Yesterday was a major milestone in the evolution of the Web. The World Wide Web Consortium (W3C) announced it was overruling the objections of Apple, Google, and Mozilla and approving W3C Decentralized Identifiers (DIDs) 1.0 as a W3C Recommendati…
Tag: Identity & Access
Europe, Global Security News, North America
Inching Toward Defend Forward
by Luke Wilson •
The increase in cyberattacks—and the increase in the cost of cyberattacks—sends a clear signal: Something about the cybersecurity industry needs to change. We live in a world where malicious cyberattack campaigns are persistent and relentless. Even as…
Europe, Global Security News, North America
The Different Types of Password Attacks: An Overview
by HYPR Team •
Credential attacks have become the main focus of cybersecurity teams and attackers alike. Microsoft has found that the volume of password attacks doubled in the 12 months leading up to May 2022, while Verizon’s authoritative Data Breach Investiga…
Global Security News, Vulnerabilities
Oak9 Lands $8 Million in New Venture Investment
by SecurityWeek News •
Chicago-based Infrastructure-as-Code (IaC) startup oak9 has attracted new interest from venture capitalists with Cisco Investments and Morgan Stanley’s Next Level Fund joining a new $8 million funding round.
read more
Global Security News, Vulnerabilities
North Korea Lazarus Hackers Blamed for $100 Million Horizon Bridge Heist
by Ryan Naraine •
The infamous North Korean Lazarus hacking group is the prime suspect in the $100 million hack of Harmony’s Horizon Bridge, according to new data and research from blockchain analytics firm Elliptic.
read more
Global Security News
Token Raises $13 Million for Its Biometric Authentication Ring
by Ionut Arghire •
Wearable authentication solutions provider Token this week announced that it has raised $13 million in Series B funding. To date, the company has raised $22.9 million.
Led by Grand Oaks Capital, the investment round will allow Token to accelerate produ…
Global Security News
Securing the Metaverse and Web3
by Kevin Townsend •
read more
Europe, Global Security News, North America
Adopting a Multifaceted Security Approach
by John Moschella •
Over the past decade, terms like malware and ransomware have increasingly entered into the public vernacular, especially as they relate to highly publicized, high-profile cybersecurity attacks. Most recently, the Biden administration issued a dire war…
Global Security News
CISA Calls for Expedited Adoption of Modern Authentication Ahead of Deadline
by Ionut Arghire •
The US Cybersecurity and Infrastructure Security Agency (CISA) is urging federal agencies and private organizations to switch to Modern Auth in Exchange Online before October 1, 2022.
read more
Global Security News, Vulnerabilities
Normalyze Announces $22 Million for DSPM Technology
by Ryan Naraine •
Bay Area startup Normalyze on Monday announced a $22 million in Series A funding as venture capital investors rush to place bets on the newly coined Data Security Posture Management (DSPM) space.
read more
Europe, Global Security News, North America
Cerby Emerges From Stealth to Transform Application Security
by Michael Vizard •
Cerby this week emerged from stealth to unveil a security platform that allows end users to enroll their preferred applications rather than being limited to a set of applications that were pre-approved by an IT organization. Fresh from raising $12 mil…
Europe, Global Security News, North America, Vulnerabilities
Russian Hackers Declare War on Lithuania — Killnet DDoS Panic
by Richi Jennings •
NATO member Lithuania is under attack from Russian hacking group Killnet. It raises serious concerns over Russia’s use of cyber warfare against NATO states.
The post Russian Hackers Declare War on Lithuania — Killnet DDoS Panic appeared first on Secur…
Europe, Global Security News, North America
JumpCloud HRIS — How JumpCloud Makes it Happen
by Brenna Lee •
Learn more about how JumpCloud’s pre-built HR integrations, and how the open HRIS integration works with all popular HR platforms.
The post JumpCloud HRIS — How JumpCloud Makes it Happen appeared first on JumpCloud.
The post JumpCloud HRIS — How JumpCl…
Europe, Global Security News, North America
When Security Locks You Out of Everything
by Bruce Schneier •
Thought experiment story of someone of someone who lost everything in a house fire, and now can’t log into anything:
But to get into my cloud, I need my password and 2FA. And even if I could convince the cloud provider to bypass that and let me in, th…
Europe, Global Security News, North America
ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo
by Richi Jennings •
We could soon have a federal GDPR. But the American Data Privacy and Protection Act wasn’t the only privacy related issue on Capitol Hill last week.
