Vulnerabilities Archives - Page 51 of 85

Core cybersecurity principles for new companies and products

Issued by: Help Net Security

The rapid increase in cyberattacks and pressures escalating from changes prompted by COVID-19 have shifted consumer behavior. The findings of a report by the World Economic Forum outline core cybersecurity principles and point to how companies and investors must significantly reduce cyber risk to remain competitive. “There is a serious imbalance between the “time to…

Vulnerabilities

Bitdefender Digital Identity Protection: Safeguarding a person’s online reputation

Issued by: Help Net Security

As the professional world moves increasingly online, Bitdefender announces the global launch of Bitdefender Digital Identity Protection, the service that lets freelancers, self-employed, consultants and even private individuals control their online reputation. Digital Identity Protection taps the award-winning security technology of Bitdefender, perfected over two decades of service in the fight against cybercrime, to let…

Vulnerabilities

5 cybersecurity considerations for getting back to work securely

Issued by: Help Net Security

As governments begin lifting emergency orders, company leaders are considering policies, technology and processes that will protect their workforces. Many of these factors rightly center around health and safety, but we must also acknowledge that all of us are still targets for cyberattacks. The new work-from-home world has poked countless holes in security perimeters, so…

Vulnerabilities

Because IT security and the C-suite are misaligned, digital transformation increases cyber risk

Issued by: Help Net Security

While digital transformation is understood to be critical, its rapid adoption, as seen with cloud providers, IoT and shadow IT, is creating significant cyber risk for most organizations. Today, these vulnerabilities are only exacerbated by misalignment between IT security professionals and the C-suite. The research by CyberGRX and Ponemon Institute surveyed 900 IT security professionals…

Vulnerabilities

Protecting employee COVID-19 health data: What CISOs need to know

Issued by: CSO

Businesses re-opening in the wake of COVID are faced with keeping track of who in the company is healthy, who is sick, and who needs to isolate. A new International Association of Privacy Professionals (IAPP) study shows that 60% of employers are keeping records of employees diagnosed with COVID-19. These new sensitive datasets come at…

Vulnerabilities

Nearly 1,000 Vulnerabilities Found in Popular Open Source Projects in 2019

Issued by: Security Week

RiskSense has analyzed 54 open source projects in which nearly 2,700 vulnerabilities were reported between 2015 and March 2020. Overall, the Jenkins automation server and MySQL had the most vulnerabilities reported during this timeframe, with more than 600 flaws each. For each of these pieces of software, 15 vulnerabilities were weaponized (i.e. public exploit code…

Vulnerabilities

VMware Fixes Fusion Vulnerability Introduced by Previous Patch

Issued by: Security Week

VMware informed customers in mid-March that it had patched a high-severity privilege escalation vulnerability in Fusion, Remote Console (VMRC) and Horizon Client for Mac. The flaw, tracked as CVE-2020-3950, can be exploited by an attacker with regular user privileges to escalate privileges to root. The researchers who independently reported the issue to VMware, Rich Mirch…

Vulnerabilities

Despite lower number of vulnerability disclosures, security teams have their work cut out for them

Issued by: Help Net Security

The number of vulnerabilities disclosed in Q1 2020 has decreased by 19.8% compared to Q1 2019, making this likely the only true dip observed within the last 10 years, Risk Based Security reveals. Vulnerabilities disclosed in Q1 2020: What happened? Many factors have been identified as potential contributors to this decline, including the COVID-19 pandemic,…

Vulnerabilities

Only 36% of critical infrastructures have a high level of cyber resilience

Issued by: Help Net Security

Greenbone Networks revealed the findings of a research assessing critical infrastructure providers’ ability to operate during or in the wake of a cyberattack. The cyber resilience of critical infrastructures The research investigated the cyber resilience of organizations operating in the energy, finance, health, telecommunications, transport and water industries, located in the world’s five largest economies:…

Vulnerabilities

Over half of security leaders still rely on spreadsheets

Issued by: Help Net Security

Senior security leaders within financial services companies are being challenged with a lack of trusted data to make effective security decisions and reduce their risk from cyber incidents, according to Panaseer. Results from a global external survey of over 400 security leaders that work in large financial services companies reveal concerns on security measurement and…