve developer efficiency. Excessive time spent on management and code maintenance are why most developers spend less than one-third of … More →

The post Sentry’s capabilities enable enterprise teams to reduce risk and management overhead appeared first on Help Net Security.

Industry News

Push Technology Diffusion 6.7 secures personalized data delivery to individual clients

6 hours 51 minutes ago

Push Technology announced new personalized client data delivery capability in the company’s Diffusion Intelligent Event-Data Platform, that delivers data among applications, systems and devices. Introducing personalization with Session Trees The new release expands the range of Diffusion’s Data Wrangling capabilities with the introduction of Session Trees. With Session Trees you can easily create event-data streams, for example: by geography focused on a local event or regulatory requirements; by network connection type such as 4G or … More →

The post Push Technology Diffusion 6.7 secures personalized data delivery to individual clients appeared first on Help Net Security.

Industry News

Versa Networks offers 5G WAN Edge products to deliver SASE services to the network edge

7 hours 37 minutes ago

Versa Networks launched 5G-native products for the wide area network (WAN) edge delivering complete SASE integration and SASE services to the network edge. Natively supporting private 5G functions, Versa enables ease of deployment and equips organizsations with QoS, network segmentation, and SASE services to meet the highest levels of compliance and privacy requirements for an optimal 5G network architecture. 5G connectivity is a requirement for many organizations because it offers extremely fast speeds, high performance … More →

The post Versa Networks offers 5G WAN Edge products to deliver SASE services to the network edge appeared first on Help Net Security.

Industry News

DDN and Tintri announces IntelliFlash N6000 series to enhance latency and throughput for file services

7 hours 51 minutes ago

DDN and Tintri announced the IntelliFlash N6000 series. This next-generation NVMe-based system optimizes the user experience across all workloads, eliminating IO contention and enhancing IT efficiencies with autonomous AI-driven operations. DDN and Tintri also introduced higher-capacity IntelliFlash H6000 series hybrid systems that easily scale to multiple petabytes, so customers can flexibly combine both primary and secondary storage – NVMe performance and hybrid cost-efficiency – within a single appliance. The new IntelliFlash N-Series systems and enhancements … More →

The post DDN and Tintri announces IntelliFlash N6000 series to enhance latency and throughput for file services appeared first on Help Net Security.

Industry News

Beazley names Raf Sanchez as Global Head of Cyber Services

9 hours 6 minutes ago

Beazley has named Raf Sanchez as its new Global Head of Cyber Services. Sanchez, currently International Manager of Beazley Breach Response Services, assumes his new Global Head of Cyber Services role on the 1st October, and joins the Global Cyber & Tech Management Team. He will continue to be based in London. Sanchez has been integral to the development of Beazley’s breach response services, which are a key element of the Beazley Breach Response (BBR) … More →

The post Beazley names Raf Sanchez as Global Head of Cyber Services appeared first on Help Net Security.

Industry News

Internet Society introduces MANRS initiative to improve the resilience and security of the routing infrastructure

9 hours 21 minutes ago

The Mutually Agreed Norms for Routing Security (MANRS) initiative, supported by the Internet Society, announced an Equipment Vendor Program to help reduce the most common threats to the Internet’s routing system. Founding participants in this new MANRS Program include global leaders in network equipment Arista, Cisco, Huawei, Juniper, and Nokia, with others expected to join soon. The security of the Internet depends on routing security. Systemic issues that arise from how traffic is routed make … More →

The post Internet Society introduces MANRS initiative to improve the resilience and security of the routing infrastructure appeared first on Help Net Security.

Industry News

Wells Fargo launches digital infrastructure strategy for its customers and employees

9 hours 36 minutes ago

Wells Fargo announced new digital infrastructure strategy, combining a multi-cloud approach with third-party data centers to drive technological speed, agility, and scalability for its customers and employees. Central to the digital infrastructure strategy is Wells Fargo’s selection of two industry leaders as its public cloud providers: Microsoft Azure as its primary public cloud provider and Google Cloud providing additional business-critical public cloud services. “Launching our new digital infrastructure strategy is a critical step in our … More →

The post Wells Fargo launches digital infrastructure strategy for its customers and employees appeared first on Help Net Security.

Industry News

CVE-2021-40444 exploitation: Researchers find connections to previous attacks

17 hours 6 minutes ago

The recent targeted attacks exploiting the (at the time) zero-day remote code execution vulnerability (CVE-2021-40444) in Windows via booby-trapped Office documents have been delivering custom Cobalt Strike payloads, Microsoft and Microsoft-owned RiskIQ have shared. The researchers also found connections between the attackers’ exploit delivery infrastructure and an infrastructure previously used by attackers to deliver human-operated ransomware, the Trickbot trojan and the BazaLoader backdoor/downloader. The attacks and their possible goals Judging by the email lures used … More →

The post CVE-2021-40444 exploitation: Researchers find connections to previous attacks appeared first on Help Net Security.

Zeljka Zorz

Microsoft announces passwordless authentication option for consumers

21 hours 42 minutes ago

After offering the passwordless authentication option to enterprise customers in March 2021, Microsoft has now started rolling it out to its consumer segment of users. The Passwordless account option “Beginning today, you can now completely remove the password from your Microsoft account. Use the Microsoft Authenticator app, Windows Hello, a security key, or a verification code sent to your phone or email to sign in to your favorite apps and services, such as Microsoft Outlook, … More →

The post Microsoft announces passwordless authentication option for consumers appeared first on Help Net Security.

Zeljka Zorz

Keys to the cloud: Unlocking digital transformation to enhance national security

1 day 2 hours ago

According to recent research, federal spending on cloud computing is anticipated to grow from $6.8 billion in 2020 to nearly $7.8 billion in 2022. As this adoption accelerates, the information environment remains highly distributed and riddled with duplicative information, hindering decision makers with limited access to authoritative data, poor data integration across disparate systems, and low-quality data. This, paired with the “anything you can do, I can do better” mantra adopted by today’s nation-state threat … More →

The post Keys to the cloud: Unlocking digital transformation to enhance national security appeared first on Help Net Security.

Help Net Security

Bot attack volumes growing 41% year over year, human-initiated attacks down 29%

1 day 2 hours ago

Bot attack volumes grew 41% year over year with human-initiated attacks falling 29%, according to a report from LexisNexis Risk Solutions. The report confirms earlier trend patterns showing the financial services industry and media businesses bear the brunt of increased automated bot network attacks. The report analyzed 28.7 billion transactions over the six-month period, up 28% year over year, attributed to increased transaction volumes from existing customers and an increased customer base. The increased shift … More →

The post Bot attack volumes growing 41% year over year, human-initiated attacks down 29% appeared first on Help Net Security.

Help Net Security

The long-term impacts of the pandemic on internal audit teams

1 day 3 hours ago

AuditBoard announced the results of a survey of corporate chief audit executives (CAEs) that reveals the long-term impacts of COVID on their operations and the profession at large. The survey polled more than 175 CAEs across a range of industries, uncovering five key trends respondents believe will have long-term impacts on internal audit teams — from an increased reliance on technology to innovative new ways of conducting audits. Audit teams will be more focused on … More →

The post The long-term impacts of the pandemic on internal audit teams appeared first on Help Net Security.

Help Net Security

Cryptography

Freelancing

Tasker: Total Automation for Android