Findings from the 2020 Netwrix Cyber Threats Report reveal cybersecurity risks related to insiders are now more common than external threat actors. Since organizations went remote, four of the top six types of cybersecurity incidents they experienced were caused by internal users.
A new survey from Genetec reveals that COVID-19 has led to a focus on security efforts to ensure the safety of people and facilities. For the majority of security professionals, the top three challenges during the pandemic are managing employee/visitor safety; dealing with physical security threats (e.g. vandalism, theft, break-ins, etc.); and the remote management and securing of buildings.
The Information Security Forum (ISF) has announced the organization’s outlook for the top global security threats that businesses will face in 2021. Here are some of threats for the coming year.
The CERT Coordination Center (CERT/CC) has released information on 33 vulnerabilities, known as AMNESIA:33, affecting multiple embedded open-source Transmission Control Protocol/Internet Protocol (TCP/IP) stacks. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The IoT Cybersecurity Improvement Act has been officially signed into law. The bipartisan legislation, sponsored by Reps. Robin Kelly, D-Ill., and Will Hurd, R-Texas, and Sens. Mark Warner, D-Va., and Cory Gardner, R-Colo., requires that any IoT device purchased with government money meet minimum security standards.
Silicon Valley company FireEye, who is often on the front lines of defending companies and critical infrastructure from cyberattacks, has been breached by hackers.
The boards of directors of G4S have made a recommendation to its shareholders that it accept a cash offer from Atlas UK Bidco Limited, a newly incorporated entity that is indirectly controlled by Allied Universal. Shareholders have not yet voted, however, and other offers could still be made.
CoxHealth’s Public Safety and Security team has added K-9 officers Hugo and Ackley, both registered German Shepherds, who will begin making patrols at Cox South and Cox North in the coming weeks.
Synopsys, Inc. released the report, DevSecOps Practices and Open Source Management in 2020, exploring the strategies that organizations around the world are using to address open source vulnerability management as well as the growing problem of outdated or abandoned open source components in commercial code.
The National Security Agency (NSA) released a Cybersecurity Advisory on Russian state-sponsored actors exploiting CVE-2020-4006, a command-injection vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. The actors were found exploiting this vulnerability to access protected data on affected systems and abuse federated authentication.
RSS
