Category Archives: Industry News

This Week in Security News: Spam Campaigns and Mobile Malware

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about a mobile malware that infects Android devices by exploiting the vulnerabilities found within the operating system. Also, read about a recent spam campaign that targets entities using a disposable email address service for its command and control server.

Read on:

iOS URL Scheme Susceptible to Hijacking

Abuse of Apple’s URL Scheme, a feature that allows developers to launch apps on an iOS device through URLs, can potentially result in the loss of privacy, bill fraud, exposure to pop-up ads and more.

Spam Campaign Targets Colombian Entities with Custom-made ‘Proyecto RAT,’ Uses Email Service YOPmail for C&C

Trend Micro observed a recent spam campaign that targets Colombian entities using YOPmail, a disposable email address service, for its command and control server (C&C). The payload, written in Visual Basic 6, is a customized version of a remote access tool called “Proyecto RAT.”

 Trend Micro’s Deep Security as a Service Now Available on the Microsoft Azure Marketplace

Trend Micro announced the availability of its cloud solution Deep Security as a Service on the Microsoft Azure Marketplace, enabling organizations to combine the benefits of security software-as-a-service with the convenience of consolidated cloud billing and usage-based, metered pricing.

SLUB Gets Rid of GitHub, Intensifies Slack Use

Trend Micro discovered a new version of the SLUB malware that has stopped using GitHub to communicate, heavily using Slack instead via two free workspaces that Slack has since shut down.

Jenkins Admins: Relying on Default Settings Could Put Master at Risk of Remote Code Execution Attacks

Trend Micro observed that a Jenkins user account with less privilege can gain administrator rights over the automation server if jobs are built on the master machine (i.e. the main Jenkins server), a setup enabled by default.

 FTC Approves Roughly $5 Billion Facebook Settlement

The Federal Trade Commission has endorsed a roughly $5 billion settlement with Facebook over a long-running probe into the tech giant’s privacy violations such as the Cambridge Analytica scandal, causing immediate concern from some politicians.

 GandCrab Threat Actors Possibly Behind Sodinokibi Ransomware

Various security researchers reported that the ransomware-as-a-service (RaaS) threat actors behind GandCrab might be responsible for releasing a more advanced ransomware variant called Sodinokibi.

Agent Smith Malware Infecting Android Apps, Devices for Adware

Agent Smith, a new kind of mobile malware, has been found infecting Android devices by exploiting the vulnerabilities found within the operating system (OS) to replace installed apps with malicious versions without the user knowing.

 Sprint Says Hackers Breached Customer Accounts Via Samsung Website

US mobile network operator Sprint said hackers broke into an unknown number of customer accounts via the Samsung.com “add a line” website, giving them access to personal information such as phone numbers, account numbers, billing addresses and more.

Report: Average BEC Attacks Per Month Increased by 120% from 2016 to 2018

According to the U.S. Treasury Department’s Financial Crimes Enforcement Network (FinCEN), the total amount that cybercriminals attempted to steal via business email compromise (BEC) scams rose to an average of $301 million per month — a substantial increase from the $110 million monthly average in 2016.

U.S. Mayors Take Stand Against Ransomware Payments

As ransomware becomes an increasing problem for local governments with 22 attacks in 2019 alone, U.S. mayors took a firm stand against paying ransom to hackers in their resolutions at the U.S. Conference of Mayors.

 Another 2.2 Million Patients Affected by AMCA Data Breach

Clinical Pathology Laboratories (CPL) says 2.2 million patients may have had their names, addresses, phone numbers, and other personal information stolen because of the AMCA data breach.

Fake Invoices Used by BEC Scammers to Defraud Griffin City, Georgia of Over US$800,000

The government of the City of Griffin, Georgia lost over $800,000 to a business email compromise (BEC) scam when BEC operators posed as its vendor P.F. Moon to reroute funds in two separate transactions to a fraudulent bank account.

Cloud-Based IoT Solutions: Responding to Traditional Limits and Security Concerns

In the face of challenges brought about by the expansion of the Internet of Things (IoT) – a trend that is expected to be amplified in the 5G era – many organizations have turned to cloud-based IoT solutions that can respond to organizations’ needs when it comes to integration, processing, scalability and security.

Were you surprised by the increase in business email compromise attempts from 2016 to 2018? Share your thoughts in the comments below or follow me on Twitter to continue the conversation: @JonLClay.

