Security News > 2023 > November

India's government has granted its Computer Emergency Response Team, CERT-In, immunity from Right To Information requests - the nation's equivalent of the freedom of information queries in the US, UK, or Australia. Reasons for the exemption have not been explained, but The Register has reported on one case in which an RTI request embarrassed CERT-In. That case related to India's sudden decision, in April 2022, to require businesses of all sizes to report infosec incidents to CERT-in within six hours of detection.

In an industry like cybersecurity where a new "Must-have" product hits the market every day, it's easy to get swayed into spending unnecessary money on products that widen your attack surface and deliver minimal value. The name of the game in a lean operation is a solution that is customizable and adaptable, and that will grow with the changing needs of an organization's security team.

At 1Password, we created and manage a passkeys directory, which keeps a running list of which websites, apps, and services offer signing in with passkeys, as well as an interactive element where users can vote for the businesses they want to see rollout passkey support-a useful resource to track ongoing adoption. Trusted developer tools that make it easy to implement passkey authentication into websites, apps, and services as logins will also be critical in getting more businesses to come around to passkeys.

The network is at an inflection point, and organizations' networks have become more dispersed amongst the cloud and on-prem, prompting a greater need for visibility today than ever. As the nature of the network shifts, teams face challenges securing their organization's infrastructure, and many fall short.

The North Korean threat actors behind macOS malware strains such as RustBucket and KANDYKORN have been observed "mixing and matching" different elements of the two disparate attack chains,...

With the new offering, ESET introduces two groundbreaking features to bolster online security and privacy-VPN and Identity Protection. ESET HOME Security subscriptions are available on all major operating systems -Windows, macOS, Android, and iOS. ESET HOME Security Essential is an entry-level subscription tier with protection features including improved modern endpoint security, multilayered real-time protection, as well as additional tools that further enhance the user's ability to protect against various threats.

Copilot can access all the sensitive data that a user can access, which is often far too much. In this post I'm going to focus specifically on data security and how your team can ensure a safe Copilot rollout.

Please turn on your JavaScript for this page to function normally. This survey set out to explore these challenges, to identify common practices, and to provide insight into how organizations can bolster their defenses.

A Los Angeles man has been jailed after pulling off SIM-swap attacks on victims, hijacking social media accounts, committing fraud with Zelle payments, and impersonating Apple support. Amir Hossein Golshan, 25, described in court documents as a "Serial cybercriminal and scammer," was sentenced to eight years in prison by a California federal court on Monday, and ordered to pay $1,218,526 in restitution.

Microsoft is deprecating Defender Application Guard for Office and the Windows Security Isolation APIs, and it recommends Defender for Endpoint attack surface reduction rules, Protected View, and...