May 13, 2021

Hi GuysI need your support. I became aware only not that we can nominate SecurityAffairs as Best Personal Blog. I need your support. Please vote Security Affairs as Best Personal cybersecurity Blog at the following link https://docs.google.com/forms/d/e/1FAIpQLSer_6yOZrL8OO6XjJ9yj3Mlq9LvuOakdTZN9ZmhkFCy1aQLdw/viewform The URL is https://securityaffairs.co/ and indicate me Pierluigi Paganini as reference Thank you!Pierluigi Follow me on Twitter: @securityaffairs […]

The post Please vote Security Affairs – 1 day left appeared first on Security Affairs.

Read More Please vote Security Affairs – 1 day left

Microsoft warns of a malware-based campaign that targeted organizations in the aerospace and travel sectors in the past months. Microsoft researchers revealed that organizations in the aerospace and travel sectors have been targeted in the past months in a malware-based campaign. Threat actors conducted a spear-phishing campaign using messages that were specifically designed to be […]

The post Organizations in aerospace and travel sectors under attack, Microsoft warns appeared first on Security Affairs.

Read More Organizations in aerospace and travel sectors under attack, Microsoft warns

Cisco has addressed a zero-day in the Cisco AnyConnect Secure Mobility Client VPN software, with publicly available proof-of-concept exploit code. Cisco has addressed a zero-day vulnerability in Cisco AnyConnect Secure Mobility Client, tracked as CVE-2020-3556, that was disclosed in November. The availability of a proof-of-concept exploit code for the zero-day was confirmed by the Cisco Product Security […]

The post Cisco fixes AnyConnect Client VPN zero-day disclosed in November appeared first on Security Affairs.

Read More Cisco fixes AnyConnect Client VPN zero-day disclosed in November

President Biden signed an executive order to improve government cybersecurity, setting new security standards for software sold to the federal government.

For the first time, the United States will require all software purchased by the federal government to meet, within six months, a series of new cybersecurity standards. Although the companies would have to “self-certify,” violators would be removed from federal procurement lists, which could kill their chances of selling their products on the commercial market.

I’m a big fan of these sorts of measures. The US government is a big enough market that vendors will try to comply with procurement regulations, and the improvements will benefit all customers of the software…

Read More New US Executive Order on Cybersecurity

Since its release three years ago, IBM says DBaaS offerings have gained enormous interest from customers across multiple industries. At THINK this week, it also received several updates.

The post IBM looks to address business AI adoption challenges with AutoSQL and partner program changes first appeared on IT World Canada.

Read More IBM looks to address business AI adoption challenges with AutoSQL and partner program changes

President Joe Biden signed an ambitious executive order to dramatically improve the security of the US government networks. President Biden signed an executive order this week to improve the country’s defenses against cyberattacks, it is an important move that comes shortly after the recent wave of attacks, such as the SolarWinds supply chain attack and the […]

The post Biden signed executive order to improve the Nation’s Cybersecurity appeared first on Security Affairs.

Read More Biden signed executive order to improve the Nation’s Cybersecurity

FBI and DHS’s CISA have published a joint alert on DarkSide ransomware activity after the disruptive attack on Colonial Pipeline. FBI and DHS’s CISA have published a joint alert to warn of ransomware attacks conducted by the DarkSide group. The alert comes after the disruptive attack that hit Colonial Pipeline that caused chaos and disruption. […]

The post US CISA and FBI publish joint alert on DarkSide ransomware appeared first on Security Affairs.

Read More US CISA and FBI publish joint alert on DarkSide ransomware

Chinese tech company Xiaomi is no longer on the U.S. trade ban list, Amazon is accused of hiring and firing workers to meet a turnover quota, and Google is building a new data centre in Quebec.

The post Hashtag Trending, May 13, 2021- Xiaomi removed from trade ban list; Amazon “hire-to-fire”; new Google data centre in Quebec first appeared on IT World Canada.

Read More Hashtag Trending, May 13, 2021- Xiaomi removed from trade ban list; Amazon “hire-to-fire”; new Google data centre in Quebec

Cyber security affects companies of all sizes in all sectors. Moreover, threats are constantly evolving and your legal and regulatory requirements have become major issues – particularly with the introduction of the the GDPR (General Data Protection Regulation) and NIS Directive. All of this means that regular communication between management and the board regarding cyber security is more important than ever. It’s only by discussing these issues regularly and in a formal environment that you can protect your sensitive data and company interests. As you have probably seen, failure to do that could result in staggering financial penalties. So how should

The post 12 cyber security questions to ask your CISO appeared first on IT Governance UK Blog.

Read More 12 cyber security questions to ask your CISO