Security News

New infosec products of the week: November 12, 2021
2021-11-12 06:30

iStorage datAshur SD offers data storage solution to securely share and scale unlimited encrypted data. Rather than the classic USB flash-drive design of incorporating fixed memory, the brand new datAshur SD is designed with an integrated microSD Card slot which enables consumers to use one drive with as many iStorage microSD Cards, in varying capacities, as required, ultimately offering a data storage solution to securely share and scale unlimited encrypted data.

Shotgun targeting of malware attacks will be the defining infosec theme of 2022, reckons Sophos
2021-11-09 19:30

Future malware and ransomware infections will consist of "Shotgun attacks with pinpoint targeting", according to Sophos' 2022 threat report. As if that wasn't enough, the British infosec biz reckons established commodity malware attacks will end up delivering ever more ransomware, while extortion tactics used by ransomware gangs will become more diverse and intense - with the aim of browbeating victims into handing over cash.

New infosec products of the week: November 5, 2021
2021-11-05 07:00

Here's a look at the most interesting product releases from the past week, featuring releases from Cynamics, Imperva, Linux Foundation, Netscout and Tenable. Tenable has released Nessus 10 and extended supported platforms to include Raspberry Pi, allowing penetration testers, consultants, security teams and students to deploy the power of Nessus anywhere.

Infosec products of the month: October 2021
2021-11-01 05:30

In hybrid AD environments, DSP displays a single view of security indicators in both AD and Azure AD-empowering IT teams to correlate changes that cross between on-premises and cloud environments and could signal an in-progress attack. Abnormal Security ICES platform protects against the full spectrum of email attacks.

New infosec products of the week: October 29, 2021
2021-10-29 06:00

Socure Sigma Identity Fraud enables enterprises to reduce fraud losses and false positives. Sigma Identity Fraud delivers an identity fraud classification model by utilizing over 17,000 features that analyze every aspect of a consumer's identity-name, email, phone, address, IP, device, velocity, network intelligence, and real-time consortium feedback data.

If your hair isn't already gray, 2022's security threats will get it there, warn infosec duo
2021-10-28 07:25

FireEye and McAfee, whose business models center around charging enterprises money to protect their networks from cyber-threats, issued a joint report this week predicting next year you'll see an increase in cyber-threats, particularly those against enterprise networks and the staff who run them. Nation states will "Increase their offensive operations by leveraging cybercriminals." as senior principal McAfee engineer Christiaan Beek theorized, citing the example of US indictments against four Chinese nationals who were allegedly running front companies on behalf of Beijing.

New infosec products of the week: October 22, 2021
2021-10-22 06:00

ThreatConnect launches Risk Quantifier 6.0 to bring cyber risk quantification for businesses. ThreatConnect Risk Quantifier enables companies to see the financial risks they face from cyber attacks and also prioritize investments that provide ROI. RQ's calculations are informed by your internal environment, threat intelligence, vulnerability management, operations and response data found within ThreatConnect and other integrations.

Crims target telcos' Linux and Solaris boxes, which don't get enough infosec love
2021-10-20 05:40

Security vendor CrowdStrike claims it's spotted the group and that it "Has been consistently targeting the telecommunications sector at a global scale since at least 2016 to retrieve highly specific information from mobile communication infrastructure, such as subscriber information and call metadata." The gang appears to understand telco operations well enough to surf the carrier-to-carrier links that enable mobile roaming, across borders and between carriers, to spread its payloads. "Whatever the group is called, the pair write that it"employs significant operational security measures, primarily establishing implants across Linux and Solaris servers, with a particular focus on specific telecommunications systems, and only interacting with Windows systems as needed.

New infosec products of the week: October 15, 2021
2021-10-15 05:40

Here's a look at the most interesting product releases from the past week, featuring releases from Aqua Security, AT&T, Datto, Huntress and ReliaQuest. ReliaQuest releases two capabilities within its XDR platform to improve security operation efficacies.

Incident Response: 5 Principles to Boost the Infosec/Legal Relationship
2021-10-11 12:00

Around half of organizations polled for Kroll's The State of Incident Response 2021 report said that their teams lack clarity around when to engage legal counsel about a potential incident. The multi-layered nature of incident response demands input from resources across an organization, particularly legal.