Geek-Guy.com

Tag: Customers’

AI, Compliance, Europe, Global Security News, Network Security, Risk Management

IBM unveils tool to track sovereignty risks for cloud workloads

IBM has launched a tool designed to help customers assess cloud-sovereignty risks and meet regulatory compliance requirements.  The Sovereignty Risk Profile launch comes as digital sovereignty becomes a higher priority for organizations concerned about where data is stored and processed. According to an IBM survey, 93% of executives believe sovereignty needs to be part of…

Read more →

AI, Apps, Endpoint, Global Security News, Network Security, Risk Management

Why and how to migrate to a Transit Gateway-attached AWS Network Firewall

AWS Network Firewall now supports native attachment to AWS Transit Gateway. Customers commonly use Transit Gateway to route traffic from Amazon Virtual Private Cloud (Amazon VPC) networks to a centralized inspection VPC (a VPC dedicated to hosting firewall endpoints for traffic inspection) where their network firewall endpoints are deployed. This centralized deployment model reduces the…

Read more →

AI, Global Security News

PwC: SAP AI Strategy Shifts Toward Enterprise Execution

SAP’s latest AI announcements at Sapphire are landing as enterprise customers move beyond experimentation and begin demanding measurable returns, stronger governance, and scalable operational outcomes from AI investments. Patrick Pugh, global and U.S. alliances leader at PwC, told Channel Insider that the event reflected a broader shift in the SAP market: enterprises are increasingly embedding…

Read more →

AI, Global Security News, Government & Policy, Risk Management

Microsoft, EY to spend $1 billion on helping customers buy agentic AI

Microsoft and EY will spend $1 billion on helping their customers adopt AI over the next five years. The billion will support assisting clients with pioneering AI projects and capability building, said EY’s global Microsoft alliance leader, Paul Clark. Clients will be able to access those resources based on their specific needs, he said. “We’re…

Read more →

AI, Compliance, Cybersecurity, Endpoint, Global Security News, Network Security, Risk Management

AWS Security Hub Extended: Why enterprise security products should sell themselves

Our largest security services customers started the same way every customer does – with a click. They enabled Amazon GuardDuty, Amazon Inspector, AWS WAF, and AWS Security Hub, experienced the benefits in real time, and evaluated with transparent pay-as-you-go pricing. No RFP. No six-month evaluation. No multi-year commitment up front. Our field teams played a…

Read more →

AI, Cloud Security, Compliance, Cybersecurity, Global Security News, Risk Management

CIRT insights: How to help prevent unauthorized account removals from AWS Organizations

The AWS Customer Incident Response Team works with customers to help them recover from active security incidents. As part of this work, the team often uncovers new or trending tactics used by various threat actors that take advantage of specific customer configurations and designs. Understanding these tactics can help inform your architecture decisions, improve your…

Read more →

AI, APAC, Cloud Security, Compliance, Europe, Global Security News, Risk Management

Introducing the updated AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption

The financial services industry (FSI) is using AI to transform how financial institutions serve their customers. AI solutions can help proactively manage portfolios, automatically refinance mortgages when rates decrease, and negotiate insurance premiums for customers. However, this adoption brings new governance, risk, and compliance (GRC) considerations that organizations need to address. To help FSI customers…

Read more →

AI, Global Security News, Network Security

GTT Channel Exec on 2026 Platform Strategy & Market Trends

GTT says growing AI and security demands are pushing enterprise customers to seek simpler technology strategies and closer partner relationships.  Sara Seegers, GTT’s channel chief, spoke with Channel Insider about the company’s platform-based approach to technology and how channel partners remain a core face of GTT’s growth strategy. GTT continues to serve partners seeking simplicity …

Read more →

AI, Data Breaches, Europe, Exploits, Global Security News, Network Security

Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident

Nearly 200,000 Zara customers were exposed in a third-party breach linked to ShinyHunters, revealing emails, purchase history, and support data. Personal data belonging to nearly 197,000 Zara customers has been compromised following a cyberattack on a former technology provider used by Inditex, the Spanish fashion giant behind some of the world’s most recognized retail brands…

