Security News

The Salt configuration tool has patched two vulnerabilities whose combined effect was to expose Salt installations to complete control by an attacker. Salt is a tool from SaltStack which has both commercial and open source editions.

Several vulnerabilities found by researchers in B&R Automation's Automation Studio software make it easier for malicious actors to launch attacks inside operational technology networks. "The combination of these two vulnerabilities gives an attacker with access to the victim network the ability to conduct an MITM attack and intervene in the software update process," Preminger explained.

RtBrick has announced the availability of its Broadband Network Gateway software. RtBrick's BNG is the first use-case for its FullStack routing software, which runs on merchant-silicon hardware, transforming it into carrier IP/MPLS infrastructure.

Hewlett Packard Enterprise announced the Open Distributed Infrastructure Management initiative, a new open source program that will simplify the management of large-scale geographically distributed physical infrastructure deployments. HPE will introduce an enterprise offering, the HPE Open Distributed Infrastructure Management Resource Aggregator that is aligned with the initiative.

Automation is becoming a powerful tool in cloud security. Roger Hellman of BMC Software discusses specific areas where automation has been beneficial.

Enterprises must embrace innovation to drive secure value to their organization with automation. The latest buzzword in the security lexicon - automation - has been hailed as the key to fundamentally alter how we manage, analyze and execute.

Palo Alto Networks, the global cybersecurity leader, introduced Cortex XSOAR, an extended security orchestration, automation and response platform that empowers security leaders with instant capabilities against threats across their entire enterprise. Palo Alto Networks is redefining the security orchestration, automation and response category by making threat intelligence management a core component.

DFLabs, the award-winning Security Orchestration, Automation, and Response vendor is pleased to announce the availability of IncMan 5.0. The new release of IncMan SOAR will provide clients and partners with an optimized platform with unprecedented speed and flexibility.

Checkmarx, the global leader in software security solutions for DevOps, announced at the RSA Conference 2020 new enhancements to its market-leading Software Security Platform to empower more seamless implementation and automation of application security testing in modern development and DevOps environments. Available now, Checkmarx 'Flow' is an orchestration module for the Checkmarx Software Security Platform that tightly integrates with application release orchestration and agile planning tools.

Less than half of organizations have a privileged access management strategy in place for digital transformation technologies, like RPA, according to a CyberArk report. Limiting access for reprogramming robots - Reduce the risk that comes with RPA permissions - like the ability to reprogram robots - by securely managing credentials to RPA tools and training RPA teams on secure software development practices.