The post This Week in Security News: Spam Campaigns and Mobile Malware appeared first on .

CyberArk enhances its portfolio of SaaS offerings for privileged access security

CyberArk announced groundbreaking new services and enhancements to the industry’s most complete portfolio of Software-as-a-Service (SaaS) offerings for privileged access security. As the industry leader, only CyberArk has the technology expertise and experience to deliver innovative solutions that make it simple and easy for cloud-first organizations and those embracing digital transformation to consume, use and manage privileged access security solutions, especially in hybrid cloud environments. “Privileged access security is foundational to effective cybersecurity programs. As … More

The post CyberArk enhances its portfolio of SaaS offerings for privileged access security appeared first on Help Net Security.

Bitdefender 2020 gives consumers privacy amid a rising criminal tide

Bitdefender, the innovative cybersecurity solutions provider protecting 500 million machines worldwide, is proud to unveil Bitdefender 2020, its new cybersecurity line designed to give consumers complete privacy in an era of intrusion and total security amid a rising criminal tide. The Bitdefender 2020 series of products is designed to overcome the most sophisticated attacks, including rampant invasion of privacy from criminal hackers, nosy companies and invasive websites, as well as history’s most sophisticated malware meant … More

The post Bitdefender 2020 gives consumers privacy amid a rising criminal tide appeared first on Help Net Security.

BehavioSec updates the BehavioSec Behavioral Biometrics Platform with new capabilities

BehavioSec, the pioneering vendor behind behavioral biometrics, announced new capabilities strengthening the BehavioSec Behavioral Biometrics Platform’s market leadership helping financial services, fintech, retail, and other customers defeat relentless attacks utilizing stolen passwords and other weaponized online credentials. As the September 14, 2019 deadline for compliance with the European Union’s PSD2 payment security mandate approaches, BehavioSec’s pioneering behavioral biometrics inventions and performance across industries give businesses and mobile app developers a proven way to rapidly increase … More

The post BehavioSec updates the BehavioSec Behavioral Biometrics Platform with new capabilities appeared first on Help Net Security.

Fugue’s SaaS product now supports the Microsoft Azure cloud computing service

Fugue, the company delivering autonomous cloud infrastructure security and compliance, announced that its Software as a Service (SaaS) product now supports the Microsoft Azure cloud computing service. Fugue provides enterprises with continuous visibility into the security posture of their Microsoft Azure and Amazon Web Services (AWS) cloud environments and protects critical resources with self-healing infrastructure. Fugue enables development teams to “Shift Left” on cloud security and compliance by integrating policy checks into CI/CD pipelines. “Fugue’s … More

The post Fugue’s SaaS product now supports the Microsoft Azure cloud computing service appeared first on Help Net Security.

Insight Connected Suite helps clients accelerate the use of smart solutions

Insight Enterprises, a Fortune 500 global solution integrator for organizations of all sizes, announced the launch of Insight Connected Suite, a fully managed Internet of Things (IoT) solution that is industry-agnostic and helps clients accelerate the use of smart solutions. “Communities and businesses understand the transformative potential of IoT and smart solutions as they look to modernize their infrastructure. However, the time and resources needed to develop complex, one-off solutions have remained a roadblock to … More

The post Insight Connected Suite helps clients accelerate the use of smart solutions appeared first on Help Net Security.

SnapLogic Quick Start solution to help orgs quickly build and deploy cloud data lakes on AWS

SnapLogic, the #1 Intelligent Integration Platform provider, introduced a new Quick Start solution to help enterprises build and deploy cloud data lakes on Amazon Web Services (AWS) with speed and confidence. Enterprises can now fast-track their cloud data lake projects by deploying SnapLogic components, AWS services such as Amazon Simple Storage Service (Amazon S3) and Amazon Redshift, and best practices from Agilisium Consulting. To generate business value from their data, organizations are implementing cloud data … More

The post SnapLogic Quick Start solution to help orgs quickly build and deploy cloud data lakes on AWS appeared first on Help Net Security.

Claroty unveils several enhancements to its Continuous Threat Detection solution

Claroty, the global leader in industrial cybersecurity, introduced several enhancements to Continuous Threat Detection (CTD), its award-winning operational technology (OT) security solution. The latest release of CTD now enables enterprises to discover and monitor their Internet of Things (IoT) devices, provides customers with greater network visibility, reduces deployment time, and eliminates the “noise” of non-critical alerts. The company also announced it has joined the Industrial Internet Consortium (IIC), the world’s leading organization transforming business and … More

The post Claroty unveils several enhancements to its Continuous Threat Detection solution appeared first on Help Net Security.

