eCommerceNews Asia - Technology news for digital commerce decision-makers

Security vulnerabilities stories

Story image
China-based threat group targeting public cloud - Radware
This month
#
ransomware
#
public cloud
#
malware
Radware has issued a threat advisory about a for-profit threat group from China known as the 8220 Gang, who has emerged in the New Year targeting public cloud environments.
Story image
Trustwave provides new feature for threat hunting platform
This month
#
cybersecurity
#
trustwave
#
security vulnerabilities
Trustwave has relaunched its Advanced Continual Threat Hunting platform with a unique feature allowing its SpiderLabs threat hunting teams to carry out many more human-led threat hunts.
Story image
Claroty’s Team82 finds vulnerabilities in historian server
This month
#
cybersecurity
#
security vulnerabilities
#
data breach
Claroty's research team, Team82, has examined the GE Proficy Historian, finding five exploitable vulnerabilities capable of causing damage to the system.
Story image
Data breach in 2023 to exceed US$5 million/incident: Acronis
Last month
#
ransomware
#
phishing
#
cybersecurity
Between July and October, Acronis found that the proportion of phishing attacks has risen by 1.3, accounting for 76% of all attacks.
Story image
GreyNoise Intelligence identifies exploitation threats for 2023
Last month
#
cybersecurity
#
internet
#
business analyst
“When it comes to cybersecurity, not all vulnerabilities are created equal, and many of the ones that garner media attention actually turn out to be insignificant."
Story image
Iran-sponsored group using GitHub to deploy custom malware
Last month
#
secureworks
#
security vulnerabilities
#
github
The Secureworks Counter Threat Unit (CTU) has uncovered a subgroup of Iranian Cobalt Mirage using GitHub to store and deploy malware.
Story image
China-based threat group targeting SE Asia, says Mandiant
Last month
#
malware
#
cybersecurity
#
security vulnerabilities
Identified as UNC4191, this cyber espionage threat leverages USB devices as an initial infection vector, concentrates on the Philippines, and has a China nexus.
Story image
ASX 200 companies on-par with FTSE 350, Fortune 500 - report
Last month
#
email security
#
asx
#
security vulnerabilities
A new report by Rapid7 has found that companies listed on the ASX 200 have a good security posture, and the attack surface overall is on-par with global counterparts in the FTSE 350 and Fortune 500.
Story image
Rapid7 unveils new capabilities to simplify CDR at AWS event
Thu, 1st Dec 2022
#
aws
#
security vulnerabilities
#
rapid7
Rapid7 is showcasing a range of new capabilities at Amazon Web Services (AWS) re:Invent 2022, designed to make cloud detection and response (CDR) and vulnerability assessments easier.
Story image
Varonis Systems launches new program through HackerOne
Thu, 1st Dec 2022
#
saas
#
cloud security
#
security vulnerabilities
Data security and analytics pioneer Varonis Systems has launched its public vulnerability disclosure program through HackerOne.
Story image
Forescout’s Vedere Labs details OT vulnerabilities in latest study
Wed, 30th Nov 2022
#
it in manufacturing
#
attack
#
forescout technologies
Forescout’s Vedere Labs disclosed an update to its OT:ICEFALL study distributed in June 2022, which detailed vulnerabilities found in thousands of OT devices.
Story image
Gallagher named Security Software Manufacturer of the Year
Mon, 28th Nov 2022
#
gallagher
#
integrated products
#
security vulnerabilities
Global security manufacturer Gallagher has been awarded the Security Software Manufacturer of the Year accolade at the 2022 Security & Fire Excellence Awards.
Story image
Application Portfolio Management: A quick win today or a crisis tomorrow
Wed, 23rd Nov 2022
#
digital transformation
#
it debt
#
security vulnerabilities
It’s highly likely that Application Portfolio Management (APM) isn’t at the top of your to-do list. It may not even be on your list anymore.
Story image
HackerOne launches Gold Standard Safe Harbour statement
Thu, 17th Nov 2022
#
hackers
#
attack
#
customers
The GSSH is a short, broad, easily-understood safe harbour statement that’s simple for customers to adopt, HackerOne states.
Story image
Genetec warns against cyber crime risk from older systems
Thu, 17th Nov 2022
#
cyber criminal
#
unified threat management
#
security vulnerabilities
With the ever-increasing rise in cyber crime, Genetec is cautioning organisations of all sizes to be vigilant about the cybersecurity risk.
Story image
Varonis Labs discovers SQLi and access flaws in Zendesk
Wed, 16th Nov 2022
#
cybersecurity
#
zendesk
#
security vulnerabilities
Varonis helped solve an SQLi vulnerability and an access control flaw in Zendesk Explore that would have allowed a threat actor to leak data.
Story image
Aqua Security unveils new Lightning Enforcer offering
Wed, 16th Nov 2022
#
cybersecurity
#
zero day malware
#
security vulnerabilities
Aqua Security has announced Lightning Enforcer, a new offering designed to stop zero-day attacks and protect critical vulnerabilities in production from being exposed until a patch can be applied.
Story image
Building on the ‘Essential Eight’ with a people-centric approach to cybersecurity
Wed, 16th Nov 2022
#
iot
#
breach prevention
#
proofpoint
Organisations often combat threats by placing too much emphasis on technology alone and too little emphasis on people and their behaviour.
Story image
Text4Shell++ - Where there’s smoke, there’s fire
Mon, 14th Nov 2022
#
cybersecurity
#
devsecops
#
security vulnerabilities
While being the generally nefarious and curious people that we are - we noticed some further interesting interpolation operators, which could potentially be abused by an attacker and had not been patched out.
Story image
Claroty's Team82 uncovers new ABB TotalFlow vulnerability
Mon, 14th Nov 2022
#
ransomware
#
cybersecurity
#
security vulnerabilities
ABB TotalFlow is used within many large oil and gas utilities worldwide to calculate volume and flow rates for oil and gas, which are critical to electric power manufacturing and distribution.
Story image
Flashpoint releases a new ransomware prediction model
Fri, 11th Nov 2022
#
ransomware
#
cybersecurity
#
predictions
It links individual vulnerabilities in ransomware operations, helping vulnerability management teams prevent potential cyber extortion events with VulnDB.
Story image
GitHub Universe: company unveils new enterprise products
Thu, 10th Nov 2022
#
app development
#
ai
#
open source
GitHub has announced a range of new products designed to accelerate the company's push into major enterprises at its San Francisco event.
Story image
Video: 10 Minute IT Jams - An update from Azul
Wed, 9th Nov 2022
#
java
#
security vulnerabilities
#
threat detection
Today on 10 Minute IT Jams, we are joined by Erik Costlow, who is the Senior Director of Product Management, Azul.
Story image
Azul launches a new Saas to secure software supply chain
Fri, 4th Nov 2022
#
saas
#
cybersecurity
#
java
Azul’s Vulnerability Detection, the new SaaS product, continuously detects vulnerabilities in Java applications by eliminating false positives.
© 2023 Techday, All rights reserved. Hosted on Plan B's Cloud Services. DMARC protection by PowerDMARC.