Security News > 2020 > August

A team of researchers from the Georgia Institute of Technology has demonstrated how, in theory, a malicious actor could manipulate the energy market using a botnet powered by high-wattage IoT devices. The Georgia Tech researchers say a threat actor could manipulate the electricity market the same way financial markets can be manipulated: generate an event that causes prices to drop or rise, and buy when the price is low and sell when the price is high.

New research has found that 42% of organizations are taking disciplinary action against staff who make cybersecurity errors. Dr John Blythe said: "People fall for phishing attacks and other cybersecurity mistakes because they're human and because they have been trained to click links. Bad habits are difficult to shake, especially when today's phishing attacks can be highly convincing."

In 1965, Gordon Moore published a short informal paper, Cramming more components onto integrated circuits. Based on not much more but these few data points and his knowledge of silicon chip development - he was head of R&D at Fairchild Semiconductors, the company that was to seed Silicon Valley - he said that for the next decade, component counts by area could double every year.

Radiflow launched CIARA, a new platform offering Cyber Industrial Automated Risk Analysis. CIARA is a fully automated tool for assets data collection, data-driven analysis and transparent risk metrics calculation including risk scoring per zone and business process based on business impact.

Farsight Security introduced DNSDB 2.0, which enables security professionals to identify and map domain names and IP addresses associated with bad actors or used in malicious infrastructures, brand infringement campaigns, phishing schemes, ransomware and other cybercrime. With more than 100 billion DNS observations, DNSDB is the industry standard in historical passive DNS. Traditionally, DNSDB has offered only exact matches, or full-label front or back wildcard searches, such as "*.example.com" or "Example.*" DNSDB 2.0 adds new flexible search functions so users can better find - and filter out - only the data they need.

Unisys has enhanced CloudForte, its integrated, multi-cloud and application optimization platform. "Unisys offers a comprehensive, vendor-agnostic multi- and hybrid-cloud review to streamline their cloud assessment process and understand exactly where they can make informed infrastructure decisions as well as easily improve cloud security and application-migration processes."

Polyrize announced its SaaS-based security platform. "The push to remote work has driven home the fact that identity is the new perimeter, and Polyrize is proud to be the first solution to offer identity privileges and access security to solve for fragmentation across the cloud."

Netgear announced the availability of Insight Managed WiFi 6 AX1800 Access Points, WAX610 and WAX610Y, for an optimal WiFi experience in every business environment. This new WAX610 family brings next generation WiFi 6 performance to SMBs delivering up to 70% faster speed to each individual device than previous generation WiFi 51.

DigiCert Automation Gateway launches with integration into DigiCert CertCentral in Q4. This new automation approach is designed to accelerate the adoption of automated certificate issuance, renewal, reissuance and revocation by tackling some of the common concerns with existing offerings. Automation Gateway will provide organizations the confidence to widely deploy automation protocols within their company networks to provide greater agility.

Tanium has expanded its partnership with Google Cloud to help organizations accelerate the transformation to distributed business operations. "With Tanium and Google Cloud, customers don't have to make difficult tradeoffs between the quality, breadth, timeliness, or storage cost of their security telemetry," said Sunil Potti, General Manager and Vice President of Cloud Security at Google Cloud.