March 3, 2021

Onapsis announced the general availability of support for SAP SuccessFactors in The Onapsis Platform. The new support enables customers to quickly discover, assess, prioritize, and eliminate SAP SuccessFactors’ misconfigurations, vulnerabilities and au…

Read More Onapsis Platform for SAP SuccessFactors ensures security and compliance in the intelligent enterprise

Cybersecurity firm Qualys seems to have suffered a data breach, threat actors allegedly exploited zero-day flaw in their Accellion FTA server. Cybersecurity firm Qualys is the latest victim of a cyber attack, the company was likely hacked by threat actors that exploited a zero-day vulnerability in their Accellion FTA server. A couple of weeks ago, security experts […]

The post Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys appeared first on Security Affairs.

Read More Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys

Avast researchers reported that the infamous Ursnif Trojan was employed in attacks against at least 100 banks in Italy. Avast experts recently obtained information on possible victims of Ursnif malware that confirms the interest of malware operators in targeting Italian banks. Operators behind this attacks have stolen financial data and credential from targeted financial institutions. “Among the […]

The post The Ursnif Trojan has hit over 100 Italian banks appeared first on Security Affairs.

Read More The Ursnif Trojan has hit over 100 Italian banks

Cyber Defense Magazine March 2021 Edition has arrived. We hope you enjoy this month’s edition…packed with over 110 pages of excellent content. 110 PAGESLOADED WITH EXCELLENT CONTENTLearn from the experts, cybersecurity best practicesFind out about upcoming information security related conferences, expos and trade shows.  Always free, no strings attached. CLICK HERE AND GRAB THIS VERSION AND […]

The post Cyber Defense Magazine – March 2021 has arrived. Enjoy it! appeared first on Security Affairs.

Read More Cyber Defense Magazine – March 2021 has arrived. Enjoy it!

In this article, we will discuss the Digital Charter Implementation Act, 2020, which was tabled by the government on November 17, 2020, along with its progeny: the Consumer Privacy Protection Act (CPPA) and the Personal Information and Data Tribunal Ac…

Read More Understanding Canadian Cybersecurity Laws: Legislative Modernization — Responding and Adapting to Technological Change in a Global Domain (Article 9)

We have recently expanded the integration of Antimalware Scan Interface (AMSI) with Office 365 to include the runtime scanning of Excel 4.0 (XLM) macros, to help antivirus solutions tackle the increase in attacks that use malicious XLM macros.

The post XLM + AMSI: New runtime defense against Excel 4.0 macro malware appeared first on Microsoft Security.

Read More XLM + AMSI: New runtime defense against Excel 4.0 macro malware

Microsoft kicked off its virtual Ignite conference with a splash as chief executive officer Satya Nadella announced the company’s new mixed reality platform, Microsoft Mesh. Powered by Azure, Mesh allows people to interact in a virtual or augmented reality world.

The post Microsoft launches Mesh mixed reality platform at Ignite first appeared on IT World Canada.

Read More Microsoft launches Mesh mixed reality platform at Ignite

Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Recorded Future provides deep, detailed insight into emerging threats by automatically collecting, analyzing, and orga…

Read More Receive the latest trending threat insights delivered to your inbox with Recorded Future’s free Cyber Daily newsletter. Sign up now!

Like many of you, I’m thrilled to have my 2020 calendar safely in the recycling pile. During that time though, you too might have noticed how, perhaps unknowingly, you were able to turn some of last year’s lemons into lemonade. Maybe you developed a deeper appreciation for everyday moments and the people in your life,…

The post Compliance joins Microsoft Intelligent Security Association (MISA) appeared first on Microsoft Security.

Read More Compliance joins Microsoft Intelligent Security Association (MISA)

Microsoft has released out-of-band security updates for seven bugs affecting Microsoft Exchange Servers, four of which are zero-day vulnerabilities being exploited by attackers in the wild to plunder on-premises machines. According to Volexity, the attacks have been going on for nearly two months, possibly even longer. Our team has been tirelessly working several intrusions since January involving multiple 0-day exploits in Microsoft Exchange. We’ve released the details of this threat activity alongside Microsoft’s Out of … More

The post Exchange Servers targeted via zero-day exploits, have yours been hit? appeared first on Help Net Security.

Read More Exchange Servers targeted via zero-day exploits, have yours been hit?

Today’s podcast reports on a stolen VPN password leads to a loan company hack, a subcontractor employee held responsible for a data breach and why web site code needs to be better protected
The post Cyber Security Today – Stolen password leads to loan …

Read More Cyber Security Today – Stolen password leads to loan company hack; Subcontractor blamed for breach; Why website code needs to be protected

WizCase experts found a major breach in phone-tracking service Ringostat ’s database, millions of Phone Numbers, Recordings, and Call Logs Compromised WizCase security team has found a major breach in phone-tracking service Ringostat ’s database. This leak left vulnerable phone numbers, call recordings, call logs, and more to potential attack. The leaked data numbers in the millions and […]

The post Data Breach: Millions of Phone Numbers, Recordings, and Call Logs Compromised in Ringostat Data Leak appeared first on Security Affairs.

Read More Data Breach: Millions of Phone Numbers, Recordings, and Call Logs Compromised in Ringostat Data Leak