Security News

Plundervolt is a software-based attack on recent Intel processors running SGX enclaves that lowers the voltage to induce faults or errors that allow the recovery of secrets like encryption keys. Half the point of SGX is to protect sensitive code and data from rogue server administrators when said servers are out of reach and in someone else's data center - such as a cloud provider's - and yet it is possible for someone at a cloud provider with physical access to a box to jolt an Intel processor into breaking its SGX protections.

Infosys launched Infosys Live Enterprise Application Management Platform to help organizations run their IT portfolios as engines driving intuitive decisions, building responsive value chains, and delivering perceptive experiences for the business. "We selected Infosys, based on the promise of efficiencies that the Live Enterprise Application Management Platform brings for the digital transformation of Tyson Foods' enterprise value chain."

SonicWall announced the expansion of its Capture Cloud Platform with the addition of the high-performance NSa 2700 firewall and three new cost-effective TZ firewall options. The new SonicWall NSa 2700 expands multi-gigabit threat performance to enterprises, MSSPs, government agencies, as well as key retail, healthcare and hospitality verticals.

Uptycs announced a robust update that enhances detection and investigation for on-premises and cloud workloads. The new capabilities enable the continuous capture of rich host data for Linux, Windows, macOS, and containers, as well as cloud provider data for AWS -to ensure the broadest detection coverage possible.

The new HPE GreenLake for VDI cloud services provide organizations with a proven set of technologies to adapt to a rapidly growing remote employee population through simplified management, faster time to productivity, more security and control, and cost savings. HPE provides industry-leading cloud services and solutions that empower organizations to re-think the way people work, including from home and on mobile devices, by delivering a secure, customized, productive, and exceptional user experience to employees.

NVIDIA released a security update for the GeForce Now cloud gaming Windows app to address a vulnerability that could allow attackers to execute arbitrary code or escalate privileges on systems running unpatched software. NVIDIA's cloud gaming service can be used by customers who own NVIDIA Shield, desktop, or mobile devices via dedicated apps.

ADTRAN announced Mosaic One, a cloud-based network and service optimization platform that simplifies the deployment of broadband services. The platform collects, correlates and analyzes data from the broadband network gateway, the broadband access network and the in-home network to proactively address service issues and improve the subscriber experience.

Threat Stack announced ThreatML, its new machine learning engine that enhances security observability for the Threat Stack Cloud Security Platform, Threat Stack Oversight, and Threat Stack Insight with anomaly detection. The Threat Stack Cloud Security Platform collects, normalizes, and analyzes over 60 billion events per day from customer cloud infrastructure and applications.

CyberArk announced CyberArk Cloud Entitlements Manager, a privilege-based, artificial intelligence-powered service designed to strengthen the security of cloud environments. Through continuous monitoring of cloud access, CyberArk enforces least privilege by identifying and removing excessive cloud permissions that can leave organizations vulnerable - significantly reducing risk and improving overall visibility and security.

Microsoft has added a new group policy in Windows 10 20H2 that allows you to disable a new feature that customizes the taskbar based on what accounts or devices you have. In the Windows 10 Insider Build 20161, Microsoft introduced a new feature called "Programmable Taskbar" that customizes the Windows 10 taskbar when logging into an account for the first time.