The post ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo appeared first on Security Boul…
Europe, Global Security News, North America
Ask the CEO: Dynamically Speaking live Q&A highlights – Part 1
by Kelly O'Dwyer-Manuel •
In a recent episode of our Dynamically Speaking insight series, we conducted a live Q&A on our YouTube channel with Axiomatics CEO Jim Barkdoll, answering questions from viewers. This is part one of a two-part article featuring highlights from that…
Europe, Global Security News, North America
Zero Trust takes center stage at EIC 2022
by Madhur Bhargava •
Considering the continued rise in cyberattacks and increasing regulations for data protection and information security, Zero Trust as a foundational…
The post Zero Trust takes center stage at EIC 2022 appeared first on Entrust Blog.
The post Zero Tru…
Europe, Global Security News, North America
Elevating Privileges with Authentication Coercion Using DFSCoerce
by emmaline •
Background In our previous blog post, we talked about the recently-published DFSCoerce utility which is useful for forcing NTLM or Kerberos authentication by interacting with the Distributed File Service (DFS) over Remote Procedure Calls (RPC) on Windo…
Global Security News, Vulnerabilities
CrowdStrike: Ransomware Actor Caught Exploiting Mitel VOIP Zero-Day
by Ryan Naraine •
Security researchers at CrowdStrike have stumbled upon ransomware actors deploying zero-day exploits against Mitel VOIP appliances sitting on the network perimeter.
read more
Global Security News, Vulnerabilities
Top Cryptographers Flag ‘Devastating’ Flaws in MEGA Cloud Storage
by Ryan Naraine •
Cryptographers at Swiss university ETH Zurich have found at least five exploitable security flaws in the privacy-themed MEGA cloud storage service and warned that the issues could lead to “devastating attacks on the confidentiality and integrity of use…
Europe, Global Security News, North America
JumpCloud Named Top-Ranking Software Provider in G2 Summer 2022 Reports
by Ashley Gwilliam •
It’s that time again — where the JumpCloud Directory Platform crushes it in G2’s Seasonal Reports. Like DJ Khaled, it seems “all we do is win.”
The post JumpCloud Named Top-Ranking Software Provider in G2 Summer 2022 Reports appeared first on JumpClou…
Global Security News, Vulnerabilities
Aqua Security Ships Open-Source Tool for Auditing Software Supply Chain
by Ryan Naraine •
Cloud security startup Aqua Security has partnered with the Center for Internet Security (CIS) to create guidelines for software supply chain security and followed up by shipping an open-source auditing tool to ensure compliance with the new benchmark….
Europe, Global Security News, North America
Passwordless MFA Goes Mainstream
by Michael Rothschild, VP of Product Marketing, HYPR •
Apple made the announcement that it’s “killing the password” when it comes to authentication. This is after the previous announcement in May where tech giants including Apple, Google and Microsoft announced that each is committed to expanded supp…
Europe, Global Security News, North America, Vulnerabilities
Hacker Paige Thompson Could Face 45 Years in Prison — ‘Suicide by Law Enforcement’
by Richi Jennings •
Capital One hacker Paige A. Thompson has been found guilty. But it has to be said that Capital One’s security design was absolutely awful.
The post Hacker Paige Thompson Could Face 45 Years in Prison — ‘Suicide by Law Enforcement’ appeared first on S…
Global Security News, Vulnerabilities
RevealSecurity Raises $23M for Application Detection and Response
by Ryan Naraine •
RevealSecurity, an Israeli data security startup building technology to thwart malicious insider threats, on Tuesday announced the closing of a $23 million funding round led by SYN Ventures.
In addition to SYN Ventures, Hanaco Ventures, SilverTech Vent…
Europe, Global Security News, North America, Vulnerabilities
Examining the Modern Attack Surface: Quantifying the Risks to Individuals and the Enterprise
by Evan •
The attack surface has expanded. The soft-underbelly of enterprise security is now personal digital lives – the digital privacy, personal devices, and home networks of executives, Board Members, and high-value employees with access to and influence ov…
Europe, Global Security News, North America
Money20/20: Talking digital identity and the rise of embedded finance
by Avast Blog •
When I first attended Money20/20, the conference’s name was a nod towards a vision of financial services in a future year. Ironically, when the year 2020 finally arrived, the conference organizers were unable to continue their guidance – in that …
Europe, Global Security News, North America, Vulnerabilities
HIPAA FAIL: ~33% of Hospital Websites Send PII to Facebook
by Richi Jennings •
A study shows many U.S. hospitals are leaking personal information to Facebook. Experts say it’s a HIPAA violation.
