Security News > 2021 > June

Owners of Amazon Echo assistants and Ring doorbells have until June 8 to avoid automatically opting into Sidewalk, the internet giant's mesh network that taps into people's broadband and may prove to be a privacy nightmare. The idea is that if your internet connection goes down or is interrupted, your Amazon smart home devices will still be able to communicate with the outside world, and send out alerts or take instructions, by wirelessly connecting to neighbors' Sidewalk-compatible gadgets and using their internet connection instead. These Sidewalk gizmos communicate with one another using Bluetooth Low Energy over short distances and 900MHz LoRa over longer ranges, and use Wi-Fi to reach the public internet and Amazon's backend servers.

Exabeam Chief Product Officer Adam Geller will now lead both the product and engineering organizations, ensuring even tighter integration and alignment as the company innovates and invests in creating the number one trusted cloud SecOps platform on the market. The company recently launched its new Fusion product line with Fusion XDR and Fusion SIEM. With 70 percent of new business in 2020 delivered through Exabeam cloud-based analytics and automation, adding XDR puts a new name on what Exabeam already provides to customers.

Secureworks, and Volexity shed light on a new spear-phishing activity unleashed by the Russian hackers who breached SolarWinds IT management software, the U.S. Department of Justice Tuesday said it intervened to take control of two command-and-control and malware distribution domains used in the campaign. Com - were used to communicate and control a Cobalt Strike beacon called NativeZone that the actors implanted on the victim networks.

Fancy Product Designer, a WordPress plugin installed on over 17,000 sites, has been discovered to contain a critical file upload vulnerability that's being actively exploited in the wild to upload malware onto sites that have the plugin installed. Wordfence's threat intelligence team, which discovered the flaw, said it reported the issue to the plugin's developer on May 31.

He will steer AGCS's cyber underwriting business, reporting to Shanil Williams, Global Head of Financial Lines, and will also lead the group-wide Cyber Center of Competence of Allianz which is embedded into AGCS. He will succeed Dr. Catharina Richter, current Global Head of Cyber Center of Competence for AGCS and Allianz Group, who will move to a new role within Allianz Group, which will be confirmed in due course. He started out as Global Chief Underwriting Officer Cyber within AXA's corporate solutions division, while also being Group Chief Underwriting Officer for Cyber.

FireEye on Wednesday announced plans to sell its products business, including the FireEye name, as part of a $1.2 billion transaction that splits off the Mandiant Solutions unit from the company's endpoint protection and cloud security products. According to FireEye, the cloud security, network and email product side of the house will be sold off in a $1.2 billion all-cash transaction to Symphony Technology Group, the private equity firm that also owns RSA Security and McAfee Enterprise.

Zerto has announced the promotions of Avi Raichel to the role of Chief Operating Officer and Deepak Verma as VP, Product Management. The two senior leadership positions are key to the continued success of the business and product strategy roadmap.

Cohesity announced it has named Richard Gadd as vice president and general manager, EMEA sales with immediate effect. A proven technology sales and business development leader with almost three decades of experience in EMEA, Gadd will manage the company's business and sales operations throughout the region.

With the next version of Chromium Edge, Microsoft says it will update the font rendering experience to match the standards of other native Windows apps, such as Calculator, Groove Music, etc. Microsoft has already enabled the new font rendering experience in the Canary builds.

Expert says all companies are at risk, but especially smaller ones who may not have very secure systems. They're basically like companies and that's the challenge with ransomware now is it's moved from this sort of opportunistic thing where there were a few criminals scattered around the world doing this, to being these as-a-service operations that basically mean any enterprising criminal can get access to ransomware for, I've seen it for less than $100, and then use that to infect stuff.