Read more →

AI, china, Cybersecurity, Endpoint, Europe, Exploits, Global Security News, Government & Policy, Network Security, Risk Management

Ivanti customers confront yet another actively exploited zero-day

Attackers are hitting Ivanti customers yet again — circling back to a common target and consistently susceptible vendor in the network edge space — by exploiting a zero-day vulnerability in one of the company’s most besieged products.  Ivanti warned customers that attackers have successfully exploited CVE-2026-6973, an improper input validation defect in Ivanti Endpoint Manager…

Read more →

AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security

Critical Palo Alto Networks software bug hits exposed firewalls

Palo Alto Networks is warning customers about a critical buffer overflow vulnerability affecting its PAN-OS user-ID authentication portal that is already being exploited in the wild. The flaw allows attackers to execute arbitrary code with root privileges on exposed firewalls, the company said in a security advisory. PAN-OS is the software that runs all Palo…

Read more →

AI, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management

Vercel attack fallout expands to more customers and third-party systems

Vercel said the fallout from an attack on its internal systems hit more customers than previously known, as ongoing analysis uncovered additional evidence of compromise.  The company, which makes tools and hosts cloud infrastructure for developers, maintains a “small number” of accounts were impacted, but it has yet to share a number or range of…

Read more →

AI, Apps, Data Breaches, Exploits, Global Security News, malware, Risk Management

Vercel’s security breach started with malware disguised as Roblox cheats

Vercel customers are at risk of compromise after an attacker hopped through multiple internal systems to steal credentials and other sensitive data, the company said in a security bulletin Sunday.  The attack, which didn’t originate at Vercel, showcases the pitfalls of interconnected cloud applications and SaaS integrations with overly privileged permissions.  An attacker traversed third-party…

Read more →

AI, Apps, Cybersecurity, Global Security News, Risk Management

A framework for securely collecting forensic artifacts into S3 buckets

When customers experience a security incident, they need to acquire forensic artifacts to identify root cause, extract indicators of compromise (IoCs), and validate remediation efforts. NIST 800-86, Guide to Integrating Forensic Techniques into Incident Response, defines digital forensics as a process comprised of four basic phases: collection, examination, analysis, and reporting. This blog post focuses…

Read more →

AI, Compliance, Cybersecurity, Exploits, Funding, Global Security News, Government & Policy, Network Security, Risk Management

Cisco’s latest vulnerability spree has a more troubling pattern underneath

Cisco customers have confronted a flood of actively exploited vulnerabilities affecting the vendor’s network edge software since late February, and researchers say that five of the nine vulnerabilities Cisco disclosed in its firewalls and SD-WAN systems over the past three weeks have already been exploited in the wild.  Attackers exploited a pair of these defects…

Read more →

AI, Data Breaches, Global Security News

ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites

Salesforce customers have, once again, been targeted by the ShinyHunters group – or, at least, it’s what the group claims. Attackers modified and abused benign tool On Saturday, Saleforce confirmed that its security team has identified an attack campaign by unnamed malicious actors looking to access customers’ data. The attackers are not leveraging a vulnerability…

Read more →

AI, Apps, Data Breaches, Endpoint, Exploits, Global Security News, Risk Management

Overly permissive ‘guest’ settings put Salesforce customers at risk

Salesforce is urging its customers to review their Experience Cloud ‘guest’ configurations as cybercrime group ShinyHunters claims a new campaign involving data theft and extortion tied to exposed Salesforce environments. The group recently posted screenshots on its leak site claiming breaches of “several hundreds” of organizations, including around 400 websites and roughly 100 “high profile…

Read more →

AI, Cloud Security, Cybersecurity, Endpoint, Global Security News, Network Security, Risk Management

AWS Security Hub is expanding to unify security operations across multicloud environments

After talking with many customers, one thing is clear: the security challenge has not gotten easier. Enterprises today operate across a complex mix of environments, including on-premises infrastructure, private data centers, and multiple clouds, often with tools that were never designed to work together. The result is enterprise security teams spend more time managing tools…

