High-Tech Cars & Cyber Security: Separating Fact from Fiction
Imagine this scenario: As you you’re driving down the highway at 65 miles an hour, a hacker gains control of your car, then sends you into incoming traffic. Here’s the good news: It’s very unlikely that will ever happen to you personally. Here’s the bad news: It could still happen, and, if it happens, attackers…
Arista partners with VMware and Zscaler for hybrid cloud security
Arista Networks announced security capabilities focused on private, hybrid and public cloud networking. Based on Arista’s cloud-grade EOS and CloudVision software, Arista’s approach redefines silo security into holistic security designed for a multi-cloud environment. Key integration includes VMware NSX Data Center and Zscaler for holistic security. The new security expansion delivers three attributes: network segmentation,…
7 Serious IoT Vulnerabilities
The security of Internet of Things (IoT) devices, especially those intended for consumer use, tends to fall on a spectrum between “serious concern” and “industry joke.” Yet the fact is that a growing number of employees have various IoT devices in their homes — where they also could be connecting to an enterprise network to…
Hackers Leverage AWS To Breach, Persist In Corporate Networks
A new body of evidence indicates threat actors are using increasingly advanced techniques to target cloud providers and leveraging cloud-specific traits to hide their activity as they breach and persist in target networks. Data comes from the Threat Stack security team, which spotted the pattern over multiple years of observing behavior on client networks. It…
Corporate pre-crime: The ethics of using AI to identify future insider threats
To protect corporate networks against malware, data exfiltration and other threats, security departments have systems in place to monitor email traffic, URLs and employee behaviors. With artificial intelligence (AI) and machine learning, this data can also be used to make predictions. Is an employee planning to steal data? To defraud the company? To engage in…
Cloud computing remains top emerging business risk
Cloud computing ranks as the top risk concern for executives in risk, audit, finance and compliance, according to the latest survey by Gartner. In Gartner’s latest quarterly Emerging Risks Report, 110 senior executives in risk, audit, finance and compliance at large global organizations identified cloud computing as the top concern for the second consecutive quarter….
How to make cybersecurity incidents hurt less
You take time with your staff to regularly review what they should do in a fire (where are the exits? Don’t use the elevator. Where is the muster point? Is the fire department called automatically, or will someone have to call when they are safely out of the building? Who is responsible for doing a…
New Office 365 phishing attack uses malicious links in SharePoint documents
Fake emails targeting Office 365 users via malicious links inserted into SharePoint documents are the latest trick phishers employ to bypass the platform’s built-in security, Avanan researchers warn. The cloud security company says that the phishing attack was leveraged against some 10% of its Office 365 customers in the past two weeks and they believe…
Get serious about consumer data protection
The idea that organizations should be doing more to protect the personal data they hold about individuals has been gaining ground in recent years. The European Union’s General Data Protection Regulation (GDPR) sparked a scramble to operationalize data management and security. If you thought that it was a one-off, then the incoming California Consumer Privacy…
Back to school cybersecurity: hints, tips, and links for a safer school year
It’s that time of year again when parents are slowly gearing up for a new school term. Some schools have a strict policy of only using their own pre-approved lab devices, while others allow students to bring their own devices. Whatever the plan, it’s never too early to start thinking about some of the potential…