ViON unveils new hybrid, multi-cloud solution portfolio that offers single interface management

ViON, a cloud service provider and market leader in the design, delivery and maintenance of mission-critical IT infrastructure solutions, announced the launch of the ViON Enterprise Cloud (VEC), a hybrid, multi-cloud solution portfolio that offers single interface management. Organizations leveraging the VEC will be able to bring a public cloud experience to their private cloud environment, while still managing existing infrastructure and taking advantage of ViON’s Multi-Cloud Orchestrator, Cloud Services Platform and Professional and Managed … More

The post ViON unveils new hybrid, multi-cloud solution portfolio that offers single interface management appeared first on Help Net Security.

Enzoic for Active Directory offers real-time blocking and monitoring of unsafe passwords

Enzoic, a leading provider of compromised credential screening solutions, released the latest version of Enzoic for Active Directory. The product is the only Active Directory plugin to meet NIST 800-63b requirements for real-time blocking of unsafe passwords at set-up and provide continuous monitoring of those same passwords to ensure they don’t become vulnerable later. The service gives organizations new ammunition in the ongoing fight against the use of compromised passwords. Across industries, organizations of all … More

The post Enzoic for Active Directory offers real-time blocking and monitoring of unsafe passwords appeared first on Help Net Security.

Cyber Power Smart App Online UPS systems offer more power and functionality in less space

Cyber Power Systems, a leader in power protection and management products, released two new models of professional-grade Smart App Online UPS systems. The Smart App Online High-Density UPS systems provide high capacity output with a power factor rating of 1 within a space-saving design. The systems use double-conversion topology, providing sine wave output to deliver clean AC power for mission-critical applications and high-end system components that require seamless power correction. The products are the latest … More

The post Cyber Power Smart App Online UPS systems offer more power and functionality in less space appeared first on Help Net Security.

SyncDog and Nine23 to enable mobile workforces a secure cloud-based collaboration tools access

SyncDog, the leading Independent Software Vendor (ISV) for next generation mobile security and data loss prevention, announced a partnership with Nine23, a highly-focused UK mobile security solutions company serving the public and private sector. This partnership will enable mobile workforces to access cloud-based collaboration tools from their own devices with an increased level of security and greater cost savings. SyncDog provides a secure application workspace for employees accessing enterprise mobile productivity apps on BYOD (Bring … More

The post SyncDog and Nine23 to enable mobile workforces a secure cloud-based collaboration tools access appeared first on Help Net Security.

TMD Security integrates SALTO’s key-less locks in TMD Access Management

TMD Security announced that SALTO Systems, a worldwide leading manufacturer of state-of-the-art access door locks, will be the hardware partner for TMD’s Access Management solution for a wide variety of access points including ATM rooms, branches and datacentres. TMD Security has integrated SALTO’s key-less locks in TMD Access Management, a single access scheduling and provision solution for ATMs and for a wide variety of access points that uses encrypted one-time-codes and mobile app instead of … More

The post TMD Security integrates SALTO’s key-less locks in TMD Access Management appeared first on Help Net Security.

Druva acquires CloudLanes to expand cloud to the edge

Druva, the leader in Cloud Data Protection and Management, announced the acquisition of CloudLanes, an innovator in hybrid cloud data protection and migration that enables seamless and secure movement of data from on-premises to cloud. With the new addition, Druva is set to expand cloud to the edge, bringing enterprises the ability to keep data readily available on-site, while leveraging SaaS-based business continuity, short recovery windows and greater workload mobility to reduce costs by up … More

The post Druva acquires CloudLanes to expand cloud to the edge appeared first on Help Net Security.

Cirrus Insight appoints Phil Sims as CTO

Cirrus Insight is pleased to announce the appointment of Phil Sims as Chief Technology Officer. Cirrus Insight sales enablement platform for Gmail and Outlook offers an all-in-one sales productivity platform with world-class Salesforce integration. Cirrus Insight is committed to delivering high-quality value in the sales enablement space. The appointment of an award-winning CTO represents a spearhead investment in agile engineering, product, and support that benefits Cirrus Insight customers immediately. Phil Sims joins Cirrus Insight bringing … More

The post Cirrus Insight appoints Phil Sims as CTO appeared first on Help Net Security.

