Security News

Netgear has patched three bugs in one of its router families that, if exploited, can allow threat actors to bypass authentication to breach corporate networks and steal data and credentials. Microsoft security researchers discovered the bugs in Netgear DGN-2200v1 series routers while they were researching device fingerprinting, Microsoft 365 Defender research team's Jonathan Bar Or said in a blog post, posted Wednesday.

LoginID announced additional SDK options for developers. These SDKs empower developers to integrate FIDO strong authentication into their websites or apps.

BioConnect announced a collaboration with HID Global to bring authentication to its HID Mobile Access solution alongside a mobile survey option for wellness declaration for employee health status and activity logging. BioConnect expands the options for HID Mobile Access users with enterprise issued biometrics or multi-factor authentication right from their mobile device with the BioConnect Mobile Authenticator to meet new and more stringent compliance requirements.

Multiple large organizations were found to be impacted by an authentication bypass in Adobe Experience Manager CRX Package Manager, according to a warning from security vendor Detectify. The Adobe Experience Manager is a content management solution used for the building of websites and mobile applications, while also allowing developers to manage marketing content and assets.

Just as daleks can't climb stairs and 1960s self-aware computers hell-bent on world domination can't answer the question "Why?" without spontaneously combusting, it seems that robots don't know how to tick. Evidently, neither do I. The Californian robot that is evaluating whether I am also a robot is unconvinced by my ticking.

VMware has fixed an uber-severe bug in its Carbon Black App Control management server: A server whose job is to lock down critical systems and servers so they don't get changed willy-nilly. Besides the authentication-bypass fix, VMware also published a security advisory for a high-risk bug in VMware Tools, VMware Remote Console for Windows, and VMware App Volumes products.

VMware Carbon Black App Control has been updated this week to fix a critical-severity vulnerability that allows access to the server without authentication. Carbon Black App Control is designed for corporate environments, to harden the security of systems both old and new, and protect them against unauthorized modifications, such as those generated by malware or zero-day exploits.

Identity solutions provider Transmit Security on Tuesday announced raising $543 million in a Series A funding round. Transmit noted that this is the largest Series A funding round ever announced by a cybersecurity company and one of the highest valuations for a bootstrapped firm.

Kensington introduced two new cross-platform solutions that feature the latest in biometric authentication, enabling secure biometric authentication in the office, at home, or abroad, on services that include Google, Facebook, Microsoft, and more, on any operating system. VeriMark Guard USB-C Fingerprint Key and VeriMark Guard USB-A Fingerprint Key offer an easy-to-use, highly-reliable authentication solution that greatly enhances security, convenience, and privacy for consumers and business users.

LoginID announced additional investment from Visa on the heels of its $6M seed round from veteran payment and fintech entrepreneurs. Visa recognizes that strong authentication solutions from companies like LoginID help promote its vision to improve integrity around payments - both reducing fraud and helping merchants meet global regulatory and compliance demands.