Security News > 2021 > January

Altaro has announced that Hornetsecurity has acquired the company. Sold through Hornetsecurity's international channel partner network, its premium services are used by more than 40,000 customers including Swisscom, Telefónica and KONICA MINOLTA. This new acquisition builds on Hornetsecurity's acquisition of Spamina, the Spanish market leader for cloud email security solutions, in January 2019 and EveryCloud, its British market partner, at the beginning of 2020.

Mimecast said on Tuesday that "a sophisticated threat actor" had compromised a digital certificate it provided to certain customers to securely connect its products to Microsoft 365 Exchange. The company didn't elaborate on what type of certificate was compromised, but Mimecast offers seven different digital certificates based on the geographical location that must be uploaded to M365 to create a server Connection in Mimecast.

Ensuring the cybersecurity of your internal environment when you have a small security team is challenging. If you want to maintain the highest security level with a small team, your strategy has to be 'do more with less,' and with the right technology, you can leverage your team and protect your internal environment from breaches.

"2020 lock-downs forced organizations to modernize legacy domain-based approaches to IT infrastructure. That has driven demand for JumpCloud's directory platform, which makes it easier for resource constrained IT teams to adopt a zero trust security model," said Rajat Bhargava, CEO and co-founder of JumpCloud. JumpCloud reimagined the directory to fit the modern world with an open, cloud-based directory for secure, frictionless access from any authorized device to virtually any IT resource, anywhere.

New Relic announced the promotion of Bill Staples to President and Chief Product Officer. "Bill Staples is an execution-focused leader and innovator who builds and scales cloud-based businesses around a compelling vision delivered through industry-leading user experiences," said Lew Cirne, Founder and CEO at New Relic.

Europol on Tuesday said it shut down DarkMarket, the world's largest online marketplace for illicit goods, as part of an international operation involving Germany, Australia, Denmark, Moldova, Ukraine, the U.K.'s National Crime Agency, and the U.S. Federal Bureau of Investigation. The illegal internet market specialized in the sales of drugs, counterfeit money, stolen or forged credit card information, anonymous SIM cards, and off-the-shelf malware.

Trulioo announced that Matt Schatz will join the company as Chief Revenue Officer. In his new role, Mr. Schatz will report to the CEO and lead Trulioo's revenue-generating departments to help drive the company's next phase of hyper-growth.

Microsoft addressed 10 critical bugs, one under active exploit and another publicly known, in its January Patch Tuesday roundup of fixes. The most serious bug is a flaw in Microsoft's Defender anti-malware software that allows remote attackers to infect targeted systems with executable code.

Cybersecurity researchers have exposed the operations of an Android malware vendor who teamed up with a second threat actor to market and sell a remote access Trojan capable of device takeover and exfiltration of photos, locations, contacts, and messages from popular apps such as Facebook, Instagram, WhatsApp, Skype, Telegram, Kik, Line, and Google Messages. The vendor, who goes by the name of "Triangulum" in a number of darknet forums, is alleged to be a 25-year-old man of Indian origin, with the individual opening up shop to sell the malware three years ago on June 10, 2017, according to an analysis published by Check Point Research today.

Microsoft has plugged 83 CVEs, including a Microsoft Defender zero-day. One of the latter - a zero-day RCE affecting Microsoft Defender antivirus - is being exploited in the wild, but Microsoft didn't reveal more about these attacks.