about - MEDIA COVERAGE

2021 | 2020 | 2019 | 2018 | 2017 | 2016 | 2015 | 2014

Media coverage published in 2021

NIST Releases 'Critical Software' Definition for US Agencies

June 28, 2021

Gov Info Security

The National Institute of Standards and Technology has published its definition of what "critical software" means for the U.S. federal government, as the standards agency begins fulfilling some of the requirements laid out in President Joe Biden's executive order on cybersecurity.

Read article

Cisco ASA Bug Now Actively Exploited as PoC Drops

June 25, 2021

Threatpost

Researchers have dropped a proof-of-concept (PoC) exploit on Twitter for a known cross-site scripting (XSS) vulnerability in the Cisco Adaptive Security Appliance (ASA). The move comes as reports surface of in-the-wild exploitation of the bug.

Read article

Bipartisan Legislation Would Establish Cybersecurity Literacy Campaign

June 25, 2021

Channel Futures

A bipartisan group of U.S. House members introduced legislation to establish a cybersecurity literacy and public awareness campaign. The cybersecurity literacy bill comes amid the increasing onslaught of cyberattacks. These include headline-grabbing attacks on SolarWinds and Microsoft Exchange, and ransomware attacks such as Colonial Pipeline and JBS USA.

Read article

Sécuriser Microsoft Office 365 face à la nouvelle normalité…

June 25, 2021

Informatique News France

Autrefois considéré comme un avantage stratégique, le cloud est rapidement devenu indispensable au sein des entreprises. Son adoption, ainsi que l’efficacité et l’agilité qu’il procure, figurent en bonne place de l’ordre du jour des conseils d’administration depuis plusieurs années maintenant.

Read article

Vectra launches Detect for AWS

June 24, 2021

Digitalisation World

Detect for AWS is a cloud-native SaaS solution that provides continuous, scalable agentless threat detection, prioritisation, investigation, and response to attacks targeting applications running on AWS, as well as users, compute, and storage instances, including the use on AWS of the control plane itself. Detect for AWS works both at runtime and holistically across all AWS regions and does not require packet mirroring.

Read article

SEC Reportedly Probing SolarWinds Breach

June 23, 2021

Tech News World

Clients of SolarWinds, which experienced a high-profile data breach last year, are being targeted in a probe by the U.S. Securities and Exchange Commission, according to a Reuters report. The investigation is focusing on whether some of the companies doing business with the network management software maker failed to disclose they were affected by the attack, Reuters reported Monday, citing two anonymous sources familiar with the investigation.

Read article

CISA Believes SolarWinds Attack Could Have Been Prevented with Simple Countermeasure

June 23, 2021

Security Magazine

The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) says the 2020 SolarWinds supply chain cybersecurity compromise could have been prevented with a decade-old security recommendation.

Read article

Could Better Cyber Hygiene Have Prevented the SolarWinds Attack?

June 22, 2021

SC Magazine

The Cybersecurity and Infrastructure Security Agency confirmed this week in a letter that better cyber hygiene – specifically, blocking SolarWinds Orion servers from outbound internet traffic – could have helped prevent the supply chain attack. But cybersecurity experts say that alone would not have protected organizations from being infiltrated.

Read article

Ukraine arrests ransomware gang in global cyber criminal crackdown

June 18, 2021

Tech Radar

Ukranian police have raided the headquarters of the notorious Cl0p ransomware gang, seizing computer hardware used in its operations along with the equivalent of $184,000, which is most likely ransom money.

Read article

From AI to Teamwork: 7 Key Skills for Data Scientists

June 18, 2021

Information Week

The Bureau of Labor Statistics lists jobs in data science in the top 15 fastest growing occupations with projected 31 percent job growth over the next 10 years. With data increasingly becoming the lifeblood of all organizations, data scientists need to be equipped not only with the right technical skills, but a robust dose of business acumen as well.

Read article

Wegmans Notifies Customers of Data Leak

June 18, 2021

Solutions Review

The Wegmans data leak appears to have exposed customers’ names, addresses, phone numbers, birth dates, Shoppers Club numbers, and Wegmans.com account e-mail addresses and (salted) passwords. However, no payment information was leaked. Wegmans warned customers of a potential credential stuffing attack some months earlier.

Read article

Wegmans Reports Misconfigurations on Two Cloud Databases

June 18, 2021

SC Magazine

Another company was caught in a cloud misconfiguration issue as Wegmans Food Markets notified its customers that two of its cloud databases were left open to potential outside access. In a notice released to its customers, Wegmans said the type of customer information included names, addresses, phone numbers, birth dates, Shoppers Club numbers, and email addresses and passwords for access to Wegmans.com accounts.

