Security News > 2020

Siren, the investigative intelligence platform, announced a strategic partnership with Praescient Analytics, a provider of intelligence analysis to the US Federal Government. Through the agreement, Praescient is now able to provide new and existing customers with access to Siren's investigative platform.

Guidepost Solutions, a global leader in compliance, investigations and security consulting, announced the establishment of its National Security practice and the promotion of former senior FBI national security official Stephanie Douglas to president of the division. "Under her leadership, our National Security team will provide expert guidance and support to clients in mission-critical areas of their businesses as they navigate the complexities of building a compliant organization."

Attivo Networks, an award-winning leader in deception for cybersecurity threat detection, announced an integration with CrowdStrike, a leader in cloud-delivered endpoint protection, to provide organizations an integrated defensive strategy based on the Attivo ThreatDefend platform and the CrowdStrike Falcon endpoint protection platform. The joint solution provides early and accurate threat detection coupled with the ability to automatically quarantine a compromised endpoint.

CollabNet VersionOne, XebiaLabs, and Arxan Technologies announced their combination and strategic transformation to Digital. Ai is on a mission to revolutionize how enterprises create, measure, deliver, secure, and continuously improve digital products that provide value, fuel revenue growth, and enable innovation in today's rapidly changing world.

Akamai security researcher Larry Cashdollar set up the Docker image to see what kind of notice it might attract from the wider web's cadre of cyberattackers. Accordingly, the Docker image soon came under fire, as outlined in a Wednesday analysis.

Researchers are warning owners of fiber routers to keep a close eye on their gear and check for firmware updates following the discovery an in-the-wild zero-day attack. The researchers note that since the partial proof of concept was posted, two other botnets have been spotted attempting to exploit it.

A never-before-seen remote access trojan has been discovered in a set of campaigns targeting the energy sector, with a slew of post-exploitation tools to log keystrokes, record footage from webcams and steal browser credentials. Researchers called the malware "PoetRAT" due to various references to sonnets by English playwright William Shakespeare throughout the macros, which was embedded in malicious Word documents that were part of the campaign.

Videoconferencing platform Zoom is rolling out a number of measures meant to stem criticism over how it has handled security as users flock to the application during the coronavirus pandemic. Zoom chief executive Eric Yuan laid out steps Wednesday that the company is taking against problems such as data hacking and harassment by individuals who crash sessions in what is referred to as "Zoombombing."

Cloud and data center security solutions provider Guardicore on Wednesday made available technical information on a critical VMware vCenter Server vulnerability that can be exploited by an attacker to gain full control over the targeted VMware deployment. Few details have been made available by VMware so researchers at Guardicore have decided to analyze the patch in an effort to identify the changes made by the virtualization giant to address the vulnerability.

Global investment firm TPG Growth led the $100 million funding that Onfido raised, which will help the global identity verification and authentication firm deliver a new identity standard for easy and secure access to digital services worldwide. Onfido will announce a large new round of funding on April 15 as COVID elevates the importance of confirmed ID for everything from certificates of immunity to telehealth and financial services.