4 ways to keep the cybersecurity conversation going after the crisis has passed
CISO Bill Brown knows how high-profile cybersecurity breaches like SolarWinds can raise alarm bells among executives and board members when they become headline news.
Similar Posts
Vladimir Putin refuses to guarantee Alexei Navalny will ever leave prison alive
Russian president Vladimir Putin has refused to guarantee that Alexei Navalny will ever leave prison alive, and warned that ‘nobody should be given special treatment’. Putin also said that the opposition leader’s continued detention was not his decision, and noted the poor state of medical care inside Russia‘s jails. The Russian’s comments came during a…
Data Breaches Tied to Ransomware: Look Harder
Breach Notification , Fraud Management & Cybercrime , Incident & Breach Response Australia Regulator Says Such Breaches Are Likely Underreported Jeremy Kirk (jeremy_kirk) • August 23, 2021 Australia’s data protection regulator says organizations hit by ransomware may be underreporting data breaches because they haven’t thoroughly figured out if data was taken. See Also:…
Microsoft Exchange Cyber Attack — What Do We Know So Far?
Microsoft on Friday warned of active attacks exploiting unpatched Exchange Servers carried out by multiple threat actors, as the hacking campaign is believed to have infected tens of thousands of businesses, government entities in the U.S., Asia, and Europe. The company said “it continues to see increased use of these vulnerabilities in attacks targeting unpatched…
CVE-2021-2329 – Alert Detail – Security Database
Executive Summary This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary Informations Name CVE-2021-2329 First vendor Publication 2021-07-21 Vendor Cve Last vendor Modification 2021-07-21 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA…
Exec Order Could Force Software Vendors to Disclose …
Enterprise Vulnerabilities From DHS/US-CERT’s National Vulnerability Database CVE-2020-19625PUBLISHED: 2021-03-26 Remote Code Execution Vulnerability in tests/support/stores/test_grid_filter.php in oria gridx 1.3, allows remote attackers to execute arbitrary code, via crafted value to the $query parameter. CVE-2020-19626PUBLISHED: 2021-03-26 Cross Site Scripting (XSS) vulnerability in craftcms 3.1.31, allows remote attackers to inject arbitrary web script or HTML, via /admin/settings/sites/new….
Researchers warn of unpatched Kaseya Unitrends backup vulnerabilities
Security researchers warn of three new zero-day vulnerabilities in the Kaseya Unitrends service and advise users not to expose the service to the Internet. Kaseya Unitrends is a cloud-based enterprise backup and disaster recovery solution that is offered as a stand-alone solution or as an add-on for the Kaseya VSA remote management platform. Last week,…