Security News > 2020 > April

Secrets are increasingly used by applications and services as a bootstrapping mechanism for initiation and continuity in operations. The question is whether your application secrets are really a secret or simply a hard-to-reach set of variables.

U.S. small businesses report an increase in suspicious business emails over the past year, a cyber survey by HSB shows, and employees are taking the bait as they fall for phishing schemes and transfer tens of thousands of dollars in company funds into fraudulent accounts. Over half of business executives said suspicious emails had increased in the past year.

Security researchers are sounding the alarm over newly discovered vulnerabilities in some popular online learning management system plugins that various organizations and universities use to offer online training courses through their WordPress-based websites. According to the Check Point Research Team, the three WordPress plugins in question - LearnPress, LearnDash, and LifterLMS - have security flaws that could permit students, as well as unauthenticated users, to pilfer personal information of registered users and even attain teacher privileges.

Security researchers are sounding the alarm over newly discovered vulnerabilities in some popular online learning management system plugins that various organizations and universities use to offer online training courses through their WordPress-based websites. According to the Check Point Research Team, the three WordPress plugins in question - LearnPress, LearnDash, and LifterLMS - have security flaws that could permit students, as well as unauthenticated users, to pilfer personal information of registered users and even attain teacher privileges.

Surveying over 250 worldwide business executives and IT professionals from a diverse group of technical backgrounds, Denodo's cloud usage survey revealed that hybrid cloud configurations are the centre of all cloud deployments at 42 percent, followed by public and private clouds. The advantages of hybrid cloud and multi-cloud configurations according to respondents include the ability to diversify spend and skills, build resiliency, and cherry-pick features and capabilities depending on each cloud service provider's particular strengths, all while avoiding the dreaded vendor lock-in.

Cato Networks shared its increase in remote access usage post coronavirus outbreak. SDP is a new approach for delivering secure remote access to applications, whether on-premises or in the cloud.

Cato Networks shared its increase in remote access usage post coronavirus outbreak. SDP is a new approach for delivering secure remote access to applications, whether on-premises or in the cloud.

The proliferation of the IoT, the convergence of IT and OT, and customers' migration to the cloud at a faster pace are rapidly driving the global NAC market, according to Frost & Sullivan. The sector is estimated to increase by two-thirds, reaching $2.21 billion by 2024 from $1.35 billion in 2019, at a compound annual growth rate of 10.4%. With 60.2% market share, North America will continue to be the largest market for NAC until 2024; APAC is the fastest-growing region and its share of the global NAC market is estimated to increase from 9.9% in 2019 to 11.9% in 2024.

Guardsquare, the mobile application security platform, announced the launch of ThreatCast, a cloud-based mobile application threat intelligence expansion to its platform. ThreatCast delivers a single dashboard interface to threat intelligence from Guardsquare's cutting-edge products for layered mobile app security-DexGuard for Android and iXGuard for iOS. With a multi-layered approach to application protection and a mobile security console, ThreatCast provides all the tools needed to assess threats in real time and the intelligence to protect mobile applications against suspicious activities and malicious users.

Trilio, a leading provider of data protection for cloud-native environments, announced early access availability of its new platform for protecting Kubernetes container applications. TrilioVault for Kubernetes is a cloud-native, application-centric data protection platform that was designed from the ground-up to support the scale, performance and mobility requirements of Kubernetes containers across any private or public cloud environment.