Security News

Threat intelligence data broker Recorded Future has acquired fraud analytics startup Gemini Advisory as part of a strategic push to expand into the financial services and payment processing markets. Recorded Future expects the Gemini Advisory deal to provide tools and expertise to sell the "Most comprehensive intelligence platform" with "The visibility to act at the speed of the adversary to mitigate cyber risk and fraud."

RangeForce announced that Simon Hodgkinson, former CISO of bp has joined the RangeForce Advisory Board to provide strategic guidance on products, partnerships and business development. He joins existing advisors including Chris Inglis, former Deputy Director and senior civilian leader of the National Security Agency, VADM Jan E. Tighe, former Deputy Chief of Naval Operations for Information Warfare, Dr. Gerald Auger, Dr. Charlie Miller, Anthony Johnson, and Niloofar Razi Howe, chief strategy officer and SVP strategy and operations at RSA. "The evolving sophistication of threat actors and their techniques is placing the onus on organizations to upskill their security teams so they can keep up, yet there is little time for formal classroom training," said Simon Hodgkinson.

Security Compass announced their Advisory Division has been re-established as a distinct business unit within the company. Started in 2004, Security Compass Advisory is a cybersecurity consulting organization that helps companies improve the security posture of their existing technology environments and accelerate adoption of new technology.

AlertEnterprise announced the appointment of two new members to its Advisory Board: Rich Mason and James Hughes. Mason and Hughes join AlertEnterprise in this consultative role as the company continues to bring in new industry leadership to guide its Cyber-Physical Security strategy and connect with forward-looking professionals to accelerate Security Convergence adoption.

ACI Worldwide announced that Amanda Mickleburgh, product director for Merchant Fraud, has been appointed to the European Advisory Board of the Merchant Risk Council, a global membership organization connecting eCommerce fraud and payments professionals. Since joining ACI in 2007, she has held various strategic roles, with a focus on eCommerce fraud prevention.

The U.S. Cybersecurity and Infrastructure Security Agency this week released an advisory to inform industrial organizations that some SCADA/HMI products made by Japanese electrical equipment company Fuji Electric are affected by potentially serious vulnerabilities. The vulnerabilities, reported to Fuji Electric by various researchers through Trend Micro's Zero Day Initiative and CISA, have been described as buffer overflow, out-of-bounds read/write and uninitialized pointer issues that can be exploited for arbitrary code execution.

SolarWinds has released an updated advisory for the additional SuperNova malware discovered to have been distributed through the company's network management platform. After analyzing the SolarWinds breach, both Palo Alto Networks Unit 42 and Microsoft reported on an additional malware named SuperNova distributed using the App Web logoimagehandler.

Security updates available for the Treck TCP/IP stack address two critical vulnerabilities leading to remote code execution or denial-of-service. A low-level TCP/IP software library, the Treck TCP/IP stack is specifically designed for embedded systems, featuring small critical sections and a small code footprint.

Kudelski Security announced the launch of a new focus on quantum security, including expanded research and advisory services that enable security leaders and product and system developers to align their long-term approach to risk and data protection to the era of quantum computing. The global quantum practice for Kudelski Security is led by Dr. Tommaso Gagliardoni, who brings extensive expertise in academic and applied research in the fields of cryptography, quantum computing, and advanced mathematics.

Cymatic announced that Stuart McClure, founder and former chief executive of AI security firm Cylance, has been named to the Cymatic advisory board. Stuart's security and technology expertise will provide Cymatic with technical guidance and market leadership to ensure the success and relevance of its all-in-one client-side WAF CymaticONE + VADR. Stuart is widely recognized for his achievements in applying machine learning and artificial intelligence to endpoint protection and defense.