Security News > 2021 > January

A Cyberbit report reveals how organizations are currently building the human element of their InfoSec organization-shedding light on current practices including job requirements, the recruiting process, current skills levels, training impacts, and integration of industry best practices. "This first annual SOC Skills Survey sheds a critical light on how companies are fulfilling-and falling short-on cyber team requirements to maintain a strong cyber defense posture," said Steve Burg, Director of Product Marketing at Cyberbit.

Private equity firm TPG Capital on Thursday announced that it has agreed to acquire a majority stake in privileged access management solutions provider Centrify. Founded in 2004, Santa Clara, Calif.-based Centrify provides a platform designed to enforce least privilege access at scale, across enterprise networks.

The Association of Corporate Counsel and Exterro survey shows the ever-increasing role of Chief Legal Officers as key business partners. "The successful Chief Legal Officer going forward will have much broader responsibilities and will require a new strategy to proactively and defensibly manage their legal governance, risk and compliance obligations while maintaining and ensuring data integrity throughout their business processes," said Bobby Balachandran, CEO at Exterro.

Multiple vulnerabilities patched recently in the popular WordPress plugin Popup Builder could be exploited to perform various malicious actions on affected websites. With over 200,000 installations to date, "Popup Builder - Responsive WordPress Pop up - Subscription & Newsletter" is a plugin that helps WordPress site owners create, customize, and manage promotion modal popups.

Cybersecurity company Cynet just released findings from a survey of 200 CISOs in charge of small security teams to shine "a spotlight into the challenges of small security teams everywhere." In addition to better understanding the challenges these CISOs face, the 2021 Survey of CISOs with Small Security Teams delves into the strategies CISOs will employ to ensure their organizations are protected from the ongoing onslaught of cyber threats - all while saddled with limited budgets and headcount.

The global out of band authentication market was valued at $443.81 million in 2019, and it is expected to reach a value of $846.80 million by 2025, registering a CAGR of 11.37% over the forecast period 2020 - 2025, according to ResearchAndMarkets. Some studies show that BYOD approach lets employees utilize the benefits of greater flexibility, collaboration, and work-life balance to improve productivity by up to 34%. However, it also raised security-related issues which are expected to drive the out of band authentication market as many enterprises are increasingly adopting software solution that generates one-time passcodes and sent using via email or SMS text message to establish a secure connection to secure their networks from the security threats.

A data privacy tool has been developed to help ensure key datasets - such as those tracking COVID-19 - can be publicly shared with an extra layer of security for sensitive personal information. Developed as a collaboration between CSIRO's Data61, the digital specialist arm of Australia's national science agency, the NSW Government, the Australian Computer Society and several other groups, the privacy tool assesses the risks to an individual's data within any dataset; allowing targeted and effective protection mechanisms to be put in place.

Port53 Technologies announced the launch of a platform that will empower cybersecurity professionals to shape their organizations' threat postures at will. The online store, featuring solutions from Port53 partners Cisco and OneLogin, aims to further Port53's commitment to empowering small and mid-sized enterprises to secure their digital estates against an ever-burgeoning threat landscape.

Wind River debuted Wind River Studio, a cloud-native platform for the development, deployment, operations, and servicing of mission-critical intelligent systems where security, safety, and reliability are required. "In order to thrive in a digital- and AI-first world, companies are accelerating their digital transformation plans from years to months. Wind River is committed to realizing the digital future of our customers across the industries we serve," said Kevin Dallas, Wind River president and CEO. "Wind River Studio is the first and only of its kind to deliver one environment for mission-critical intelligent systems across the full product lifecycle. This new platform offers dramatic improvements in productivity, agility, and time-to-market, with seamless technology integration that includes far edge cloud compute, data analytics, system level security, 5G, and AI/ML.".

A "Persistent attacker group" with alleged ties to Hezbollah has retooled its malware arsenal with a new version of a remote access Trojan to break into companies worldwide and extract valuable information. In a new report published by the ClearSky research team on Thursday, the Israeli cybersecurity firm said it identified at least 250 public-facing web servers since early 2020 that have been hacked by the threat actor to gather intelligence and steal the company's databases.