Woodstock Wire: Enterprise Security News

Infosec -- Security Affairs - VMware has addressed a high-severity remote code execution vulnerability, tracked as CVE-2020-3956, that affects its Cloud...

Infosec -- Dark Reading - A new security advisory addresses a vulnerability that could be exploited to cause a denial-of-service attack.

Infosec -- Recorded Future - How do you describe vulnerability management in your organization? If terms like "rat race" or "hamster wheel" come to mind,...

Infosec -- The Hacker News - Israeli cybersecurity researchers have disclosed details about a new flaw impacting DNS protocol that can be exploited to launch...

Infosec -- The Daily Swig - Real-time URL checks designed to block phishing sites that dodged previous measures

Infosec -- CSO Online - I heard some alarming new statistics from IBM security this month during IBM Think. With COVID-19 as a backdrop, cyber-attacks...

Infosec -- CSO Online - The National Cyber Awareness System, part of the US Cybersecurity and Infrastructure Security Agency (CISA), recently released an...

Infosec -- TripWire - The State of Security - In this final article of our trilogy, we investigate how a cyber threat intelligence (CTI) analyst and associated...

Infosec -- Okta Blog - At Okta, we live to securely connect every organization to any technology. And that includes on-premises solutions. To secure these...

Globe Newswire -- Technology - Updates to the Varonis Data Security Platform help enterprises better secure their remote workforces with greater visibility and...

Globe Newswire -- Technology - Enable a Self-Service Model to Design, Build and Manage Cloud Security Enable a Self-Service Model to Design, Build and Manage Cloud...

Business Wire -- Code42 releases new risk indicators that cut through alert noise and speed insider threat investigations.

Business Wire -- Open Systems Augments its Cybersecurity Capabilities With Acquisition of Leading Microsoft Azure Sentinel Expert

Business Wire -- FireEye announces a new modular agent approach to Endpoint Security, enabling organizations to respond to security incidents more quickly.

Business Wire -- ERI's John Shegerian is featured on the latest episode of the FCPA Compliance Report podcast, discussing COVID-19's effects on cybersecurity.

Media -- The Next Web - Not only are they super annoying, but it turns out text-based CAPTCHAs are also potentially a security risk. Researchers from...

Media -- ELE Times - 2019 saw login pages as prime targets for fraudsters across different verticals. They are using bad bots to carry out two types...

Enterprise -- DevOps.com - Security testing has always been an important step in the application development process. Yet, traditional measures often occur...

Enterprise -- ZDNet News - FBI says hackers have been planting card skimmers on online stores by exploiting a 2017 bug in the MAGMI plugin.

Tech -- TechCrunch - Over the years I've seen hundreds, probably thousands, of data breach notifications warning that a company's data was lost, stolen...

Infosec -- CSO Online - If you rely on multiple or hybrid cloud environments to support business processes, you need to be as vigilant protecting data and...

Infosec -- ISC2 Blog - It's a great time to work in cybersecurity. Demand for security professionals continues to grow, and the need for qualified people...

Infosec -- Cloudflare - Phishing attacks begin like any other visit to a site on the Internet. A user opens a suspicious link from an email, and their DNS...

Infosec -- Okta Blog - In my previous post, I talked about how the COVID19 pandemic has impacted how our customers use MFA - more specifically how SMS as...

Business Wire -- Imperva, Inc., the cybersecurity leader championing the fight to secure data and applications wherever they reside, published its April 2020...

Enterprise -- Azure Updates - With new firewall support, now in preview, Azure Relay now offers the ability to restrict connectivity to only well-known IP...

Enterprise -- Palo Alto Networks Blog - Where adopted, the DevOps methodology has made big changes in how applications are developed. Adding security into...

Infosec -- Dark Reading - There remains a disconnect between developers and security teams, with uncertainty around who should handle software security.

Infosec -- Dark Reading - Officials say "there can be no assurance" Forescout and Advent International will reach an agreement, though talks are ongoing.

Infosec -- Dark Reading - With millions of employees now attempting to work from home, it's vital to challenge misconceptions about cybersecurity.

Infosec -- CSO Online - What is vishing?

Vishing is a form of attack that attempts to trick victims into giving up sensitive personal information over...

Globe Newswire -- Technology - Australian software giant provides simple login experience for customers; focuses on security and identity Australian software giant...

Infosec -- Naked Security - Admins working with Microsoft Azure beware: phishers are updating their assets to reflect changes on the company's cloud-based...

nixCraft -- {Updated} Want to limiting SSH connections with ufw? Try the following syntax to deny connections from an IP address that has attempted to initiate...

Infosec -- Security Affairs - The FBI‌ issued a flash alert to warn organizations in the United States that the ProLock ransomware decryptor doesn't...

Infosec -- Security Affairs - A critical flaw in the WP Product Review Lite plugin installed on over 40,000 WordPress sites could potentially allow their...

Infosec -- TripWire - The State of Security - In this final part of the series, I discuss why everyone should consider reviewing their OPSEC (Operations...

Infosec -- TripWire - The State of Security - I usually spend my mornings doing some reading and enjoying my coffee. On this one particular morning, I noticed...

Globe Newswire -- Red Canary, a member of the Microsoft Intelligent Security Association, today officially announced Red Canary Managed Detection and Response...

Enterprise -- Palo Alto Networks Blog - Cloud native development relies on workloads spread across any number of compute options - virtual machines (VMs),...

Infosec -- Security Affairs - Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and...

Infosec -- CyberScoop - The U.S. Department of Commerce on Friday said it was tightening regulations to prevent Huawei from using U.S. software to make...

Infosec -- Threatpost - Paying ransom to cybercriminals costs companies hit with ransomware attacks more than recovering data on their own, according to...

Infosec -- Security Affairs - Palo Alto Networks addressed tens of vulnerabilities in PAN-OS, the software that runs on the company's next-generation firewalls.

Infosec -- RiskIQ - As attack surfaces grow outside the corporate firewall, cybersecurity teams need to be able to do two things well and at-scale: discover...

Infosec -- Security Affairs - Threat actors are offering for sale tens of databases on a hacker forum that contains roughly 550 million stolen user records.

Media -- The Next Web - For the last couple of months, cybercriminals have taken advantage of the coronavirus pandemic to launch a series of attacks on...

Enterprise -- Microsoft IT Showcase - When COVID-19 began its spread across the globe, Microsoft moved quickly to ensure our employees were able to work securely...

Enterprise -- DevClass - Elastic Stack 7.7 is ready for downloading, providing users with a new alerting framework, an embedded case management workflow in...

Enterprise -- Palo Alto Networks Blog - Beginning a digital transformation to the cloud is like a marathon: You've got to be prepared for the long haul. And...