Read article

NSA Offers Tips on Securing Unified Communication Channels

June 18, 2021

Gov Info Security

The U.S. National Security Agency has released guidance to help federal agencies and business enterprises protect their unified communications channels and voice/video over IP calls from cyberthreats.

Read article

6 Clop Ransomware Operation Suspects Arrested in Ukraine

June 17, 2021

Security Magazine

With the assistance and coordination of Interpol and law enforcement officers from the Republic of Korea and the United States, Ukrainian police have arrested six alleged members of the Clop ransomware gang.

Read article

Dear Enterprise IT: Cybercriminals Use AI Too

June 17, 2021

Venturebeat

In a 2017 Deloitte survey, only 42% of respondents considered their institutions to be extremely or very effective at managing cybersecurity risk. The pandemic has certainly done nothing to alleviate these concerns. Despite increased IT security investments companies made in 2020 to deal with distributed IT and work-from-home challenges, nearly 80% of senior IT workers and IT security leaders believe their organizations lack sufficient defenses against cyberattacks, according to IDG.

Read article

Clop Raid: A Big Win in the War on Ransomware?

June 17, 2021

Threatpost

The noisy raid of the Clop ransomware gang in Ukraine was a major win according to most experts throughout the cybersecurity community, who said the moment marks a shift in the international war on ransomware.

Read article

Ukrainian Police Partner with US, South Korea for Raid on Clop Ransomware Members

June 16, 2021

ZDNet

The Ukrainian National Police announced a series of raids that ended with the arrest of six people allegedly part of the group behind the Clop ransomware.

Read article

Le plan de gestion du Cloud est-il un nouveau front pour la cybersécurité ?

June 16, 2021

Silicon.fr

Le plan de gestion assure la gestion et l’orchestration du déploiement du Cloud dans une entreprise. C’est à ce niveau que les configurations de référence sont définies, que l’accès des utilisateurs et des rôles est fourni, ainsi que l’emplacement des applications afin qu’elles puissent s’exécuter avec les services associés— on peut le comparer au contrôle du trafic aérien dans le cadre des applications.

Read article

Nurturing a Relationship between AI and the Security Team

June 14, 2021

Security Boulevard

No matter the industry, adding AI technologies to work processes has made a lot of employees nervous. There is fear that automation is taking over and that robots will eventually push out the human workforce. To quell these fears, it’s the responsibility of business decision makers to instead nurture the relationship between humans and AI/ML technologies and show how technology can help make the worker more productive and decrease burnout.

Read article

Vision and Visibility: The Intersection Between the Adversary and Defender

June 9, 2021

SC Magazine

If adversaries were attacking the Microsoft Exchange servers at your company, could your team detect and block it? Today’s columnist, Tim Wade of Vectra AI, offers strategies for improving visibility so you can.

Read article

The Cybersecurity Outlook for 2021 and Beyond

June 4, 2021

Tech News World

Cyberattacks in the first half of 2021 have escalated globally to affect virtually every industry. Earlier this year TechNewsWorld spoke with cybersecurity experts about the expanding threat landscape, imminent threats, and what can be done to counter the ongoing offensives against the IT systems of companies, organizations, and government agencies.

Read article

White House Pushes Private Sector to Address Ransomware

June 4, 2021

Security Boulevard

The White House put the private sector on notice Thursday, June 3, 2021, demanding that organizations bolster security to meet increasingly aggressive and disruptive cybersecurity threats and urged them to “immediately convene their leadership teams” to “review corporate security posture and business continuity plans.”

Read article

First Gas, Now Meat: Latest Cybersecurity Attack Shows Criminals Are Expanding Their Scope

June 3, 2021

Tech Republic

The good news from the JBS Foods ransomware attack is that it seems to have followed one of the basic tenets of cybersecurity — make back-ups. The bad news is that cybercriminals have expanded their scope beyond stealing business data to sabotaging consumer supply chains.

Read article

93% of Fraud Attacks Occur Online

June 3, 2021

Security Magazine

Feedzai has announced its Quarterly Financial Crime Report, an analysis of over 12 billion global banking transactions from January – March 2021. The report identifies trends in spending and in fraud attempts to show that this past quarter, as consumer activities increased, fraudsters attempted to hide their fraudulent transactions in legitimate banking.

Read article

White House Urges US Companies to Take Ransomware Seriously

June 3, 2021

Tech Republic

Following recent cyberattacks against key operations in the U.S., the White House is pushing companies to take ransomware seriously and beef up their defenses against it.

Read article