Security News > 2024 > July > Week in review: CrowdStrike update causes widespread IT outage, critical Splunk Enterprise flaw
Faulty CrowdStrike update takes out Windows machines worldwideThousands and possibly millions of Windows computers and servers worldwide have been made inoperable by a faulty update of Crowdstrike Falcon Sensors, and the outage affected transport, broadcast, financial, retail and other organizations in Europe, Australia, the US and elsewhere.
Critical Splunk flaw can be exploited to grab passwordsA recently fixed vulnerability affecting Splunk Enterprise on Windows "Is more severe than it initially appeared," according to SonicWall's threat researchers.
Overlooked essentials: API security best practicesIn this Help Net Security, Ankita Gupta, CEO at Akto, discusses API security best practices, advocating for authentication protocols like OAuth 2.0 and OpenID Connect, strict HTTPS encryption, and the use of JWTs for stateless authentication.
Discover the growing threats to data securityIn this Help Net Security interview, Pranava Adduri, CEO at Bedrock Security, discusses how businesses can identify and prioritize their data security risks.
Signatures should become cloud security historyIn this Help Net Security video, Jimmy Mesta, CTO at RAD Security, discusses a new proposed standard for creating behavioral fingerprints of open-source image behavior at runtime.
New infosec products of the week: July 19, 2024Here's a look at the most interesting products from the past week, featuring releases from AuditBoard, BlueVoyant, Druva, Invicti Security, and Rezonate.
News URL
Related news
- 1 in 10 orgs dumping their security vendors after CrowdStrike outage (source)
- Organizations are changing cybersecurity providers in wake of Crowdstrike outage (source)
- CrowdStrike apologizes to Congress for 'perfect storm' that caused global IT outage (source)
- Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability (source)
- VMware Releases vCenter Server Update to Fix Critical RCE Vulnerability (source)