Security News > 2020

RepRisk, a pioneer and leader in ESG data science announces the launch of its upgraded ESG Risk Platform - the world's largest and most comprehensive due diligence database on ESG and business conduct risks. "RepRisk has been on the cutting edge of ESG data science for over a decade, becoming the first firm to leverage big data techniques to better understand ESG risks in 2006" said Philipp Aeby, CEO of RepRisk.

Though it's not Patch Tuesday, Adobe today released a massive batch of out-of-band software updates for six of its products to patch a total of 41 new security vulnerabilities. Adobe Acrobat and Reader software for Windows and macOS systems contain 13 flaws, out of which 9 are critical.

Though it's not Patch Tuesday, Adobe today released a massive batch of out-of-band software updates for six of its products to patch a total of 41 new security vulnerabilities. Adobe Acrobat and Reader software for Windows and macOS systems contain 13 flaws, out of which 9 are critical.

HCL Technologies, a leading global technology company, announced the latest version of HCL AppScan, a pioneering product in application security testing, to be generally available in April 2020. AppScan is a single solution for automated application security testing and management activities.

Onfido, the global identity verification and re-authentication provider, announced new accessibility features to its Software Development Kit, focused on enabling people with disability and impairments to connect to more businesses and services remotely with secure digital access. Designed with accessibility and inclusion in mind, the enhancements enable Onfido customers to verify more users during registration, identity verification and re-authentication, improving the digital customer journey with the highest level of fraud protection.

A new module for TrickBot banking Trojan has recently been discovered in the wild that lets attackers leverage compromised systems to launch brute-force attacks against selected Windows systems running a Remote Desktop Protocol connection exposed to the Internet. "From add-ons for stealing OpenSSH and OpenVPN sensitive data, to modules that perform SIM-swapping attacks to take control of a user's telephone number, and even disabling Windows built-in security mechanisms before downloading its main modules, TrickBot is a jack-of-all-trades."

A new module for TrickBot banking Trojan has recently been discovered in the wild that lets attackers leverage compromised systems to launch brute-force attacks against selected Windows systems running a Remote Desktop Protocol connection exposed to the Internet. "From add-ons for stealing OpenSSH and OpenVPN sensitive data, to modules that perform SIM-swapping attacks to take control of a user's telephone number, and even disabling Windows built-in security mechanisms before downloading its main modules, TrickBot is a jack-of-all-trades."

Delta Risk, a leading provider of SOC-as-a-Service and security services, announced the integration of Microsoft Defender Advanced Threat Protection with its cloud-native Security Orchestration and Automation platform, ActiveEye. Delta Risk provides Managed Detection and Response for both new and existing Defender ATP customers who need an experienced partner to help them quickly identify and respond to endpoint threats with a 24×7 security operations center.

Box, a leader in cloud content management, announced new integrations with Microsoft 365, building on Box's interoperability within Microsoft environments. These include the integration of Box within Microsoft Teams, which will be generally available on March 31, as well as an updated Box add-in for Microsoft Outlook on mobile and new security and identity integrations.

SecZetta, the leading provider of third-party identity management solutions, and Focal Point, a leading cybersecurity services provider, announced a new solution integrator partnership. Together, SecZetta and Focal Point provide clients with a 360° view of third-party identity and lifecycle management, placed into the context of their broader IAM and risk management practices.