News Analyses
![A user reviews data and statistical models. [analytics / analysis / tracking / monitoring / logging]](https://images.idgesg.net/images/article/2020/08/user_reviews_data_tracking_monitoring_analytics_event_logging_analysis_threat_detection_by_laurence_dutton_gettyimages-1170687091_2400x1600-100855964-small.3x2.jpg?auto=webp&quality=85,70){kind=tracking}
Proficio launches detection and response service to tackle identity-based threats
MDR firm claims solution is the industry’s only vendor-agnostic open XDR solution that supports identity threat detection and response.
New Five Eyes alert warns of Russian threats targeting critical infrastructure
The alert provides detailed information on Russian government and state-sponsored cybercriminal groups as well as guidance for reducing risk.
Ransomware plagues finance sector as cyberattacks get more complex
Cybercriminals have evolved from hacking wire transfers to targeting market data, as ransomware continues to hit financial firms, says a new VMware report. Here's what to do about it.
Spyware was used against Catalan targets and UK prime minister and Foreign Office
Researchers at the Citizen Lab says dozens of officials' phones were compromised by spyware sold by NSO Group or Candiru.
Bitdefender enters native XDR market with new offering
GravityZone XDR promises to reduce attacker dwell time with robust detection, quick triage, and automated threat containment.
Why you should patch the latest critical Windows RPC vulnerability right now
CVE-2022-26809 can allow attackers to compromise networks without user intervention, making it the most dangerous vulnerability fixed by Microsoft's April 12 Patch Tuesday update.
Rare and dangerous Incontroller malware targets ICS operations
A coalition of U.S. government agencies, security researchers, and companies warn about this new malware that can gain complete access to ICS and SCADA systems.
Ballooning growth of digital identities exposing organizations to greater cybersecurity risk
New enterprise initiatives are driving up the number of human and digital identities, increasing security risks.
Ukraine energy facility hit by two waves of cyberattacks from Russia’s Sandworm group
Sandworm succeeded in planting a new version of the Industroyer malware to disrupt ICS infrastructure at multiple levels, but was thwarted from doing serious damage.
Serious flaws allow the hijacking of autonomous logistics robots used in hospitals
The now patched JekyllBot:5 vulnerabilities in Aethon TUG robots expose three communications interfaces, two APIs, and a websocket interface.
With AI RMF, NIST addresses artificial intelligence risks
The new framework could have wide-ranging implications for the private and public sectors. NIST is seeking comments on the current draft by April 29, 2022.
FBI active defense measure removes malware from privately owned firewalls
The action targeted devices infected by the Cyclops Blink malware, believed to have been developed by Russia's Sandworm group.
CrowdStrike and Mandiant form strategic partnership to protect organizations against cyber threats
Vendors say the partnership combines CrowdStrike’s Falcon platform with Mandiant’s breach investigation and response services offering tighter platform integrations, industry-leading intelligence, and shared expertise.
New cryptomining malware targets AWS Lambda
The malware, dubbed Denonia, is written in Go for easier deployment and uses AWS's own open-source Go libraries.
New PCI DSS v4.0 receives kudos for flexibility
Customization, multi-factor authentication are key features in PCI DSS v4.0 global payment benchmark.
![Digital bugs amid binary code. [security threats / malware / breach / hack / attack]](https://images.idgesg.net/images/article/2020/09/digital_bugs_amid_binary_code_security_threats_malware_breach_hack_attack_by_whatawin_gettyimages-1188254819_2400x1600-100858616-small.3x2.jpg?auto=webp&quality=85,70)
Zoom’s bug bounty ROI clear as program pays $1.8 million to fix over 400 bugs
The firm’s CISO reflects on bug bounty ROI and selling the concept to senior leadership.
New threat group underscores mounting concerns over Russian cyber threats
Crowdstrike says Ember Bear is likely responsible for the wiper attack against Ukrainian networks and that future Russian cyberattacks might target the West.
Spring4Shell patching is going slow but risk not comparable to Log4Shell
More tools to identify vulnerable applications and options to mitigate the risk from Spring4Shell are also now available.
U.S. State Department unveils new Bureau of Cyberspace and Digital Policy
The new Bureau could enhance the United States' ability to work effectively with other nations on cybersecurity matters.
Fortinet tightens integration of enterprise security, networking controls
Fortinet adds new security, SD-WAN, branch, and zero-trust capabilities to FortiOS software.
Most Popular
![A gavel rests on open law book. [law / regulation / compliance / legal liability]](https://images.idgesg.net/images/article/2020/09/gavel_mallett_rests_on_open_law_book_legal_liability_risk_regulations_compliance_by_andreypopov_gettyimages-1021544574_2400x1600-100860121-medium.3x2.jpg?auto=webp&quality=85,70)
BrandPosts
Learn more-
Sponsored by CrowdStrike
-
Sponsored by Netscout
-
Sponsored by Fortinet