Security News > 2021 > August

As more companies are considering the shift to a fully or hybrid remote workforce, accelerating plans to acquire digital and cloud services to address increasing cybersecurity risks is necessary. Often cloud cybersecurity is part of a hybrid cloud or multicloud infrastructure architecture designed to address advanced cloud cybersecurity challenges such as lack of visibility and tracking, ever-changing workloads and cloud compliance and governance.

The Lazio region in Italy has suffered a reported ransomware attack that has disabled the region's IT systems, including the COVID-19 vaccination registration portal. Early Sunday morning, the Lazio region suffered a ransomware attack that encrypted every file in its data center and disrupted its IT network.

The Lazio region in Italy has suffered a RansomEXX ransomware attack that has disabled the region's IT systems, including the COVID-19 vaccination registration portal. [...]

While not necessarily killing your security posture, can seriously damage it, whether by introducing vulnerabilities into the development pipeline or inadvertently inheriting malware that hitches a ride with third-party components. Trying to retrofit traditional security practices and tooling into these newly accelerated workflows and production environments can be time consuming and ultimately ineffective.

Jack Wallen shows you how to enable Fission. Firefox developers understand web browser security is at a premium, so they've rolled out a site isolation feature.

With all the negativity in the world, it feels like a good time to remind everyone that positive reinforcement is an effective tool for improving employee behavior when it comes to cybersecurity. To keep everyone on the same page, let's use the definition championed in Courtney E. Ackerman's PositivePsychology.com article Positive Reinforcement in Psychology: "A desirable or pleasant stimulus after a behavior. The desirable stimulus reinforces the behavior, making it more likely that the behavior will reoccur."

Google this week pushed out a security-themed Android update with fixes for more than 30 security flaws that expose mobile users to a range of malicious hacker attacks. The latest Android update provides documentation on 33 security bugs, some serious enough to cause privilege escalation or information disclosure compromises.

"To some extent, this data supports the theory that the cybersecurity skills shortage is related to mismanagement rather than a dearth of qualified candidates or advanced skills." The skills gap is partly a self-inflicted wound on the industry by the industry.

A planned October 2021 release date for Windows 11 has been accidentally leaked in support documents from both Microsoft and Intel. Support documents released over the past two months from Microsoft and Intel have revealed that the plan is to release Windows 11 in October, or at the latest, in November this year.

DDoS attacks are a nuisance to be sure, but they're also used in a variety of ways that make them a severe threat, says Atlas VPN. DDoS attack data presented by Atlas VPN found that attackers prefer the United States and the computers and internet sectors as targets. In June 2021 alone, more than a third of DDoS attacks worldwide targeted servers in the U.S. DDoS attacks involve using a massive number of internet-connected machines and devices to flood a target server, rendering it unable to keep up with traffic and either making it unusable or taking it offline.