Abacode appoints Michael Brooks to lead its Governance, Risk and Compliance Practice

Abacode, one of the fastest growing Cybersecurity and Compliance firms in the United States, announced that Michael Brooks, a retired Air Force senior officer and PwC alum, has been chosen to lead its high demand Governance, Risk and Compliance (GRC) Practice. In this new role, Brooks will be responsible for leading a talented team of risk and compliance experts who provide a suite of premium GRC services designed to strengthen the cyber security posture for … More

The post Abacode appoints Michael Brooks to lead its Governance, Risk and Compliance Practice appeared first on Help Net Security.

MobileIron launches zero sign-on technology for secure and passwordless authentication

MobileIron, the company that introduced the industry’s first mobile-centric, zero trust platform for the enterprise, announced the availability of zero sign-on technology for secure and passwordless authentication to enterprise cloud services from desktops. Users can now log into software-as-a-service (SaaS) applications, such as Office 365 and Salesforce, from any laptop or desktop using their secured iPhone as their identity – eliminating the need for passwords entirely. A zero password experience is critical as a recent … More

The post MobileIron launches zero sign-on technology for secure and passwordless authentication appeared first on Help Net Security.

Privitar extends data-protection and safe data-analysis capabilities of its Publisher product

Privitar, whose software delivers the uncompromised data privacy that is essential for organizations worldwide to conduct safe and ethical data analysis, released version 3.0 of its Publisher product, extending both its data-protection and safe data-analysis capabilities. With Privitar Publisher 3.0, companies can use its centralized, policy-based approach to data privacy more widely within their organizations, automate more processes, and make data available to data scientists more quickly. Publisher 3.0 also enables companies to create richer … More

The post Privitar extends data-protection and safe data-analysis capabilities of its Publisher product appeared first on Help Net Security.

PremiumSoft releases new version of Navicat Monitor

PremiumSoft announces the immediate release of Navicat Monitor version 2.0, a new version of Navicat Monitor, now supported SQL Server. Navicat Monitor is a safe, simple and agentless remote server monitoring tool for MySQL, MariaDB and SQL Server. It includes a rich set of real-time and historical graphs that allow you to drill down into server statistic details. In the latest version of Navicat Monitor, you can easily uncover the problematic queries, such as identifying: … More

The post PremiumSoft releases new version of Navicat Monitor appeared first on Help Net Security.

Symantec’s new cloud access security solution enforces consistent security and data protection policies

Symantec, the world’s leading cyber security company, announced its new cloud access security solution to help secure cloud and internet access and use in an enterprise environment. These enhancements and integrations across Symantec’s network security portfolio further position Symantec as the only security provider to offer an integrated cloud-delivered solution that lessens operational costs and complexity, while lowering operational risk. In today’s business environment, there is a tremendous volume of enterprise network traffic directed to … More

The post Symantec’s new cloud access security solution enforces consistent security and data protection policies appeared first on Help Net Security.

Synack launches a new crowdsourced penetration test designed specifically for government

Synack, the most trusted leader in crowdsourced penetration testing, announces the availability of the market’s first comprehensive crowdsourced penetration test designed specifically for government, by offering a bug bounty-based vulnerability discovery model coupled with NIST 800-53 guidelines. Synack co-founders and technical security experts Jay Kaplan and Mark Kuhr came out of the NSA and the US Department of Defense with a shared vision to create a scalable, effective, and trusted security solution for the government. … More

The post Synack launches a new crowdsourced penetration test designed specifically for government appeared first on Help Net Security.

Perimeter 81 ensures zero trust access to web applications without an agent

Perimeter 81, the leading Zero Trust Secure Network as a Service provider, announced that it has officially unveiled its new cornerstone solution: Zero Trust Application Access. The service is designed to meet the demands of today’s ever-expanding modern network and ensure fully secured, isolated and agentless access to an organization’s critical web applications, secure shell (SSH), remote desktop (RDP), virtual network computing (VNC) and Telnet in an emulated, streamlined and seamless way, regardless of where … More

The post Perimeter 81 ensures zero trust access to web applications without an agent appeared first on Help Net Security.

