(IN)SECURE Magazine Notifications RSS

SLAs: What your cybersecurity vendor isn’t telling you

3 hours 47 minutes ago

Service Level Agreements (SLAs) have been used in the IT world for many years as a contractual mechanism for holding service providers accountable and extracting defined payments and penalties when they mess up. Likewise, vendors have used SLAs to put their “money where their mouth is” in terms of fulfilling value promises and establishing important metrics for their customers. In reality, SLAs have not kept up with either of these purposes. For most IT pros, … More →

The post SLAs: What your cybersecurity vendor isn’t telling you appeared first on Help Net Security.

Help Net Security

Businesses need to treat cybersecurity as something that crosses organizational boundaries

4 hours 17 minutes ago

Companies are working to balance their desire for new innovations with their need for strong cyber-defenses, according to a new report from CompTIA. CompTIA’s “Cybersecurity for Digital Operations,” based on a survey of 500 U.S. businesses, also reveals that company executives, business staff and technology professionals have distinctly different views on where their organization stands when it comes to cyber-readiness. The stakes have never been higher for business operations, and public and private safety, according … More →

The post Businesses need to treat cybersecurity as something that crosses organizational boundaries appeared first on Help Net Security.

Help Net Security

The use of open source software in DevOps has become strategic for organizations of all sizes

4 hours 47 minutes ago

A higher percentage of top performing teams in enterprise organizations are using open source software, according to a survey conducted by DevOps Research and Assessment (DORA) and Google Cloud. Additionally, the proportion of Elite performers (highest performing teams) nearly tripled from last year, showing that DevOps capabilities are driving performance. These findings reflect organizations’ increased willingness to embrace investments in technology to deliver value and the use of open source – even in highly regulated, … More →

The post The use of open source software in DevOps has become strategic for organizations of all sizes appeared first on Help Net Security.

Help Net Security

Improving the security, privacy and safety of future connected vehicles

5 hours 17 minutes ago

The security, privacy and safety of connected autonomous vehicles (CAVs) has been improved thanks to testing at WMG, University of Warwick. CAVs can now connect to each other, roadside infrastructure, and roadside infrastructure to each other more securely. In the near future connected and autonomous vehicles are expected to become widely used across the UK. To ensure a smooth deployment, researchers from WMG, University of Warwick undertook real-world testing of four academic innovations in the … More →

The post Improving the security, privacy and safety of future connected vehicles appeared first on Help Net Security.

Help Net Security

World’s top 25 CTF teams to battle for $100,000 at HITB PRO CTF

5 hours 47 minutes ago

In less than a month, Hack In The Box is launching its biggest global event: HITB+CyberWeek 2019. It is a week-long gathering (October 12-17, 2019, at Emirates Palace, Abu Dhabi) that will bring together the world’s top cyber security experts to share and discuss their latest knowledge, ideas and techniques with security professionals and students. Aside from offering the usual trainings and talks, HITB has been developing specific content and challenges for the wider student … More →

The post World’s top 25 CTF teams to battle for $100,000 at HITB PRO CTF appeared first on Help Net Security.

Help Net Security

Zscaler B2B reduces the attack surface introduced by customer-facing apps

8 hours 47 minutes ago

Zscaler, the leader in cloud security, today announced Zscaler B2B, a new innovation that solves a long-standing problem businesses face when exposing their applications to their customers, suppliers and manufacturers. Zscaler B2B is a unique solution that reduces the attack surface introduced by customer-facing applications that are exposed on the internet. Built with the fundamentals of a service-initiated zero trust network access (ZTNA) architecture, Zscaler B2B enables authorized customers to view applications, based on business … More →

The post Zscaler B2B reduces the attack surface introduced by customer-facing apps appeared first on Help Net Security.

Industry News

Ubisecure IDaaS: Solve complex identity management challenges

9 hours 17 minutes ago

Ubisecure launched its new IDaaS product to help developers take applications to market faster with streamlined and secure digital identity functionality in web, mobile and single page applications. The new IDaaS offering is API-based which allows businesses to solve complex identity management challenges. APIs provide on-demand expertise that would otherwise require resource-heavy in-house development. By leveraging APIs, organisations are essentially plugging in standards-based, customisable functionality to their existing technology, with a wealth of knowledge and … More →

The post Ubisecure IDaaS: Solve complex identity management challenges appeared first on Help Net Security.

