Security News > 2020

The makers of NordVPN have come out with a new version of their NordPass password manager. From the office of "Things you should have started doing years ago," comes a warning I've given countless times: A password manager should be considered a must-have.

From October 2019 through December 2019, the email security company analyzed 202 billion emails and rejected 92 billion as malicious. The Mimecast Threat Intelligence Report RSA Conference Edition 2020 reports that the emerging Malware-as-a-Service model means that simpler attack methods can reach more targets while keeping older, well-known malware active at the same time.

Let's Encrypt has halted its plans to cancel all three million flawed web security certificates - after fearing the super-revocation may effectively break a chunk of the internet for netizens. Earlier this week, the non-profit certificate authority, which issues HTTPS certs for free, announced a plan to disable some three million certificates tainted by a software bug.

Mobile game developer Zynga could face a class-action lawsuit stemming from a massive data breach last September, which impacted 218 million users of the Words with Friends mobile app. According to a third-party analysis, that data included names, emails, user IDs, salted passwords, password reset tokens, Zynga account IDs, and connections to Facebook and other social media services.

Mobile game developer Zynga could face a class-action lawsuit stemming from a massive data breach last September, which impacted 218 million users of the Words with Friends mobile app. According to a third-party analysis, that data included names, emails, user IDs, salted passwords, password reset tokens, Zynga account IDs, and connections to Facebook and other social media services.

Companies are lagging when it comes to keeping up with software security patches - causing them to fall into "Security debt," Chris Eng, chief research officer with Veracode said. "If you incorporate security in the right way, DevOps is actually a great opportunity to improve the way that you're doing software security. And so I think that's the big takeaway," said Eng.

Companies are lagging when it comes to keeping up with software security patches - causing them to fall into "Security debt," Chris Eng, chief research officer with Veracode said. "If you incorporate security in the right way, DevOps is actually a great opportunity to improve the way that you're doing software security. And so I think that's the big takeaway," said Eng.

The plug was pulled on HIMSS20 - slated to take place in Orlando, Florida March 9-13, after the latest advisory and report updates by the Centers for Disease Control and Prevention and the World Health Organization, HIMSS said in a statement issued on Thursday afternoon. HIMSS, the largest annual health IT conference, in recent years has typically attracted more than 40,000 attendees and with more than 1,300 exhibitors.

Even the most forward-looking organizations with the top security experts face risk when transitioning to the cloud. The case study will also explain how a Network Detection and Response Layer could have provided the missing visibility and detection needed to respond to such an incident.

"From a security perspective," said Javvad Malik, security awareness advocate for KnowBe4, "The first things a company should look into are whether there is enough capacity for employees to work from home at the same time. It is also important to ensure the right policies and tools are put in place to enable employees to work remotely. Not having the right tools in place can lead to employees using unapproved or insecure apps, tools, or methods to try and get their job done. Most of all, expectations should be set as to how the organization expects its employees to operate under remote conditions and how to raise any issues." A Veritas Technologies spokesperson warned, "Many employees are habitual in the way they store data, saving to local drives on laptops or to the public cloud when working remotely. If large percentages of employees shift towards remote work over time, it could create a pool of unstructured data that would become invisible to the business-causing a new wave of data protection and compliance concerns." Given how quickly the coronavirus has spread, corporations may not have had time to implement necessary protocols.