CyberGRX Auto Inherent Risk provides users with immediate visibility into potential threats

CyberGRX, provider of the world’s first and largest global cyber risk exchange, announced the recent release of a groundbreaking new feature that provides users with immediate visibility into potential threats in their ecosystem: Auto Inherent Risk (AIR) insights. As digital transformation and interconnected ecosystems continue to expand, effective third-party cyber risk management (TPCRM) is increasingly becoming a top priority for CISO’s and Risk Managers. CyberGRX AIR automates what was once a very time-consuming and manual … More

The post CyberGRX Auto Inherent Risk provides users with immediate visibility into potential threats appeared first on Help Net Security.

ShiftLeft Ocular enhancements to help orgs discover business logic flaws faster

ShiftLeft, an innovator in automated application security, announced enhancements to its Ocular solution that empower organizations to discover business logic flaws during application development 10 times faster than manual code reviews. Updates to Ocular include support for four new programming languages, C#, C, C++ and Scala, which improve development efforts with coverage for the top cloud, Internet of Things (IoT) and embedded applications. The updates also include blazing fast automated security regression testing in CI/CD, … More

The post ShiftLeft Ocular enhancements to help orgs discover business logic flaws faster appeared first on Help Net Security.

Signal Sciences and Datadog provide real-time web app attacks monitoring and response

Signal Sciences, the fastest growing web application security company in the world, announced its integration with Datadog, the monitoring and analytics platform for modern cloud environments. The integration provides engineering and operations teams with an easy way to monitor and respond to real-time web application attacks from the Datadog platform. By activating the new Signal Sciences dashboard, Datadog users can quickly see the volume and types of attacks against their applications, APIs, and microservices. The … More

The post Signal Sciences and Datadog provide real-time web app attacks monitoring and response appeared first on Help Net Security.

FireEye launches two new service delivery options for managed detection and response

FireEye, the intelligence-led security company, announced the availability of two new managed detection and response (MDR) service offerings – FireEye Managed Defense Nights and Weekends and FireEye Managed Defense for Endpoint Security. “Managed Defense has led the managed detection and response market since 2011 when we saw the need to provide ongoing, proactive detection and investigations following incident response engagements,” said Marshall Heilman, Senior Vice President, Managed Defense and TORE, FireEye. “Customer needs continue to … More

The post FireEye launches two new service delivery options for managed detection and response appeared first on Help Net Security.

Western Digital enhances its IntelliFlash data center systems portfolio

Western Digital announced new additions and enhancements to its IntelliFlash data center systems portfolio, giving customers even greater choice and flexibility to design modern hybrid-cloud infrastructures that accelerate the speed of business and help extract greater value from data. By doubling available performance and density, combined with enhanced capabilities for data migration and hybrid-cloud mobility, Western Digital’s IntelliFlash family of NVMe-flash, all-flash and hybrid-flash arrays delivers a superior overall value proposition for accelerating today’s most … More

The post Western Digital enhances its IntelliFlash data center systems portfolio appeared first on Help Net Security.

New Azure Marketplace Pay-As-You-Go Billing for Trend Micro Deep Security as a Service

Cloud adoption continues to rise as organizations reduce their data center footprint, look to cloud native technologies to improve their application design and output, and strive to improve scalability and management of resources and systems.

In a recent survey conducted by analyst firm ESG, 87% of respondents indicated that they currently run production applications and workloads on a public cloud infrastructure-as-a-service platform. However only 10% of respondents run more than half of their workloads in the cloud.  This means that while cloud adoption is on the rise, businesses are still heavily vested in on-premises and hybrid-cloud environments.

With all this change comes the task of understanding how best to secure new cloud technologies and environments, while maintaining protection for traditional server platforms against threats and risks which present both technical and cost challenges.

So, what options does your business have to tackle this?

Trend Micro is excited to announce pay-as-you-go billing with its leading cloud solution, Deep Security as a Service (DSaaS) on the Microsoft Azure Marketplace. As a launch partner for pay-as-you-go billing at Microsoft’s Inspire 2019 conference, Trend Micro’s offering enables organizations to combine the benefits of security software-as-a-service (SaaS) with the convenience of usage-based metered pricing and consolidated cloud billing.

“Providing Trend Micro’s Deep Security as a Service offering through Azure Marketplace gives customers more ways to enable, automate, and orchestrate cloud security,” said Jeana Jorgensen, GM, Cloud and AI for Microsoft. “Customers can pay for only what they use with Trend Micro’s flexible, metered pricing or negotiate more a more traditional enterprise agreement using private offers while enjoying a consolidated bill for software and cloud infrastructure.”

