Security News > 2020 > March
SentryOne announces new editions of SQL Sentry, the company's top-rated database performance monitoring product, to help companies select the monitoring solution that best fits their needs. "With the new SQL Sentry editions, we offer best-in-class monitoring for any situation, whether it's an IT manager looking for no-fuss monitoring for a few databases, DBAs looking for a solution that can accommodate hybrid or cloud monitoring, or an enterprise data team that needs highly scalable monitoring to support high-volume compute environments."
Infoblox, the leader in Secure Cloud-Managed Network Services, announced new updates to its Network Identity Operating System platform, adding the ability to monitor NIOS via the cloud-based BloxOne platform, as well as improving performance and simplifying network monitoring for NIOS users. This latest update enables organizations to deploy robust, manageable and cost-effective DNS, DHCP and IP address management services to networks of any size, while providing a bridge to innovative, cloud-based networking services and IT management solutions.
The fate of the man accused of leaking top-secret CIA hacking tools - software that gave the American spy agency access to targets' phones and computer across the world - is now in the hands of a jury. Joshua Schulte stands accused of stealing the highly valuable materials directly from the CIA's innermost sanctum and slipping them to WikiLeaks to share with the rest of the planet.
With infinite security posture combinations and use cases, Swimlane's SOAR solution was built from the ground up to transform an analyst's critical day-to-day responsibilities from insurmountable to exciting and effective. "Organizations are coming to the realization that staffing up to solve for the overwhelming amount of security and intelligence data they see daily is an unsustainable path. Applying automation broadly across every security use case is the only way organizations will be able to battle technology sprawl and protect their rapidly expanding attack surface," says Cody Cornell, CEO of Swimlane and patent co-inventor.
Appsian, the leader in ERP data security, announced the SAP integration certification of their data security and compliance platform for SAP ERP Central Component and SAP S/4HANA. By integrating attribute-based access controls, fine-grained data security solutions and real-time user behavior analytics, Appsian enables SAP customers to fill many critical governance, risk, and compliance gaps that exist in ERP applications. "When it comes to ERP data access, context is everything," said Piyush Pandey, CEO at Appsian.
Jazz Networks, an award-winning insider threat security company, announced Joel Brunson has joined as CEO of Federal business. Brunson brings world-class leadership in business growth and proven expertise in the federal government sector.
US officials on Wednesday stepped up warnings about the potential security risks from the fast-growing, Chinese-owned TikTok as a lawmaker unveiled legislation to ban the social media app from government devices. Senator Josh Hawley, who convened the hearing, said he was introducing a bill to ban TikTok from all US government devices, calling it "a major security risk for the American people."
Behavioral biometrics can play an important role in thwarting ever more sophisticated payment fraud schemes, says Robert Capps of Mastercard, who provides a fraud-fighting update. In a video interview with Information Security Media Group at RSA 2020.
Cisco has released patches to address more than a dozen vulnerabilities across various products, including two code execution bugs in Webex Player that could be exploited remotely. Tracked as CVE-2020-3127 and CVE-2020-3128 and rated high severity, the issues reside in the insufficient validation of elements within a Webex recording stored as ARF or WRF. To exploit the bugs, an attacker needs to send a malicious ARF or WRF file and trick the victim into opening the file the local system, which could result in arbitrary code being executed with the privileges of the targeted user.
How confident are you with the security of your WordPress deployments? If you're not 100% confident, you need to make use of the wpscan tool. Considering how prevalent the open source WordPress blogging platform installations are, chances are good that you have a deployment or two to manage.