Security News

This release further extends IoT and unmanaged device visibility and classification, enabling organizations to monitor for risks and proactively strengthen infrastructure via automated segmentation policy generation and enforcement. Ordr SCE discovers every connected device, maps communications patterns, and assesses risks.

Aviatrix, the cloud network platform, announced the sixth major release of its software designed for enterprises transforming their IT infrastructure to public cloud. "We knew from previous experience that the transit networking services offered by the cloud service providers did not consistently offer both the advanced networking and security controls we needed or the ability to support the multi-cloud network architecture we envisioned. Aviatrix delivered both and their single Terraform provider made it easy to fit Aviatrix software into our 'automate everything' culture and operational processes."

Vendor revenue from sales of IT infrastructure products for cloud environments, including public and private cloud, increased 2.2% in the first quarter of 2020 while investments in traditional, non-cloud, infrastructure plunged 16.3% year over year, according to IDC. Pandemic as the major factor driving infrastructure spending. For the full year, investments in cloud IT infrastructure will surpass spending on non-cloud infrastructure and reach $69.5 billion or 54.2% of the overall IT infrastructure spend.

Nutanix announced new solutions that will allow IT teams to deploy, upgrade and troubleshoot their cloud infrastructure while working from anywhere - whether at home or from a central office location. These solutions will be delivered via Nutanix Foundation Central, Insights and Lifecycle Manager - all of which will be available as part of Nutanix HCI software at no additional cost to customers.

A stored cross-site scripting vulnerability in OSIsoft PI System, a product often present in critical infrastructure facilities, can be exploited for phishing, privilege escalation and other purposes. Researchers at industrial cybersecurity company OTORIO discovered that the PI Web API 2019 component of PI System is affected by a stored XSS vulnerability that allows an attacker with limited privileges on the targeted system to conduct various types of activities.

Belden and its Tripwire and Hirschmann brands announced an extended partnership with Forescout to advance cybersecurity for industrial organizations and critical infrastructure. "Network segmentation will be imperative to meet availability requirements for these real-time, next generation industrial automation networks. Belden and Forescout allow operators to begin segmenting their networks today with existing infrastructure, while also providing a trajectory for additional controls as next generation networks are deployed over time."

Hewlett Packard Enterprise announced HPE Edge Orchestrator, a SaaS-based offering that enables telcos to deploy innovative new edge computing services to customers via IT infrastructure located at the edge of telco networks or on customer premises. HPE Edge Orchestrator enables telcos to monetize the 5G network and telco cloud while bringing lower latency, increased security and enhanced end-user experiences to their customers.

70 percent of security professionals believe their local governments cannot adequately safeguard the election infrastructure against domestic and international cyber attacks. "Many of the cyber attacks targeting elections come from machines, which can automatically spread information and direct attacks on the systems that count votes," said Kevin Bocek, vice president of security strategy and threat intelligence at Venafi.

The pandemic has irrevocably changed the way businesses everywhere operate, crystallizing the link between a robust IT infrastructure and business continuity. The report further reveals that 46% of IT professionals felt extremely or very prepared to pivot to the new business landscape.

Securden announced that it has implemented significant enhancements to its remote access solution addressing the crucial IT infrastructure access requirements of the remote workforce, specifically the IT administrators, third-party vendors, and contractors. "The basic tenets of access security - ensuring the right access to the right person only for the required resource and for the required time duration - cannot be fully met resulting in cybersecurity risks," said Bala Venkatramani, CEO of Securden.