Security News > 2020 > November

A Hamilton Beach Smart Coffee Maker that could eavesdrop, an Amazon Halo fitness tracker that measures the tone of your voice, and a robot-building kit that puts your kid's privacy at risk are among the 37 creepiest holiday gifts of 2020 according to Mozilla. The guide includes a "Best Of" category, which singles out products that get privacy and security right, while a "Privacy Not Included" warning icon alerts consumers when a product has especially problematic privacy practices.

The number of phishing incidents in 2020 is now set to increase 15% year-on-year, though this could soon change as second waves of the pandemic spread. The three primary objectives for COVID-19-related phishing emails were identified as fraudulent donations to fake charities, credential harvesting and malware delivery. "The risk of being phished is higher than ever and fraudsters are increasingly using digital certificates to make their sites appear genuine," said David Warburton, Senior Threat Evangelist at F5 Labs.

Join Cobalt for an interactive 1-hour Q&A session that tackles real-life examples of what it takes to achieve DevSecOps maturity. Engineering will be represented by Larry Maccherone, whose extensive experience in lean and agile practices has made him DevSecOps transformation lead at Comcast.

Lumu announced the launch of the Lumu Agent for Windows, a lightweight software built for remote workers in mind, that measures user device's compromise levels in real time. Once installed on an end user's machine, the Lumu Agent silently and persistently runs in the background, collecting network metadata which is then correlated and analyzed by Lumu to provide the most complete compromise visibility available today.

Kount's offerings protect the end-to-end customer journey from fraud, and the new bot detection solution is the latest in the company's momentous year of new products, patents, partnerships, industry recognition, and more. Quadrant Knowledge Solutions named Kount #1 overall for eCommerce Fraud Detection, scoring Kount the highest for both Customer Impact and Technology Excellence.

The problem is, developers haven't had the most inspiring introduction to security training over the years, and anything that can be done to make their experience more engaging, productive, and fun is going to be a powerful motivator in helping them gain valuable secure coding skills. In a blog post from November 28, 2019, security research group Wisdom reported on a security bug they discovered on GitHub.

The new HPE GreenLake for VDI cloud services provide organizations with a proven set of technologies to adapt to a rapidly growing remote employee population through simplified management, faster time to productivity, more security and control, and cost savings. HPE provides industry-leading cloud services and solutions that empower organizations to re-think the way people work, including from home and on mobile devices, by delivering a secure, customized, productive, and exceptional user experience to employees.

Keyavi Data launched four apps, a free online viewer and a web client that provide on-the-go-access to the same power and functionality of the company's product suite for preventing data leaks and making data breaches irrelevant. "Once a Keyavi app is installed, a licensed user of Keyavi's security products can transform any type of data file into intelligent data - whether it's an email, Word document, text file, spreadsheet, pdf, video, or any other file type - and infuse powerful controls into that data: who's allowed to see it, when and where it's accessed, by whom and on what devices - forever," said Elliot Lewis, CEO of Keyavi Data.

Datadog announced new capabilities for monitoring DNS. These new features allow engineers to troubleshoot DNS issues that affect the performance and availability of web applications and backend microservices. Datadog's DNS monitoring capabilities now allow customers to monitor key performance metrics about both internal and external DNS resolution to maintain efficient service networking and availability.

The combination of Infoblox contextual data and the ThreatQ threat intelligence platform enables organizations to categorize, manage and respond to threats faster and more effectively. Infoblox DNS can put more than 45 million threat indicators to work in real-time within BloxOne Threat Defense, which provides advanced DNS security as SaaS-based services from the cloud or as a hybrid on-premises/SaaS solution.