Tag

Information Security

Microsoft Pushes for More Secure Windows Authentication, Plans to Eliminate NTLM Protocol
Cyber Security
Microsoft Pushes for More Secure Windows Authentication, Plans to Eliminate NTLM Protocol

Microsoft is taking significant steps to enhance the security of Windows authentication by introducing new features for the Kerberos protocol, with the ultimate aim of eliminating the use of the vulnerable NTLM protocol. This proactive approach from Microsoft comes as NTLM is increasingly being targeted by relay attacks, and its weak password protection can easily be compromised with modern hardware.

Read More
VPNs: The Underpinning of Secure Digital Transformation for Global Businesses
IT Digital Transformation
VPNs: The Underpinning of Secure Digital Transformation for Global Businesses

In today’s digital age, where remote work and global connectivity are the norm, virtual private networks (VPNs) have become increasingly relevant to the success of digital transformation for teams and employees. This article examines the benefits and importance of VPNs in enhancing productivity, safeguarding online activities, and protecting businesses from cyber threats. Benefits of VPNs for organizations By enabling secure

Read More
Facing the Future: Navigating the Interplay of Cybersecurity Requirements, Rising Cyber Threats, and the Role of DevSecOps
DevOps
Facing the Future: Navigating the Interplay of Cybersecurity Requirements, Rising Cyber Threats, and the Role of DevSecOps

As the threat landscape continues to evolve and cybercriminals wreak havoc on businesses, companies seeking cyber insurance policies are facing increasingly stringent cybersecurity requirements. Insurance providers are keen to protect themselves from the ever-increasing damage caused by cyberattacks. In recent years, insurance companies have started incorporating Privileged Access Management (PAM) into their cybersecurity standards as a necessary component for cyber

Read More
Flagright partners with Banked to enhance AML compliance and fraud prevention in digital payments
Digital Lending / Digital Payments
Flagright partners with Banked to enhance AML compliance and fraud prevention in digital payments

In a strategic partnership, Flagright, a leading provider in anti-money laundering (AML) compliance and fraud prevention, has welcomed Banked as its latest customer. This alliance is projected to significantly transform the landscape of digital payment security, offering enhanced protection to merchants and consumers alike. Banked’s Unique Approach to Payment Methods Banked has been making waves in the payment industry by

Read More
Progress Software Faces Mounting Legal Challenges and Investigations Following May Mass Attack on MOVEit Software
Cyber Security
Progress Software Faces Mounting Legal Challenges and Investigations Following May Mass Attack on MOVEit Software

The zero-day campaign targeting Progress Software’s MOVEit file transfer software in May has unleashed a wave of litigation and governmental investigations, as disclosed in the company’s regulatory filing. This article delves into the details of the incident, highlighting the involvement of the U.S. Securities and Exchange Commission (SEC) and the extensive reach of the attack. Additionally, it explores the legal

Read More
Persistent Vulnerabilities in Squid Proxy: A Critical Security Concern
Cyber Security
Persistent Vulnerabilities in Squid Proxy: A Critical Security Concern

Dozens of vulnerabilities affecting the popular Squid caching and forwarding web proxy have remained unpatched, despite being responsibly disclosed to developers two years ago. This poses a significant security risk for the numerous organizations relying on Squid as their open-source proxy solution. Background Squid is widely recognized as one of the most widely used open-source proxies, relied upon by millions

Read More
Juniper Networks Addresses Over 30 Vulnerabilities in Junos OS and Junos OS Evolved
Cyber Security
Juniper Networks Addresses Over 30 Vulnerabilities in Junos OS and Junos OS Evolved

Juniper Networks, a leading provider of networking solutions, has recently released software updates to patch a total of more than 30 vulnerabilities found in its Junos OS and Junos OS Evolved operating systems. Among these vulnerabilities are nine high-severity flaws, highlighting the critical need for users to promptly apply the available patches. In this article, we will provide an overview

Read More
Unleashing the Beast: Overcoming the Monstrous HTTP Attack on Cloudflare
Cyber Security
Unleashing the Beast: Overcoming the Monstrous HTTP Attack on Cloudflare

Cloudflare, an internet infrastructure and cybersecurity company, found itself unexpectedly thrown into the throes of a gargantuan HTTP attack of unprecedented scale. With over 201 million requests per second, this onslaught, which began on August 25, 2023, posed a significant challenge for Cloudflare’s defense mechanisms and overall system integrity. Surprisingly, this massive attack was initiated by a relatively modest botnet

Read More
SAP Releases Security Patches to Address Multiple Vulnerabilities on Patch Day in October 2023
Cyber Security
SAP Releases Security Patches to Address Multiple Vulnerabilities on Patch Day in October 2023

SAP, a leading provider of enterprise software solutions, has recently released a set of security patches for the October 2023 Patch Day. These patches include new Security Notes, as well as updates to previously released Security Notes. The purpose of these patches is to address several security vulnerabilities that have been identified and to ensure the continued integrity and protection

Read More
Cybersecurity Experts Warn of Expected Increase in Political Cyberattacks
Cyber Security
Cybersecurity Experts Warn of Expected Increase in Political Cyberattacks

Amid ongoing geopolitical tensions across the globe, cybersecurity experts anticipate a surge in cyber attacks related to political activities. As the situation persists, the risk of coordinated cyber activity looms large. This article delves into the predicted rise in cyber threats, explores the various types of political cyber activities, and highlights potential sources and targets. The Possibility of Coordinated Cyber

Read More
Evading Detection: Cybercriminals Target Linux SSH Servers with the ShellBot Malware
Cyber Security
Evading Detection: Cybercriminals Target Linux SSH Servers with the ShellBot Malware

Cyberattacks are an ever-evolving threat, with new methods constantly being devised to infiltrate systems and compromise data. One such method is the use of ShellBot malware, which specifically targets Linux SSH servers. In this article, we will delve into the various aspects of ShellBot attacks, from its capabilities and evasion techniques to protective measures for administrators. Overview of the ShellBot

Read More
ESMA Report on DeFi Highlights Risks and Rewards in the EU Financial System
DevOps
ESMA Report on DeFi Highlights Risks and Rewards in the EU Financial System

The European Securities and Markets Authority (ESMA) recently released an insightful article addressing the potential risks and benefits of decentralized finance (DeFi) in the European Union (EU) market. As the popularity of DeFi continues to surge, this report aims to shed light on the impact this innovative financial sector may have on the established EU financial system. Benefits of DeFi

Read More