September 1, 2021 Unsupported software, standard usernames and passwords, and one-factor authentication have been described by the U.S. Cybersecurity and Infrastructure Agency (CISA) as three of the most dangerous cybersecurity behaviors that all organizations should avoid. The use more...
August 31, 2021 Check Point Software Technologies has announced that it has acquired cybersecurity firm Avanan for an undisclosed amount. According to Dorit Dor, Chief Product Officer of Check Point, "More and more businesses are moving to cloud-email more...
August 31, 2021 Five malicious Docker container images were discovered on Docker Hub by Aqua Security's threat research arm, Nautilus, accounting for 120,000 pulls by unsuspecting users. Three of the images (thanhtudo, thieunutre and chanquaa) used a Python more...
August 31, 2021 The Securities and Exchange Commission announced that three broker-dealer and investment advisory firms will pay hundreds of thousands of dollars in penalties. Financial firm Cetera will pay $300,000, Cambridge Investment Research $250,000 and KMS Financial more...
August 31, 2021 Network-attached storage (NAS) maker QNAP is working on security updates to patch remote code execution and denial-of-service (DoS) vulnerabilities. The security vulnerabilities traced as CVE-2021-3711 and CVE-2021-3712 affect QNAP NAS devices running QTS, QuTS hero, more...
August 31, 2021 The details of a Microsoft Exchange Server vulnerability that allows hackers to steal email information have been disclosed. The vulnerability - "ProxyToken" - allows hackers to send emails without authentication. Instead, the attacker makes a more...
August 31, 2021 The US Cybersecurity and Infrastructure Security Agency (CISA) has added single-factor authentication (SFA) to a list of cybersecurity practices it advises against. CISA's Bad Practices catalog refers to practices that the federal agency has deemed more...
August 30, 2021 T-Mobile CEO Mike Sievert released a statement about the massive hack on the wireless carrier that exposed the sensitive information of millions of customers, apologizing for the leak and announced a partnership with Mandiant on more...
August 27, 2021 A recent Microsoft Exchange hack attributed to the Chinese hacking group Hafnium could be more than just an attempt to spy, according to some experts. Microsoft suffered a surge of cyberattacks and data breaches after more...
August 27, 2021 China's upcoming data protection law, which will enter into force on September 1, requires all companies in China to categorize the data they process into a series of classifications and governs how the data is more...
