Security News > 2021

Click Studios, the Australian software company behind the Passwordstate password management application, has notified customers to reset their passwords following a supply chain attack. "Manual Upgrades of Passwordstate are not compromised. Affected customers password records may have been harvested."

Lacework has announced that it has extended native security support for Amazon Web Services services including AWS Graviton2 and AWS Fargate. These additions give Lacework customers using AWS in-depth security visibility, threat detection, configuration compliance, and context into cloud security data and changes for all compute types: virtual machines, containers, containers as services, containers on demand, bare metal and serverless.

Ermetic announced a new version of the Ermetic platform that continually monitors the access behavior of user and machine identities to detect suspicious activity and prevent security threats. The new capabilities enable organizations to protect against unusual data access, suspicious configuration changes, privilege escalation and more, in multicloud environments.

Trend Micro announced a major refresh of the Trend Micro partner program that provide more cloud services resources and rewards partners with additional discounts for enabling organizations to better secure public cloud computing environments. The objective of the revamped program is to make it more profitable for partners that work with customers to deploy Trend Micro cloud security services via our authorized distributors and the AWS Marketplace or the AWS Consulting Partner Private Offer program, through which many cloud-native partners already resell AWS services.

Backblaze and Jamf announced a joint solution partnership to make Backblaze backup and data protection services available with ease in the Jamf admin ecosystem. Paired with the announcement from Backblaze of updates to mass deployment tools to streamline commands for installs and updates of its backup app, these improvements offer a step change in ease for IT Administrators tasked with safeguarding computers, servers, NAS, or Veeam data.

Most recently a consulting Practice Manager and Executive Security Strategist at NTT Ltd., Ireland is a technology leader with management experience in security services, consulting, financial services, healthcare, manufacturing, law enforcement and emergency services and three decades of technical experience in information security, IT systems, networks and enterprise operations. "We are so pleased to have Matt Ireland on board," said NTT Research President and CEO, Kazuhiro Gomi.

RSA announced Armen Najarian, Leah Evanski, and Dan Welch as three new additions to the Fraud & Risk Intelligence executive team. All three now report directly to Reed Taussig, Chief Executive Officer of the RSA Fraud & Risk Intelligence business.

A threat actor has leaked approximately 20 million BigBasket user records containing personal information and hashed passwords on a popular hacking forum. This morning, a well-known seller of data breaches known as ShinyHunters posted a database for free on a hacker forum that he claims was stolen from BigBasket.

The Windows 10 package manager is getting some new and exciting features that allow you to manage any installed applications directly from the command line. Last year, Microsoft released a Windows 10 package manager called Winget that allows users to install popular apps from a curated repository managed by Microsoft.

Apple will begin requiring app makers to tell users what tracking information they want to gather and get permission to do so, displaying what have been referred to as "Privacy nutrition labels." "Unless you receive permission from the user to enable tracking, the device's advertising identifier value will be all zeros and you may not track them," Apple said this week in an online message to developers.