Read more →

AI, Apps, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management

Cisco SD-WAN Manager Vulnerabilities Actively Exploited

Cisco is warning customers that attackers are actively exploiting multiple vulnerabilities affecting its Catalyst SD-WAN Manager platform. The software serves as a centralized management console used to monitor and control large distributed SD-WAN deployments.  These vulnerabilities “… could allow an attacker to access an affected system, elevate privileges to root, gain access to sensitive information,…

Read more →

AI, Global Security News, Network Security, Risk Management

Tufin’s AI-powered tools simplify network security operations

Tufin announced its latest AI-powered innovations, enabling customers to utilize its Unified Control Plane to accelerate issue resolution, reduce operational friction, and limit risk – even as network complexity continues to grow. Security teams face pressure to move faster while maintaining a secure network environment. The complexity of the network makes it harder and harder…

Read more →

AI, Compliance, Data Breaches, Endpoint, Europe, Exploits, Global Security News, Network Security, Risk Management

Nearly 38 Million Impacted in ManoMano Third-Party Breach

European online DIY giant ManoMano is notifying roughly 38 million customers after threat actors compromised a third-party customer service provider, exposing personal data tied to user accounts and support interactions.  The incident, discovered in January 2026, underscores the persistent risk posed by supply chain and vendor-based breaches. “We can confirm that ManoMano has recently notified…

Read more →

AI, Endpoint, Global Security News, Network Security

AWS Security Hub Extended brings enterprise security under one roof

AWS Security Hub Extended is a plan within Security Hub that simplifies how customers procure, deploy, and integrate a full-stack enterprise security solution across endpoint, identity, email, network, data, browser, cloud, AI, and security operations. The plan allows customers to expand their security coverage beyond AWS services and manage broader enterprise protection through a curated…

Read more →

AI, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management

Ad Tech Firm Optimizely Investigates Vishing Incident

Ad tech firm Optimizely is notifying customers after a voice phishing attack led to unauthorized access to some of its internal systems.  The company says threat actors obtained limited business contact information but did not access sensitive customer data or disrupt operations. “The threat actor gained access to Optimizely’s systems through a sophisticated voice-phishing attack,…

Read more →

AI, Apps, Data Breaches, Global Security News, Network Security, Risk Management

PayPal Flaw Exposed Sensitive Data in Lending App for Six Months

PayPal is notifying customers after a software error in its PayPal Working Capital (PPWC) loan application exposed certain personal information, including social security numbers, for nearly six months in 2025.  Although the company said its core systems were not breached, the issue resulted in potential unauthorized access to sensitive customer data. “Upon learning about this…

Read more →

AI, Compliance, Cybersecurity, Global Security News, Government & Policy, privacy, Risk Management

PayPal launches latest struggle to get rid of SMS for MFA

When PayPal started emailing customers this month that it was backing off unencrypted SMS for multifactor authentication (MFA) at login, it came with the typical approach-avoidance asterisk. The financial services giant signaled that it was turning the page on the much-maligned authentication method while simultaneously offering no timeline and assuring customers SMS wouldn’t entirely go…

Read more →

AI, Apps, Cloud Security, Compliance, Endpoint, Exploits, Global Security News, Network Security, Risk Management

Building an AI-powered defense-in-depth security architecture for serverless microservices

Enterprise customers face an unprecedented security landscape where sophisticated cyber threats use artificial intelligence to identify vulnerabilities, automate attacks, and evade detection at machine speed. Traditional perimeter-based security models are insufficient when adversaries can analyze millions of attack vectors in seconds and exploit zero-day vulnerabilities before patches are available. The distributed nature of serverless architectures…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Government & Policy, Network Security, Risk Management

Odido CRM Data Breach Exposes 6.2M Customer Records

A major Dutch telecom provider is warning customers after a cyberattack exposed personal data tied to millions of accounts.  Odido Telecom confirmed that attackers gained unauthorized access to its customer database, impacting roughly 6.2 million customers.  “This involved personal data from a customer contact system used by Odido. No passwords, call logs, or billing information…

