Security News

Bugcrowd announced the addition of two board advisory members, Norma Lane, chief human resources officer and executive vice president of people and places at Infoblox, and Dave Gerry, chief revenue officer and head of global operations at WhiteHat Security, a wholly-owned, independent subsidiary of NTT. Both advisors bring a broad set of operational, technical and business management expertise, providing an immediate impact to Bugcrowd as it expands its global workforce and continues to evolve its cybersecurity platform. Lane and Gerry join an advisory board composed of a deep bench of technology and cybersecurity executives.

PCI Pal has announced the formation of the company's first Advisory Committee. Neira Jones is confirmed as the inaugural Advisory Committee member.

Rew Yang has been named as chair of the advisory board for Californians for Consumer Privacy, the organization which created and championed the passage of the CCPA and is now advocating for the passage of Proposition 24, the California Privacy Rights Act, which will make California's data privacy rights laws the strongest in the United States and set a precedent for other states to follow. While CCPA was a landmark victory for privacy and data property rights, Proposition 24 will extend beyond the existing law and provide consumers the right to correct their data, restrict use of sensitive personal information, including race and sexual orientation, extend to consumers the right to prevent companies from storing their information longer than necessary, and more.

The NSA and FBI are sounding the alarm over a dangerous new strain of Linux malware being employed by Russian government hackers often dubbed the Fancy Bear crew. Uncle Sam explicitly said on Thursday the miscreants - formally known as the 85th Main Special Service Center - operate within the Russian intelligence directorate, aka the GRU. The software nasty in question is Drovorub, a rootkit designed to infect Linux systems, take control of them, and siphon off files.

Awake Security announced a cohort of enterprise and public sector leaders that have joined its advisory board. The multidisciplinary team comprises experts from across the security industry, including Richard Clarke, a leading global expert on national and cyber security; Malcolm Harkins, former chief security and privacy officer at Intel; Elena Kvochko, former security leader at Bank of America and Barclays; and DJ Patil, former United States chief data scientist.

MITRE's Center for Technology & National Security, created to enhance MITRE's engagement with senior government leadership, named five highly esteemed national security officials to its newly established advisory board. "CTNS builds on the experience and expertise of thousands of our nation's most respected scientific and engineering minds," said Bill LaPlante, senior vice president for the MITRE National Security Sector.

ConnectWise isn't a vendor most Reg readers deal with directly, but the fact the company has just issued its first-ever security advisory deserves attention. That's because ConnectWise specialises in software that IT services providers use to manage your IT. The 38-year-old company is the dominant force in that market, meaning that if you work with a system integrator, managed services provider or other outsourcer there's a decent chance that ConnectWise touches some of the tech your business relies on.

On the heels of exiting stealth with $30 million in Series A funding from marquee investors and introducing a revolutionary, passwordless identity management solution, Beyond Identity announced the formation of an all-star technical advisory board comprising the "Father of SSL," the co-inventor of public-key cryptography, and CISOs from two of America's most successful companies, Koch Industries and Aflac. Beyond Identity replaces passwords with trusted certificates, originally defined in PKC and ubiquitously deployed within TLS. This proven, secure, and scalable approach enables Beyond Identity to eliminate passwords, reduce risk for organizations, remove friction for end users, and offer consumers a much more secure alternative to password managers.

Microsoft issued an out-of-band advisory this week to address Autodesk FBX vulnerabilities in Office, Office 365, and Paint 3D. Multiple bugs that were addressed in the Autodesk FBX software development kit earlier this month could lead to code execution and denial of service conditions. 2020.0 or earlier could be impacted by "Buffer overflow, type confusion, use-after-free, integer overflow, NULL pointer dereference, and heap overflow vulnerabilities," Autodesk explains.

Thirdwayv, a leading provider of end-to-end connectivity and security solutions for IoT applications, announced it has completed the formation of its Advisory Board with the appointment of five executives from a cross section of industries and disciplines that are fueling the next major wave of connected medical solutions and other safety-critical products and services. The five industry veterans who have joined Dr. Aiman Abdel-Malek, the Thirdwayv Advisory Board's executive chairman, include David C. Klonoff, M.D., who is founder of the Diabetes Technology Society that was key in driving the development of digital diabetes systems globally.