Security News > 2020 > October

Cloud storage is just that - you've stored your data in the cloud. In its most rudimentary form, a traditional cloud backup essentially makes a copy of cloud data to support business continuity and disaster recovery initiatives.

Confluera holistically integrates security signals from the environment to provide a complete attack narrative of a cyberattack in real-time, as opposed to showing isolated alerts. Aqua Security unveils Kubernetes-native security capabilities.

Dubbed "Operation Earth Kitsune" by Trend Micro, the campaign involves the use of SLUB malware and two new backdoors - dneSpy and agfSpy - to exfiltrate system information and gain additional control of the compromised machine. Although previous operations involving SLUB used the GitHub repository platform to download malicious code snippets onto the Windows system and post the results of the execution to an attacker-controlled private Slack channel, the latest iteration of the malware has targeted Mattermost, a Slack-like open-source collaborative messaging system.

There were 2,935 publicly reported breaches in the first three quarters of 2020, with the three months of Q3 adding an additional 8.3 billion records to what was already the "Worst year on record," Risk Based Security reveals. Factors contributing to the decline in publicly reported breaches.

NVIDIA on Wednesday released patches to address a total of nine vulnerabilities impacting NVIDIA DGX servers. The vulnerabilities were reported to NVIDIA by members of the SCADA StrangeLove project, which focuses on ICS/SCADA security, as part of their research into machine learning infrastructure vulnerabilities.

Federal IT leaders across the country voiced the importance of network visibility in managing and securing their agencies' increasingly complex and hybrid networks, according to Riverbed. Of 200 participating federal government IT decision makers and influencers, 90 percent consider their networks to be moderately-to-highly complex, and 32 percent say that increasing network complexity is the greatest challenge an IT professional without visibility faces in their agency when managing the network.

The virtual edition of the HITBCyberWeek 2020 security conference starts on November 15. Simultaneously, those in search for specific cyber security knowledge and effective exercises can opt for one of the virtual trainings that have been scheduled to take place.

Thales has launched its Identity Verification Suite, in response to the rising need of remote client onboarding. With privacy and user experience as its heart, the IDV Suite enables a secure and 100%-AI identity verification service.

AWS Nitro Enclaves helps customers reduce the attack surface for their applications by providing a trusted, highly isolated, and hardened environment for data processing. With this isolation, the AWS Nitro Enclave owner can start and stop, or assign resources to an Enclave, but even the owner cannot see what is being processed inside of AWS Nitro Enclaves.

To help companies defend themselves, Citrix is introducing two new workspace security solutions designed to secure access and protect applications wherever work needs to get done. Citrix Secure Internet Access - A comprehensive, global cloud security service that addresses the security requirements of modern enterprises.