Security News

Nutanix announced new solutions that will allow IT teams to deploy, upgrade and troubleshoot their cloud infrastructure while working from anywhere - whether at home or from a central office location. These solutions will be delivered via Nutanix Foundation Central, Insights and Lifecycle Manager - all of which will be available as part of Nutanix HCI software at no additional cost to customers.

A stored cross-site scripting vulnerability in OSIsoft PI System, a product often present in critical infrastructure facilities, can be exploited for phishing, privilege escalation and other purposes. Researchers at industrial cybersecurity company OTORIO discovered that the PI Web API 2019 component of PI System is affected by a stored XSS vulnerability that allows an attacker with limited privileges on the targeted system to conduct various types of activities.

Belden and its Tripwire and Hirschmann brands announced an extended partnership with Forescout to advance cybersecurity for industrial organizations and critical infrastructure. "Network segmentation will be imperative to meet availability requirements for these real-time, next generation industrial automation networks. Belden and Forescout allow operators to begin segmenting their networks today with existing infrastructure, while also providing a trajectory for additional controls as next generation networks are deployed over time."

Hewlett Packard Enterprise announced HPE Edge Orchestrator, a SaaS-based offering that enables telcos to deploy innovative new edge computing services to customers via IT infrastructure located at the edge of telco networks or on customer premises. HPE Edge Orchestrator enables telcos to monetize the 5G network and telco cloud while bringing lower latency, increased security and enhanced end-user experiences to their customers.

70 percent of security professionals believe their local governments cannot adequately safeguard the election infrastructure against domestic and international cyber attacks. "Many of the cyber attacks targeting elections come from machines, which can automatically spread information and direct attacks on the systems that count votes," said Kevin Bocek, vice president of security strategy and threat intelligence at Venafi.

The pandemic has irrevocably changed the way businesses everywhere operate, crystallizing the link between a robust IT infrastructure and business continuity. The report further reveals that 46% of IT professionals felt extremely or very prepared to pivot to the new business landscape.

Securden announced that it has implemented significant enhancements to its remote access solution addressing the crucial IT infrastructure access requirements of the remote workforce, specifically the IT administrators, third-party vendors, and contractors. "The basic tenets of access security - ensuring the right access to the right person only for the required resource and for the required time duration - cannot be fully met resulting in cybersecurity risks," said Bala Venkatramani, CEO of Securden.

It turns out that industrial enterprises are much better positioned to defeat most nation-state attacks on power plants, pipelines, and other critical infrastructures than governments are. Government intrusion detection is a little better at detecting attacks than our own systems and presents serious risks to corporate confidentiality.

Worldwide revenue from the Open Compute Project infrastructure market will reach $33.8 billion in 2024, according to IDC. While year-over-year growth will slow slightly in 2020 due to capital preservation strategies during the COVID-19 situation, the market for OCP compute and storage infrastructure is forecast to see a compound annual growth rate of 16.6% over the 2020-2024 forecast period. "IDC projects massive growth in the amount of data generated, transmitted, and stored worldwide. Much of this data will flow in and out of the cloud and get stored in hyperscale cloud data centers, thereby driving demand for infrastructure," said Kuba Stolarski, research director, Infrastructure Systems, Platforms and Technologies at IDC. OCP technology by segment.

Does your IT security model take into account things like pacemakers? According to Dr Victoria Baines, speaking at Infosec Europe, "We also perhaps neglect the idea that critical infrastructure might be inside people" as well as merely carried in their pockets. Baines was speaking during a panel webinar about protecting critical national infrastructure.