Security News

More than half of IT and cybersecurity professionals noted ransomware or zero-day attacks as the biggest threats to their organization, according to a Deep Instinct survey. The report highlights current and emerging threats, the impact these have on the day-to-day lives of SecOps professionals, and how automation will play a significant role moving forward.

Microsoft's inattentive approach to Linux has continued unabated, with reports that the signing key for its Debian Skype repository has expired. Far be it from us to suggest that we are perhaps witnessing an attempt by Microsoft to steer users toward Teams on Linux rather than that old Skype thing.

From WannaCry, Petya, and SamSam to Ryuk, these ransomware attacks have caused huge financial and reputation losses for both public and private sector organizations - the recent attacks on Colonial Pipeline are just the latest example. Most of successful ransomware attacks happen because organizations overlook a simple security practice.

Such attacks could be carried out via a malicious Microsoft Teams tab and Power Automate flows, Grant explained. Ca organization - can create a malicious Teams tab and use it to "Eventually steal emails, Teams messages and files from gooduser(at)fakecorp.ca, and send emails and messages on their behalf."

Ascend.io announced results from its research study about the work capacity and priorities of data teams, including data analysts, data scientists, data engineers, and enterprise architects. Amid the significant increase in the number of data pipelines across their organization, 74% of data professionals indicated their organization's need for data products is growing faster than their team size.

The role DNS plays in network securityNew EfficientIP and IDC research sheds light on the frequency of the different types of DNS attack and the associated costs for the last year throughout the COVID-19 pandemic. New Google tool reveals dependencies for open source projectsGoogle has been working on a new, experimental tool to help developers discover the dependencies of the open source packages/libraries they use and known security vulnerabilities they are currently sporting.

A Microsoft Teams change is causing calls to go directly to voicemail, much to users' happiness worldwide. At approximately 3 PM EST today, Microsoft tweeted that a bug is causing Microsoft Teams calls to go straight to Voicemail.

Microsoft has fixed a known issue causing Microsoft 365 to experience authentication issues when logging into desktop client apps like Microsoft Teams, OneDrive for Business, and Microsoft Outlook. If restarting the affected systems doesn't allow logins, customers are also advised to use the web versions of Microsoft Teams, OneDrive for Business, and Outlook.

A recent Microsoft Teams update is causing a "Select a certificate" prompt to be displayed to Teams users before they can use the software. Microsoft has acknowledged the bug and is tracking the issue under the 'TM261228' advisory, where they state a recent update to the software is causing the problem.

New updates to Prisma Cloud, Palo Alto Networks Cloud Security Posture Management solution, help eliminate dangerous cloud blind spots and free security teams from the burden of alert fatigue. Most security solutions are not designed for this new world and lack the end-to-end visibility needed to accurately assess risks and alert security teams of advanced attacks, leaving them to deal with both unsecured cloud resources and the cacophony of false-positive alerts.