Security News

Security researchers warn that some attackers are compromising Microsoft Teams accounts to slip into chats and spread malicious executables to participants in the conversation. More than 270 million users are relying on Microsoft Teams every month, many of them trusting the platform implicitly, despite the absence of protections against malicious files.

Microsoft has drastically reduced Microsoft Teams' power requirements in calls and meetings since June 2020, improving experience consistency and making it more friendly with low-end devices. Robert Aichner, a Principal Group Program Manager at Microsoft, said today that Microsoft Teams now uses up to 50% less power during energy-intensive scenarios like meetings between more than 10 participants where all of them have video toggled on.

As many as 70% of teams report feeling emotionally overwhelmed by security alerts. Cynet aims to correct that in this guide, starting by shining a light on the cause of the problem and the full extent of its consequences and then offering a few ways lean security teams can pull their analysts out of the ocean of false positives and get them back to shore.

While the world's leading financial services evolved, so did the criminals who use increasingly sophisticated methods to commit fraud. For years, many of the world's largest financial institutions treated financial fraud and cybersecurity as separate departments with differing roles, responsibilities, and threats.

Code review remains the biggest influence on improving code quality with unit testing a distant second, a SmartBear survey reveals. With development teams getting larger and remaining remote, a tool-based code review process offers the best advantage, as indicated by 80% of satisfied respondents.

A research from ISACA explores the latest trends in enterprise privacy - from privacy workforce and privacy by design to privacy challenges and the future of privacy. The report highlights the persistent understaffing that is impacting enterprise privacy teams.

Organisations have work to do if they want to attract and retain diverse talent in their security operations teams, according to SOC.OS and Sapio Research. 23% or respondents said they're struggling to incentivise, motivate and retain their SecOps teams.

A successful partnership can also accelerate the resolution of security issues whilst increasing network resilience, helping both network and security teams to achieve their goals. Whilst network operations prioritize producing highly available and high-performing networks, the security teams have the different task of lowering risk to the business and protecting the network.

"The findings confirm our belief that security teams must make improving their relationship with developers a major priority in 2022," said Harshil Parikh, CEO of Tromzo. "They can do this by making security easy for developers. This means integrating security checks into the SDLC and transitioning from security gates to security guardrails so security can become a first-class citizen once and for all."

Microsoft said it won't be fixing or is pushing patches to a later date for three of the four security flaws uncovered in its Teams business communication platform earlier this March. The disclosure comes from Berlin-based cybersecurity firm Positive Security, which found that the implementation of the link preview feature was susceptible to a number of issues that could "Allow accessing internal Microsoft services, spoofing the link preview, and, for Android users, leaking their IP address, and DoS'ing their Teams app/channels."