Read more →

AI, ANYRUN, Cybersecurity, Endpoint, Global Security News, malware, Risk Management

Fortune 500 Tech Enterprise Speeds up Triage and Response with ANY.RUN’s Solutions

In enterprise SaaS, unclear security decisions carry real cost. False positives disrupt customers, while missed threats expose the business.  A Fortune 500 cloud provider addressed this risk by embedding ANY.RUN into SOC investigations, giving analysts the behavioral evidence needed to reduce escalations, improve triage confidence, and make proportionate response decisions at scale.  Company Context and Security Scope  The organization is a…

Read more →

AI, Data Breaches, Global Security News, Industry News, Risk Management, SpecterOps

BloodHound Scentry helps organizations reduce identity risk and close attack paths

SpecterOps has announced BloodHound Scentry, a new service designed to help customers accelerate their APM practice and reduce identity risk. BloodHound Scentry combines the power of BloodHound Enterprise with SpecterOps tradecraft experts and practitioners to provide customers with tailored guidance for attack path remediation, advanced analysis for emerging threats, and privilege zone design to protect…

Read more →

AI, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Endpoint, Europe, Exploits, Global Security News, Government & Policy, ivanti, known exploited vulnerabilities (KEV), network edge devices, Threats

Fallout from latest Ivanti zero-days spreads to nearly 100 victims

Ivanti customers, including major government agencies, face mounting pressure as attackers expand their scope of targets to exploit a pair of vulnerabilities the vendor disclosed late January after in-the-wild attacks already occurred. The Netherlands’ Dutch Data Protection Authority and the Council for the Judiciary confirmed both agencies were impacted by attacks linked to the Ivanti…

Read more →

AI, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Endpoint, Europe, Exploits, Global Security News, Government & Policy, ivanti, known exploited vulnerabilities (KEV), network edge devices, Threats

Fallout from latest Ivanti zero-days spreads to nearly 100 victims

Ivanti customers, including major government agencies, face mounting pressure as attackers expand their scope of targets to exploit a pair of vulnerabilities the vendor disclosed late January after in-the-wild attacks already occurred. The Netherlands’ Dutch Data Protection Authority and the Council for the Judiciary confirmed both agencies were impacted by attacks linked to the Ivanti…

Read more →

AI, Apps, AWS Security Hub, Cybersecurity, Global Security News, Intermediate (200), Network Security, Security, Identity, & Compliance

File integrity monitoring with AWS Systems Manager and Amazon Security Lake 

Customers need solutions to track inventory data such as files and software across Amazon Elastic Compute Cloud (Amazon EC2) instances, detect unauthorized changes, and integrate alerts into their existing security workflows. In this blog post, I walk you through a highly scalable serverless file integrity monitoring solution. It uses AWS Systems Manager Inventory to collect…

Read more →

AI, Apps, Best Practices, Cloud Security, Compliance, Cybersecurity, Exploits, Foundational (100), Global Security News, malware, Network Security, Security, Identity, & Compliance

What AWS Security learned from responding to recent npm supply chain threat campaigns

AWS incident response operates around the clock to protect our customers, the AWS Cloud, and the AWS global infrastructure. Through that work, we learn from a variety of issues and spot unique trends. Over the past few months, high-profile software supply chain threat campaigns involving third party software repositories have highlighted the importance of protecting…

Read more →

AI, Global Security News, Guides, Marketing

What is Strategic Marketing?

In this ever-changing economy, developing products and expecting customers to buy them is not enough. You must have a strategy to attract the right audience by creating unique value and using the right communication channels. Your strategy is the key to creating an effective marketing plan and executing a successful marketing campaign. Before you jump […]

The post What is Strategic Marketing? appeared first on Small Business Computing.

Read more →

AI, Global Security News

What is Strategic Marketing?

In this ever-changing economy, developing products and expecting customers to buy them is not enough. You must have a strategy to attract the right audience by creating unique value and using the right communication channels. Your strategy is the key to creating an effective marketing plan and executing a successful marketing campaign. Before you jump…

Read more →