The post HIPAA FAIL: ~33% of Hospital Websites Send PII to Facebook appeared first on Security Boulevard.
Europe, Global Security News, North America
eIDAS 2.0 Amendments | Avast
by Avast Blog •
Avast’s views and opinion on the Draft Report on the proposal for a regulation of the European Parliament and of the Council amending Regulation (EU) No 910/2014 as regards establishing a framework for a European Digital Identity. Published by th…
Europe, Global Security News, North America
Survey: Maintaining Cybersecurity Balance is a Challenge
by Michael Vizard •
A survey of 1,007 IT decision-makers at small-to-medium enterprises (SMEs) found two-thirds of respondents (66%) conceded that adding security measures resulted in more cumbersome user experiences. The survey polled SMEs in the U.S. and United Kingdom…
Global Security News, Vulnerabilities
‘MaliBot’ Android Malware Steals Financial, Personal Information
by Ionut Arghire •
Researchers at F5 Labs have nabbed a new Android malware family capable of exfiltrating financial and personal information after taking control of infected devices.
read more
Global Security News, Vulnerabilities
Volexity Blames ‘DriftingCloud’ APT For Sophos Firewall Zero-Day
by Ryan Naraine •
Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors and launch man-in-the-middle attacks.
read more
Europe, Global Security News, North America
Koverse Unveils Zero-Trust Platform for Managing Data
by Michael Vizard •
Koverse, Inc., a unit of SAIC, has updated its software-as-a-service (SaaS) platform this week to provide customers with a zero-trust approach to managing data. Version 4.0 of the Koverse Data Platform (KDP) adds a set of granular controls that limit …
Global Security News, Vulnerabilities
GreyNoise Attracts Major Investor Interest
by Ryan Naraine •
GreyNoise Intelligence, a startup competing in the crowded threat-intelligence space, has deposited $15 million in a new round of venture capital funding led by Radian Capital.
read more
Global Security News, Vulnerabilities
GreyNoise Attracts Major Investor Interest
by Ryan Naraine •
GreyNoise Intelligence, a startup competing in the crowded threat-intelligence space, has deposited $15 million in a new round of venture capital funding led by Radian Capital.
read more
Europe, Global Security News, North America
BlackBerry Set to Unfurl Zero-Trust Network Access Service
by Michael Vizard •
BlackBerry Ltd. next month will make available a zero-trust network access-as-service offering based on a gateway it hosts on its cloud platform. Alex Willis, vice president of global sales engineering and independent software vendors (ISVs), said the…
Global Security News, Vulnerabilities
Jit Banks Massive $38.5 Seed Round Funding
by Ryan Naraine •
Jit, an Israeli startup promising technology to help developers simplify security when deploying cloud apps, has banked an eye-opening $38.5 million in seed-stage funding.
The funding round was Boldstart Ventures. Venture capital outfit Insight Partner…
Europe, Global Security News, North America
Identity and Access: The Game is the Same, But Fiercer
by Gunnar Peterson •
Earlier this year, cybercriminals infiltrated authentication provider Okta’s systems. Okta is used by thousands of organizations around the world to manage access to their networks and applications. The threat actor gang, known as Lapsus$, gained acce…
Europe, Global Security News, North America
Identity and Access: The Game is the Same, But Fiercer
by Gunnar Peterson •
Earlier this year, cybercriminals infiltrated authentication provider Okta’s systems. Okta is used by thousands of organizations around the world to manage access to their networks and applications. The threat actor gang, known as Lapsus$, gained acce…
Global Security News, Vulnerabilities
Adobe Plugs 46 Security Flaws on Patch Tuesday
by Ryan Naraine •
Adobe’s security response team has pushed out a massive batch of patches to cover at least 46 vulnerabilities in a wide range of enterprise-facing software products.
As part of its scheduled Patch Tuesday release for June, Adobe warned of “critical” co…