Live Webinar | Considerations for Building Your Cybersecurity Strategy in 2021 and BeyondWebinar.
Thank you for registering with ISMG
Complete your profile and stay up to date
Similar Posts
RSA CEO Rohit Ghai on the New RSA
Governance & Risk Management , Identity & Access Management , Identity Governance & Administration Insights on RSA Conference, Secure Identity and XDR’s Emerging Role Tom Field (SecurityEditor) • May 17, 2021 Rohit Ghai, RSA Group CEO The past year has been a milestone one for RSA and…
New Microsoft Exchange vulnerabilities require urgent patching: ACSC – Security
New critical remote code execution vulnerabilities in Microsoft’s enterprise Exchange Server have been discovered, and the Australian Cyber Security Centre (ACSC) is urging users to apply the patches for them as soon as possible to prevent systems compromises. The vulnerabilities are easy to exploit, do not require any user interaction, and affect Exchange Server 2013,…
Vulnerability Management: Essential Components
Fraud Management & Cybercrime , Fraud Risk Management , Governance & Risk Management Steve Yurich, CISO of Penn National Insurance, on the Need for Frequent Scanning Suparna Goswami (gsuparna) • May 3, 2021 Steve Yurich, CISO at Penn National Insurance Effective vulnerability management requires more frequent scanning of infrastructure, says Steve…
Heimdal Security Blog | Accellion Data Breach Show Ties to Clop Ransomware and FIN11
On Monday, cybersecurity researchers connected a series of attacks targeting Accellion File Transfer Appliance (FTA) servers over the past two months to a data breach and extortion campaign orchestrated by the UNC2546 cybercrime group. Threat actors targeted up to 100 companies using Accellion’s FTA and stole sensitive files by combining multiple zero-day vulnerabilities and a…
EventBuilder Data Exposure Leaves Over 100,000 Users’ Personal Data Vulnerable
Over one million CSV/JSON files with personal information of event registrants using Microsoft Teams – including phone numbers and email addresses – have been exposed to potential cyber-criminals worldwide. Security company Clario Tech, in partnership with cybersecurity researcher Bob Diachenko, discovered the exposure within EventBuilder, a virtual events integration tool for Microsoft products. Details can…
Travis CI Flaw Exposed Secrets From Public Repositories
Access Management , DevSecOps , Identity & Access Management Critics Say Travis CI’s Security Bulletin is Insufficient Jeremy Kirk (jeremy_kirk) • September 15, 2021 Travis CI, a Berlin-based continuous integration vendor, has patched a serious flaw that exposed signing keys, API keys and access credentials, putting thousands of organizations potentially at risk. See…