featured Archives - Page 37 of 75 - Cyber Security Minute

FragAttacks: New Vulnerabilities Expose All Devices With Wi-Fi to Attacks

Issued by: Security Week

he vulnerabilities, dubbed FragAttacks (fragmentation and aggregation attacks), were discovered by researcher Mathy Vanhoef, who was also involved in the discovery of the Key Reinstallation Attack (KRACK) vulnerabilities back in 2017. FragAttacks can be leveraged by an attacker who is within range of the targeted Wi-Fi connection to hack devices and steal sensitive user information….

Cloud Security

The Benefits of Cloud Services Far Outweigh On-Premises in 2021

Issued by: Security Week

It’s time. If they weren’t already invested, the events of the last year have clearly forced the hands of organizations to embrace the world of cloud-delivered services. The global rise in remote work is a big driver; it has forced organizations to think more progressively about everything from their office space to their infrastructure. It’s…

Application Security

Android App Developers Required by Google to Share More Info on Data Handling

Issued by: Security Week

Planned as a safety section in Google Play, the change is expected to “help people understand the data an app collects or shares, if that data is secured, and additional details that impact privacy and security.” Google is already asking developers to say whether their application is collecting user data, but the new requirement will…

Software Security

Cyber Asset Management Startup JupiterOne Raises $30 Million

Issued by: Security Week

The funding round was led by Sapphire Ventures, with participation from previous investor Bain Capital Ventures. The company plans to use the new funds to scale up its engineering, product development, and go-to-market capabilities. It will also invest in growing its self-service capacity for small and midsize companies. Founded in 2018, the North Carolina-based firm…

Malware & Threats

Cybersecurity Community Unhappy With GitHub’s Proposed Policy Updates

Issued by: Security Week

The community has been asked to provide feedback until June 1 on proposed clarifications regarding exploits and malware hosted on GitHub. “Our policy updates focus on the difference between actively harmful content, which is not allowed on the platform, and at-rest code in support of security research, which is welcome and encouraged. These updates also…

Application Security, Cloud Security

DevSecOps Company Sysdig Raises $188 Million at $1.19 Billion Valuation

Issued by: Security Week

The latest funding round, which brings the total raised by the company to $394 million, was led by Premji Invest & Associates and Third Point Ventures, with participation from Accel, Bain Capital Ventures, DFJ Growth, Glynn Capital, Goldman Sachs, Insight Partners, and Next47. The money will be used by the company to improve its products,…

Application Security, Cloud Security, Network Security

Cybersecurity M&A Roundup for April 19-25, 2021

Issued by: Security Week

Several cybersecurity-related acquisitions and mergers were announced in the week of April 19-25, 2021. Altron acquires Lawtrust South Africa-based technology solutions provider Altron has acquired Lawtrust, which provides digital trust and cybersecurity solutions, for ZAR 245 million (USD 17 million). Lawtrust, which is also based in South Africa, will help Altron expand its security offerings….

Software Security

Files on QNAP NAS Devices Encrypted in Qlocker Ransomware Attacks

Issued by: Security Week

The Taiwanese company, which makes both NAS and professional network video recorder (NVR) solutions, has long been urging users to improve the security of their devices. With QNAP NAS devices being targeted by ransomware families known as Qlocker and eCh0raix, the company is now advising users to download and install the latest Malware Remover version…

Vulnerabilities

Rockwell Industrial Switches Affected by More Vulnerabilities in Cisco Software

Issued by: Security Week

Rockwell Automation regularly releases firmware updates for its Stratix devices to address vulnerabilities introduced by the use of Cisco software. In fact, a majority of the security advisories released by the company for its Stratix products address flaws that exist in Cisco software. The latest Stratix advisory released by Rockwell covers a total of 8…

Application Security

FCC to Focus Efforts on 5G, Software and Cloud Service Vulnerabilities

Issued by: Security Week

Last Thursday (April 15th), Rosenworcel made a statement on future priorities by reestablishing the Communications, Security, Reliability, and Interoperability Council (CSRIC) with a focus on 5g networks and software and cloud services vulnerabilities. “I am committed to working with our federal partners and the private sector to increase the security and resiliency of our nation’s…