Security News > 2020 > June

nCipher Security, an Entrust Datacard company, announces its support for new key import method for Azure Key Vault, allowing customers to generate and transfer encryption keys to Azure Key Vault using an on-premises or as a service nShield HSM, giving them complete control over both their keys and their data security. Azure Key Vault helps safeguard cryptographic keys and secrets that cloud applications and services use.

Security researcher Bhavuk Jain has landed a $100,000 payday after he reported a critical flaw in Apple's sign-in system that could be exploited to access countless accounts on sites from Dropbox and Spotify to Airbnb. The security hole affected all third-party apps that use the service - Apple's equivalent of the Facebook and Google sign-in services - and "Could have resulted in a full account takeover of user accounts on that third party application irrespective of a victim having a valid Apple ID or not."

Arc Publishing, the premier content management platform from The Washington Post, announces it has expanded its integration with industry-leading software from Akamai, Catchpoint and MuleSoft, greatly enhancing its capabilities for enterprise customers worldwide to ensure they have access to the best-in-class tools on the market. "Operational continuity, ease of use, and efficiency have never been more critical and it's during times like these that our partnerships truly set Arc apart, ensuring stability, performance and scale for our customers so they can continue pressing forward toward their goals," said Scot Gillespie, VP and GM of Arc Publishing.

International standards initiative oneM2M announced it has welcomed a range of new members as organizations around the world seek to accelerate the development of the Internet of Things market through greater interoperability. "2020 is shaping up to be a year when increased levels of collaboration between global organizations, institutions and companies really accelerate mass adoption of the IoT across a range of sectors," said oneM2M Steering Committee Chair, Enrico Scarrone.

CirrusHQ announced it has secured a £400,000 growth capital investment plus the appointment of Alastair Mills as the company's new Chairman. The investment round was led by Alastair Mills and Ronnie Smith.

Cygilant, provider of Cybersecurity-as-a-Service to mid-sized organizations, announced that Kevin Gannon has joined the Cygilant team as the company's new Vice President of Engineering. Based in the company's newly opened Belfast office and reporting directly to Cygilant's CEO, Kevin is responsible for leading the company's engineering efforts.

Cybersecurity researchers today disclosed details for a new vulnerability in VMware's Cloud Director platform that could potentially allow an attacker to gain access to sensitive information and control private clouds within an entire infrastructure. VMware Cloud Director is a popular deployment, automation, and management software that's used to operate and manage cloud resources, allowing businesses to data centers distributed across different geographical locations into virtual data centers.

Cybersecurity researchers today disclosed details for a new vulnerability in VMware's Cloud Director platform that could potentially allow an attacker to gain access to sensitive information and control private clouds within an entire infrastructure. VMware Cloud Director is a popular deployment, automation, and management software that's used to operate and manage cloud resources, allowing businesses to data centers distributed across different geographical locations into virtual data centers.

Malwarebytes announced that it has hired Dariusz Paczuski as senior vice president of marketing, to help scale the company's consumer and enterprise businesses. Paczuski joins Malwarebytes from Verizon Media where he served as vice president of consumer growth marketing, leading global brand, creative, product, and performance marketing for their $7.5B advertising, media, commerce, and subscription businesses - serving nearly 900 million people around the world.

In a survey of 1,000 people from the US and 1,000 from the UK, Tessian researchers found that 48% are less likely to follow safe data practices when working from home and 84% of IT leaders surveyed said data loss prevention is more challenging when employees are working from home. More than 90% of IT leaders trust their staff to follow best security practices when working from home yet 52% of employees believe they can get away with riskier behavior when telecommuting, creating a dangerous situation for companies in sensitive industries.