Security News > 2023 > April

In this Help Net Security interview, Kevin Muller, CEO at Passbolt, delves into the critical concerns linked to password usage, outlines how the Passbolt password manager guarantees the utmost level of security for businesses, highlights its features in the competitive landscape, sheds light on how Passbolt meets the distinct requirements of teams and organizations, and more. Passbolt is developed using proven security standards like OpenPGP and complies with security auditing standards such as SOC2 Type II. All of our security practices meet or exceed industry standards.

Almost two million mobile phone subscribers in Vietnam are at risk of having their services severed, thanks to a new government policy that seeks to curb spam. Of 127 million mobile phones in use in Vietnam, 96 percent connect to three mobile operators: Vinaphone, Viettel and MobiFone.

It's not as if we leave software developers where they are and give them more responsibilities. Shift left is doing critical work at improving the organization, but to make it a reality, developers need a more significant say regarding production tools and access.

Recent travel meltdowns at Southwest Airlines and the FAA have exposed our dependence on fragile, outdated, or unreliable computer systems. Institutional failures have made updating airline technology even more challenging, with some legacy systems dating back to the 1970s.

Although KEV catalog vulnerabilities are frequent targets of APT Groups, a large and exploitable attack surface remains due to software vendors' lack of awareness and action, according to Rezilion. The Known Exploited Vulnerabilities catalog, maintained by the Cybersecurity and Infrastructure Security Agency, provides an authoritative source of information on vulnerabilities that have been exploited in the past or are currently under active exploitation by attackers.

Cloud data security focuses specifically on protecting digital information "In the cloud." With cyberattacks increasing in both sophistication and frequency, and regulatory requirements regarding the privacy of and access to data more complex, organizations need a better way to overcome the challenges of securing their data regardless of whether it resides on premise, at the edge or in the cloud.

Appdome's ThreatScope Mobile XDR gathers thousands of threat signals from mobile app security, hacking, fraud, malware, cheat and bot attacks from inside each of 100M deployed mobile apps and translates that data into brand relevant views that cyber, fraud and business teams can use to evaluate and respond to mobile threats and attacks in real time. The module further strengthens XSIAM's ability to consolidate multiple security operations capabilities into a unified, AI-driven security operations center platform.

In Brief The principal of a Florida science and technology charter school has resigned after allegedly writing a $100,000 check to an Elon Musk impersonator using school funds. Dr Jan McGee, who is listed as a founding board member of Burns Science and Technology Charter in Oak Hill, Florida, told the school's board of directors that she had been fooled by the fake Musk after being "Groomed" for months.

A new ransomware gang named 'Money Message' has appeared, targeting victims worldwide and demanding million-dollar ransoms not to leak data and release a decryptor. While investigating, BleepingComputer has seen evidence of a potential Money Message breach on a well-known computer hardware vendor.

Microsoft unveils AI-powered Security Copilot analysis toolMicrosoft has unveiled Security Copilot, an AI-powered analysis tool that aims to simplify, augment and accelerate security operations professionals' work. Prioritizing data security amid workforce disruptionsIn this Help Net Security video, Chris Wey, President of Data Modernization at Rocket Software, discusses the risks organizations face and the steps they can take to mitigate disruption.