Security News > 2020 > September

SOX & Internal Controls Professionals Group released a survey which measures the costs, execution, challenges and priorities faced by companies that comply with the Sarbanes-Oxley Act. "In its fifth year, our survey reflects the broad experience of SOX professionals over time and presents a balanced perspective of the current state of SOX and internal controls management," said Camille Kearns Rudy, National Director of the SOX & Internal Controls Professionals Group.

"To address the significant privacy risks posed by IMSI catchers, the 5G standards introduced the possibility for MNOs to encrypt the IMSI before it is sent over-the-air," comments Claus Dietze, Chair of Trusted Connectivity Alliance. Of the available options, executing IMSI encryption within the 5G SIM, which refers to both the SIM or eSIM as defined by Trusted Connectivity Alliance as the Recommended 5G SIM, emerges as a comprehensive solution when examined against a range of key criteria.

iProov has launched the world's first system of global threat intelligence for biometric assurance. iSOC's threat intelligence provides forewarning of major new attacks and enables iProov to prepare and defend against them.

Netskope announced the Cloud Threat Exchange, one of the industry's first cloud-based solutions for the ingestion, curation, and real-time sharing of threat intelligence across enterprise security enforcement points. Any certified, partner, vendor, or customer may use Cloud Threat Exchange to automate the delivery and distribution of high-value, actionable threat intelligence, thus reducing the time to protection and eliminating gaps in coverage.

Kryon launched the industry's first cloud-based Full Cycle Automation-as-a-Service platform. Powered by Amazon Web Services, Kryon's FCAaaS pushes the boundaries of automation by combining Process Discovery, RPA, and actionable analytics in one unified platform.

Lattice helps developers meet this growing demand for embedded and smart vision applications by offering a variety of low-power FPGAs and comprehensive solutions stacks designed to enable the quick and easy implementation of applications like video signal bridging, aggregation and splitting, image processing, and the AI/ML inferencing used to train smart vision models. "Peiju Chiang, Product Marketing Manager at Lattice, said,"Lattice is a leading provider of innovative, low power solutions for smart and embedded vision applications.

Voatz, the maker of a blockchain-based mobile election voting app pilloried for poor security earlier this year, has urged the US Supreme Court not to change the 1986 Computer Fraud and Abuse Act, a law that critics say inhibits security research because it's overly broad. The app maker filed an amicus brief [PDF] on Thursday in Van Buren v. United States in support of the US government, which seeks to uphold the 2017 conviction of former Georgia police officer Nathan Van Buren under the CFAA. Van Buren was convicted of violating the CFAA for conducting a computer search for a license plate number. Coincidentally, its app was slammed in February by computer scientists for a variety of security flaws.

GlobalPlatform has released a new specification to simplify and bring greater trust to the authentication of digital services on smartphones and biometric-enabled cards. Originally developed within EMVCo, the global technical body that facilitates the worldwide interoperability and acceptance of secure payment transactions, the Secure Element Broker Interface defines a standard to make end-user authentication simpler for all applications running in a GlobalPlatform-certified Secure Element.

The Orbi Pro WiFi 6 Tri-band Mesh System is an industry leading tri-band WiFi 6 multi-node mesh system designed to grow with small businesses and home offices as the need to expand their area of network coverage increases. Featuring the latest WiFi data security standard, WPA3, along with 4 SSIDs and VLAN support, the Orbi Pro WiFi 6 Mesh System provides a secure network while also isolating connections for separate activities, making it the ideal solution for today's work from home paradigm.

Volterra​ announced new capabilities for its VoltMesh service to provide globally distributed networking and security for cloud-native, API-centric applications. The Gartner report Ensure Your API Management Solution Supports Modern API Trends Such as Microservices and Multicloud states, "Gartner's 2019 API Strategy and Usage Survey found that 45% of surveyed organizations reported using microservices architecture to build APIs".