Industry News

Odo Security unveils agentless, cloud-native platform that allows secure access management

9 hours 47 minutes ago

Odo Security unveiled an agentless, cloud-native platform that allows IT and DevOps engineers to easily manage secure access to any application, server, database and environment located on-premises or in the cloud. “According to our primary research, the chief inhibitor to the adoption of effective access controls is an inability to integrate solutions with essential IT investments,” noted Steve Brasen, research director with analyst firm Enterprise Management Associates. “Odo Security has developed an elegant approach that … More →

The post Odo Security unveils agentless, cloud-native platform that allows secure access management appeared first on Help Net Security.

Industry News

New investment round sets Acronis valuation to over 1 billion dollars

10 hours 47 minutes ago

Acronis announced a $147 million investment round led by Goldman Sachs. The investment round sets the valuation of the company to over one billion dollars and enables Acronis to expand its engineering team in Singapore, Bulgaria and Arizona, build additional data centers, and grow through acquisitions. Additionally, Acronis will use the capital to accelerate the business growth in North America in partnership with Acronis SCS, an independent software vendor and distributor for the public sector. … More →

The post New investment round sets Acronis valuation to over 1 billion dollars appeared first on Help Net Security.

Industry News

Security is slowly becoming essential to doing business

1 day 3 hours ago

A veteran of the information security industry, Greg Jensen has spent the last six years at Oracle as the Senior Director of Oracle’s Cloud Security solutions. He’s also the Senior Editor of the Oracle and KPMG Cloud Threat Report, as well as Oracle’s annual CISO Report. “The focus of these efforts is to understand the key challenges that hundreds of global organizations are struggling with as they lift and shift workloads to the cloud, and … More →

The post Security is slowly becoming essential to doing business appeared first on Help Net Security.

Mirko Zorz

DNSSEC fueling new wave of DNS amplification attacks

1 day 3 hours ago

DNS amplification attacks swelled in the second quarter of this year, with the amplified attacks spiking more than 1,000% compared with Q2 2018, according to Nexusguard. Researchers attributed Domain Name System Security Extensions (DNSSEC) with fueling the new wave of DNS amplification attacks, which accounted for more than 65% of the attacks last quarter according to the team’s evaluation of thousands of worldwide DDoS attacks. DNSSEC was designed to protect applications from using forged or … More →

The post DNSSEC fueling new wave of DNS amplification attacks appeared first on Help Net Security.

Help Net Security

Confidential data of 24.3 million patients discovered online

1 day 4 hours ago

Greenbone Networks has released details of new research in to the security of the servers used by health providers across the world to store images of X-rays as well as CT, MRI and other medical scans. Of the 2,300 medical image archive systems worldwide that Greenbone analyzed between mid-July and early September 2019, 590 of them were freely accessible on the internet, together containing 24.3 million data records from patients located in 52 different countries. … More →

The post Confidential data of 24.3 million patients discovered online appeared first on Help Net Security.

Help Net Security

Businesses facing post breach financial fallout by losing customer trust

1 day 4 hours ago

44% of Americans, 38% of Brits, 33% of Australians, and 37% of Canadians have been the victim of a data breach, according to newly released research conducted by PCI Pal. The findings suggest that a combination of recent high-profile data breaches in each region, the development of assorted laws and regulations to protect consumer data privacy (e.g. the California Consumer Privacy Act, Europe’s General Data Protection Regulations, Canada’s Personal Information Protection and Electronic Documents Act, … More →

The post Businesses facing post breach financial fallout by losing customer trust appeared first on Help Net Security.

Help Net Security

What are the most connected countries around the world?

1 day 5 hours ago

How connected a country is does not only mean how freely information can be reached or how many people have access to the internet or social media – it goes much further than that, influencing our lifestyle, how we do business and even the power and reputation of our respective countries. Carphone Warehouse has created The Connectivity Index listing the top 34 most connected countries in the world. The index takes into consideration data such … More →

The post What are the most connected countries around the world? appeared first on Help Net Security.

