Security News

Infosec products of the month: April 2023
2023-05-01 02:30

Abnormal Security expands its platform and launches new products. Abnormal Security launched three new products focused on expanding security detection for Slack, Microsoft Teams and Zoom.

A third-party’s perspective on third-party InfoSec risk management
2023-04-24 04:30

In the complex and fast-moving world of cybersecurity-meets-regulations, working with third parties requires diligent third-party risk management oversight to monitor data management and processes. Improving InfoSec risk management can provide insights into how data is handled, the security safeguards in place to protect that data, potential security weaknesses, and better adherence to the multitude of data, security, and privacy regulations.

Bank rewrote ads for infosec jobs to stop scaring away women
2023-04-04 05:37

Australia's Westpac bank re-wrote its job ads for infosec roles after finding the language it used deterred female candidates. The land down under, like most other lands, has a shortage of cyber security professionals.

Infosec products of the month: March 2023
2023-04-03 02:45

Appdome's ThreatScope Mobile XDR gathers thousands of threat signals from mobile app security, hacking, fraud, malware, cheat and bot attacks from inside each of 100M deployed mobile apps and translates that data into brand relevant views that cyber, fraud and business teams can use to evaluate and respond to mobile threats and attacks in real time. The module further strengthens XSIAM's ability to consolidate multiple security operations capabilities into a unified, AI-driven security operations center platform.

Psst! Infosec bigwigs: Wanna be head of security at HM Treasury for £50k?
2023-03-31 11:40

Given the importance of the Treasury department's function to Britain, Reg readers might expect the Head of Cyber Security vacancy currently being advertised would come with a salary that reflects its criticality. "We're looking for a Head of Cyber Security to join the team and provide advice to seniors on cyber risks across our services and systems," the posting reads.

India's absurd infosec reporting rules get just 15 followers
2023-03-22 03:30

India's rules requiring local organizations to report infosec incidents within six hours of detection have been observed by a mere 15 entities/. Analysts quickly pointed out that requiring organizations to report an incident just six hours after detecting it would likely lead to poor-quality reports being filed.

Xi, Putin, declare intent to rule the world of AI, infosec
2023-03-22 01:58

Russian president Vladimir Putin and his Chinese counterpart Xi Jinping have set themselves the goal of dominating the world of information technology. The rest of the world may never recognize it, as appetite to acquire Russian and Chinese tech outside the two nations and their small circle of allies is not vast.

Infosec products of the month: February 2023
2023-03-01 04:00

The platform provides real, actionable intelligence to support various security teams across an organization in their efforts to uncover threats and proactively prevent digital crimes. SecuriThings Managed Service Platform secures physical security devices.

DNA testing biz vows to improve infosec after criminals break into database it forgot it had
2023-02-20 20:30

A DNA diagnostics company will pay $400,000 and tighten its security in the wake of a 2021 attack where criminals broke into its network and swiped personal data on over two million people from a nine-year-old "Legacy" database the company forgot it had. The genetic testing firm, DNA Diagnostics Center reached a settlement deal with states' attorneys general in Ohio and Pennsylvania last week, after the social security numbers of 45,000 residents of the two states was exposed, with each of the states getting $200k. DDC offers paternity testing, immigration testing, veterinary DNA testing and forensic testing.

FBI catches up with infosec and crypto communities, blames Lazarus Group for $100 million heist
2023-01-25 01:45

The FBI has confirmed what cybersecurity researchers have been saying for months: the North Korean-sponsored Lazarus Group was behind the theft last year of $100 million in crypto assets from blockchain startup Harmony. In its January 23 statement on the matter, the FBI said the attack on Harmony was part of a North Korean malware campaign named "TraderTraitor."