Security News > 2021

5G slicing is a crucial enabler of new business models and a key concept to empower the potential of 5G. Communications Service Providers can slice their network assets using different criteria such as mobility, security, or traffic types. A full slicing mechanism is expected by 2024, at which point 5G slicing will generate $20 billion in revenue, finds global tech market advisory firm ABI Research.

Microsoft Active Directory is ubiquitous across the corporate landscape and a perfect target for cyberattacks due to its popularity and importance. A single set of compromised credentials could potentially leave your enterprise's identity management infrastructure vulnerable, leading to a network security failure.

Cybersecurity researchers have discovered a new malware dropper contained in as many as 9 Android apps distributed via Google Play Store that deploys a second stage malware capable of gaining intrusive access to the financial accounts of victims as well as full control of their devices. "This dropper, dubbed Clast82, utilizes a series of techniques to avoid detection by Google Play Protect detection, completes the evaluation period successfully, and changes the payload dropped from a non-malicious payload to the AlienBot Banker and MRAT," Check Point researchers Aviran Hazum, Bohdan Melnykov, and Israel Wernik said in a write-up published today.

McAfee announced it has entered into a definitive agreement to sell its Enterprise business to a consortium led by Symphony Technology Group in an all-cash transaction for $4.0 billion. McAfee's Enterprise business has set the pace and standard within the cybersecurity industry for more than 30 years and has become a recognized leader for device-to-cloud cybersecurity solutions.

As the so-called layers of the onion are peeled back, additional information regarding how the vulnerability was exploited, who was behind the attack, who is to blame for the attack, and the long-term ramifications of this type of supply chain vulnerabilities continue to be actively discussed. Cybersecurity company Cynet is taking a needed step back to provide a full picture of the SolarWinds attack from start to finish in an upcoming webinar, "Lessons Learned from the SolarWinds SUNBURST Attack."

Intel announced that it has signed an agreement with Defense Advanced Research Projects Agency to perform in its Data Protection in Virtual Environments program. The multiyear program represents a cross-team effort across multiple Intel groups, including Intel Labs, the Design Engineering Group and the Data Platforms Group, to tackle "The final frontier" in data privacy, which is computing on fully encrypted data without access to decryption keys.

Avaya announced new devices designed to significantly improve workstream collaboration. This includes a redesigned Avaya Vantage K155 with Amazon Alexa built-in, as well as a new Avaya IP Conference Phone B129, and Avaya Huddle Camera HC010.

A malicious web shell deployed on Windows systems by leveraging a previously undisclosed zero-day in SolarWinds' Orion network monitoring software may have been the work of a possible Chinese threat group. The findings were also corroborated by cybersecurity firms Palo Alto Networks' Unit 42 threat intelligence team and GuidePoint Security, both of whom described Supernova as a.NET web shell implemented by modifying an "App web logoimagehandler.ashx.b6031896.dll" module of the SolarWinds Orion application.

Airspan Networks has entered into a definitive business combination agreement with and into New Beginnings Acquisition. These trends are expected to provide Airspan with an opportunity to take market share from the legacy network providers and enter new high growth market segments such as Private 5G and Fixed Wireless Access, which are addressable markets in the new telecom paradigm.

Join Intel on Wednesday, March 10, at SecurityWeek's Supply Chain Security Summit, where industry leaders will examine the current state of supply chain attacks. Hear Intel's experts discuss the need for transparency and integrity across the complete product lifecycle, from build to retire.