Help Net Security

Download: RFP templates for EDR/EPP and APT protection

1 day 5 hours ago

Security decision makers need to address APT risks, but struggle with mapping APT attack vectors to a clear-cut set of security product capabilities, which impairs their ability to choose the products that would best protect them. Cynet is addressing this need with the definitive RFP templates for EDR/EPP and APT protection, an expert-made security requirement list, that enables stakeholders to accelerate and optimize the evaluation process of the products they evaluate. The RFP contains five … More →

The post Download: RFP templates for EDR/EPP and APT protection appeared first on Help Net Security.

Help Net Security

nCipher launches nShield as a Service, a cloud-based hardware security module

1 day 6 hours ago

nCipher Security, an Entrust Datacard company, announces nShield as a Service, a cloud-based hardware security module (HSM) service that allows organisations to protect sensitive data and applications and helps meet compliance mandates – simply and efficiently, using on-demand cryptography. “Organisations embracing cloud-first strategies require cloud-first encryption,” said Peter Galvin, vice president of strategy, nCipher Security. “This means remote, automated management at scale, and flexible access control both in the cloud and onsite. nShield as a … More →

The post nCipher launches nShield as a Service, a cloud-based hardware security module appeared first on Help Net Security.

Industry News

Oracle’s data management portfolio innovations help businesses protect and capitalize on their data

1 day 7 hours ago

Oracle announced major new innovations across its data management portfolio that make it easier, faster, and safer for customers to run their mission critical workloads everywhere – in the cloud, on-premises, and via Exadata Cloud at Customer. Oracle continues to deliver the world’s most comprehensive data management solutions, including the industry’s first and only self-driving database, Oracle Autonomous Database. “Oracle’s passion in helping customers solve tomorrow’s problems through technological investment and innovation is unparalleled,” said … More →

The post Oracle’s data management portfolio innovations help businesses protect and capitalize on their data appeared first on Help Net Security.

Industry News

ManageEngine Applications Manager now supports performance monitoring for Oracle Cloud Infrastructure

1 day 7 hours ago

ManageEngine, the IT management division of Zoho Corporation, announced that Applications Manager, its server, cloud and application performance monitoring solution, now supports performance monitoring for Oracle Cloud Infrastructure (OCI). This enables IT operations teams to gain visibility into the health and performance of the OCI Compute service. Additionally, Applications Manager virtualization monitoring module now supports Oracle VM. ManageEngine is demonstrating the latest capabilities of Applications Manager in booth 1905 at Oracle OpenWorld 2019, being held … More →

The post ManageEngine Applications Manager now supports performance monitoring for Oracle Cloud Infrastructure appeared first on Help Net Security.

Industry News

McAfee and Oracle deliver SIEM performance capabilities in the cloud

1 day 8 hours ago

McAfee, the device-to-cloud cybersecurity company, announced an extended relationship with Oracle to deliver security incident and events management (SIEM) performance capabilities in the cloud. With this collaboration, the McAfee Enterprise Security Manager (McAfee ESM) technology running on Oracle Cloud Infrastructure will increase the rate of data ingestion of events per second by more than 16 times. This increase in performance enables security operations center teams to more effectively and cost efficiently secure enterprise environments against … More →

The post McAfee and Oracle deliver SIEM performance capabilities in the cloud appeared first on Help Net Security.

Industry News

Quest Toad for Oracle reduces disruptive and expensive unplanned development cycles

1 day 8 hours ago

Quest Software, a global systems management, data protection and security software provider, announced major updates for Toad for Oracle, an intuitive database management toolset that makes it easy to perform essential database development and administration tasks. Now available from the Quest Information Management business, Toad for Oracle 13.2 includes a new utPLSQL unit test creation module that makes it easy for database developers to incorporate unit testing into their database development processes, ensuring they are … More →

The post Quest Toad for Oracle reduces disruptive and expensive unplanned development cycles appeared first on Help Net Security.

Industry News

Tasker: Total Automation for Android

The Register

VMblog.com - Virtualization Information