Tag: Help Net Security

ReversingLabs identified close to 11,200 unique malicious packages across three major open-source software platforms in 2023: npm, PyPI, and RubyGems. These findings mark an astounding 1,300% increase in malicious packages from 2020 and an increase of 28% over 2022 when…

Read more →

Tufin announced Dashboard Essentials, a new extension to the Tufin Orchestration Suite that improves analytics for monitoring security, compliance, and operational efficiency. The extension gives customers access to specialized analytics tools that help track the progress of their security implementation…

Read more →

Seceon announces aiSIEM-CGuard enabling partners and customers with comprehensive protection, detection, automatic remediation for cloud-powered resources. With an automated signup process and margin-friendly pricing, MSP/MSSPs can now add protection for cloud workloads like Microsoft 365 email, OneDrive, and endpoints and…

Read more →

Cato Networks announced the expansion of the Cato SASE Cloud platform into threat detection and incident response with Cato XDR, a SASE-based, extended detection and response (XDR) solution. Available immediately, Cato XDR utilizes the functional and operational capabilities of the…

Read more →

Zscaler has introduced Zscaler Zero Trust SASE, single-vendor SASE solution built utilizing Zscaler Zero Trust AI to help organizations reduce cost and complexity while implementing zero trust security across users, devices, and workloads. Additionally, Zscaler announced general availability for its…

Read more →

Besides fixing an actively exploited zero-day vulnerability, the latest update for the iOS 17 branch offers a new feature to help you protect your accounts and sensitive information in case your iPhone gets stolen. Stolen Device Protection If enabled, the…

Read more →

Veriti launched its AI powered contextual cybersearch solution, Veriti Odin. Leveraging advanced AI architecture, Odin is designed to optimize and elevate the way businesses approach cybersecurity, creating certainty that solutions are deployed correctly, and configured accurately, and protecting against threats…

Read more →

Silobreaker has integrated with DarkOwl for credential monitoring. The DarkOwl Credential Monitoring solution continuously checks for exposed credentials in darknet and darknet-adjacent sites, providing Silobreaker customers with detailed alerting and analytics within a single platform. Credential exposure can lead to…

Read more →

Atakama unveild the Atakama Browser Security Platform for MSPs. Developed in collaboration with 30-plus MSP design partners, over the past year, Atakama has broken new ground with a revolutionary browser security solution. The unveiling signals an opportunity for MSPs to…

Read more →

Onfido launched its Compliance Suite, an all-in-one identity verification solution that empowers fast-growth businesses to expand seamlessly into new markets and meet local regulatory needs for customer onboarding. Onfido’s Compliance Suite introduces Qualified Electronic Signature (QES) and One-time Password (OTP)…

Read more →

Apple has fixed an actively exploited zero-day vulnerability (CVE-2024-23222) that affects Macs, iPhones, iPads and AppleTVs. About CVE-2024-23222 CVE-2024-23222 is a type confusion issue that affects WebKit – Apple’s browser engine used in the Safari web browser and all iOS…

Read more →

Thales announced the launch of its PQC Starter Kit in collaboration with Quantinuum. This offering helps enterprises prepare for Post-Quantum Cryptography (PQC). The kit provides a trusted environment for businesses to test quantum-hardened PQC-ready encryption keys and understand the implications…

Read more →

Someone is selling scraped data of millions of users of Trello, a popular a web-based list-making application and project management platform, on a dark web hacker forum. The database dump “contains emails, usernames, full names and other account info,” the…

Read more →

No company is immune to cyberattacks, but when the inevitable happens, too many companies still try to maintain a wall of silence. In fact, over half of security professionals admit their organizations maintain a culture of security through obscurity, with…

Read more →

In this Help Net Security video, Adam Marrè, CISO at Arctic Wolf, explains how state and local governments must focus on cybersecurity as the 2024 election approaches in the United States. State and local IT and cybersecurity teams usually have…

Read more →

In this Help Net Security interview, Jean-Philippe Aumasson, CSO at Taurus, emphasizes the often-overlooked complexities of key generation, storage, and distribution, underlining the necessity for a high level of security maturity in handling digital assets. Looking ahead, Aumasson predicts that…

Read more →

Cyber incidents such as ransomware attacks, data breaches, and IT disruptions are the biggest worry for companies globally in 2024, according to Allianz. The closely interlinked peril of business interruption ranks second. Natural catastrophes (up from #6 to #3 year-on-year),…

Read more →

Email security risks remain high with 94% of organizations experiencing incidents in the past 12 months, according to Egress. Inbound email incidents primarily took the form of malicious URLs, attacks sent from a compromised account, and malware or ransomware attachments.…

Read more →

Netskope announced the next addition to its family of single-vendor SASE offerings, focused on midmarket organizations and the Managed Service Providers (MSP) that serve them. The ongoing expansion of Netskope’s SASE portfolio enables Netskope and its partners to deliver a…

Read more →

A recently patched vulnerability in Microsoft Outlook (CVE-2023-35636) that can be used by attackers to steal users’ NTLM v2 hashes can be exploited by adding two headers to an email carrying a specially crafted file, security researcher Dolev Taler has…

Read more →