Security News > 2020

New Relic, the industry's largest and most comprehensive cloud-based observability platform built to help customers create more perfect software, announced that Bill Staples will join New Relic as chief product officer on February 14, 2020. Reporting directly to CEO and Founder Lew Cirne, Staples will be responsible for driving the company's market-leading platform strategy and will lead the Product Management, Engineering and Design functions.

Zscaler, the leader in cloud security, announced that Zscaler stockholders elected David Schneider to its Board of Directors at the annual stockholder meeting held January 10, 2020. "He is a tremendous addition to our Board of Directors," said Jay Chaudhry, Chairman and CEO of Zscaler.

Bringing a rich tech background and executive experience in the association sector, Julia Kanouse has joined ISACA's leadership team as senior vice president of membership. ISACA has more than 145,000 members in 188 countries working in information and cyber security, governance, audit and assurance, risk and privacy, and in Kanouse's new role, she will lead the strategy to elevate their experiences through diverse membership and chapter initiatives.

McAfee, the device-to-cloud cybersecurity company, announced that its Board of Managers has appointed Peter Leav to the role of Chief Executive Officer, effective February 3, 2020. Leav will succeed Chris Young, who has decided to step down as Chief Executive Officer of McAfee.

IoXt, the global standard for IoT security and preeminent IoT security alliance, announces the appointment of Gregory Guez, Senior Director of Product Marketing, IoT Security at Silicon Labs, to its board of directors. As a founding member of the ioXt Alliance, Guez has been instrumental in shaping ioXt's work towards creating the internet of secure things.

Resolve Systems, the leader in enterprise IT automation and AIOps, announced the promotion of Vijay Kurkal to Chief Executive Officer, effective immediately. Since joining the company as Chief Operating Officer in 2018, Kurkal has been instrumental in the company's global growth and product development as Resolve has delivered on heightened demand for its transformative technologies.

Exploits for Citrix ADC and Gateway flaw abound, attacks are ongoingWith several exploits targeting CVE-2019-19781 having been released over the weekend and the number of vulnerable endpoints still being over 25,000, attackers are having a field day. January 2020 Patch Tuesday: Microsoft nukes Windows crypto flaw flagged by the NSAAs forecasted, January 2020 Patch Tuesday releases by Microsoft and Adobe are pretty light: the "Star of the show" is CVE-2020-0601, a Windows flaw flagged by the NSA that could allow attackers to successfully spoof code-signing certificates and use them to sign malicious code or intercept and modify encrypted communications.

To find out who they are, local authorities plan to ask Google. Citing past experience, Gibson speculates that the robbery suspects may have used their mobile phones while doing reconnaissance for their rendezvous point and that the getaway driver may have done so while killing time in the CRV. So the Milwaukee County District Attorney's Office has requested that Google provide the location data history, sourced from GPS, Bluetooth, and Wi-Fi signals, from every device in a small geofenced area - the 25 meters around the spot occupied by Honda CRV. The authorities want Google to provide an anonymized list of every device reporting its location back to the Chocolate Factory from 0645 to 1115 on the morning of the failed robbery.

Microsoft earlier today issued an emergency security advisory warning millions of Windows users of a new zero-day vulnerability in Internet Explorer browser that attackers are actively exploiting in the wild - and there is no patch yet available for it. A remote attacker can execute arbitrary code on targeted computers and take full control over them just by convincing victims into opening a maliciously crafted web page on the vulnerable Microsoft browser.

Microsoft let slip on Friday an advisory detailing an under-attack zero-day vulnerability for Internet Explorer. In brief... A poorly configured Elasticsearch database left an app's baby photos and videos accessible from the public internet.