Trend Micro Deep Security as a Service is purpose built to deliver a multi-layered automated approach to protect hybrid cloud workloads and container environments against known and unknown threats. Deep Security’s capabilities include network controls such as a host firewall and Intrusion Prevention/Detection (IPS) to shield servers and web applications from vulnerabilities and exploits. Deep Security also has system security capabilities such as log inspection, application control to detect and lockdown unauthorized executables, and real-time integrity monitoring to alert the security team of any suspicious or unexpected changes to registry values, registry keys, services, processes, installed software, ports, or files.

Additionally, Deep Security provides this same complete protection for your containers, with real-time malware protection, container vulnerability shielding, full traffic inspection for both North-South and East-West traffic between containers, as well as network and system controls, extending protection to the container and Kubernetes platforms. This also helps to meet compliance obligations across major regulations and industry guidelines, like PCI DSS, HIPAA, NIST, GDPR and more from within one trusted security solution.

Microsoft’s new Azure Marketplace offerings and billing methods allow IT and developers a means to quickly identify what software-as-a-service offerings they need and pay only for what is consumed with no additional costs. This makes purchasing easy for customers, with one transaction and a single invoice helping to remove friction across budget planning, capacity, and scaling.

“Our priority is to make cloud security as effortless as possible, which starts by meeting IT users and developers where they are and then offering comfortable usage and pricing options,” said Sanjay Mehta, SVP, Business Development & Strategic Alliances at Trend Micro. “Trend Micro is proud to continue our close relationship with Microsoft Azure as one of its top global security partners. Being part of their consumption-based billing launch for SaaS offerings helps customers looking to secure workloads and containers through their Azure instances.”

Trend Micro’s Deep Security as a Service will provide Microsoft Azure customers a fully hosted security management experience, starting at only $0.01 per workload per hour.

Learn more visit https://www.trendmicro.com/azure/

 

 

The post New Azure Marketplace Pay-As-You-Go Billing for Trend Micro Deep Security as a Service appeared first on .

42Crunch new solution allows orgs to automate API security across Kubernetes environments

API security leader and creator of the industry’s first API Firewall – 42Crunch – announced the latest release of its API security platform with full support for Kubernetes environments. This new solution allows organizations to easily automate API security across Kubernetes environments – enabling the zero-trust architecture needed to protect each microservice, and scale without risk. The rapid adoption of microservices architectures and Kubernetes lead to proliferation of APIs exposed by these microservices. Developers employ … More

The post 42Crunch new solution allows orgs to automate API security across Kubernetes environments appeared first on Help Net Security.

Vade Secure’s Auto-Remediate adds automated protection for Office 365 environments

Vade Secure, the global leader in predictive email defense, announced the availability of Auto-Remediate for Vade Secure for Office 365. The new feature extends Vade Secure’s AI-based threat detection and mitigation capabilities, providing MSPs and small businesses with comprehensive, continuous, and automated protection before, during, and after the attack. Leveraging Vade’s real-time view of emerging global threats from 600 million mailboxes, Auto-Remediate automatically removes any malicious messages from users’ inboxes, mitigating attacks before they disrupt … More

The post Vade Secure’s Auto-Remediate adds automated protection for Office 365 environments appeared first on Help Net Security.

Aqua Security deepens strategic relationship with Microsoft to accelerate Azure deployments

Aqua Security, a leading platform provider for securing container-based, serverless and cloud native applications, announced a new Private Offer capability enabling software licensing and procurement directly through Microsoft Azure Marketplace, allowing customers to utilize existing purchasing methods in place for Azure services. Aqua now offers a choice of flexible software acquisition models that allow customers to purchase licenses on Azure the way that works best for them. Software purchased directly from Aqua can easily be … More

The post Aqua Security deepens strategic relationship with Microsoft to accelerate Azure deployments appeared first on Help Net Security.

Trend Micro’s Deep Security as a Service now available on the Microsoft Azure Marketplace

Trend Micro, a global leader in cybersecurity solutions, announced the availability of its leading cloud solution, Deep Security as a Service, on the Microsoft Azure Marketplace. Launching at Microsoft’s Inspire 2019 event, this Trend Micro offering enables organizations to combine the benefits of security software-as-a-service (SaaS) with the convenience of consolidated cloud billing and usage-based, metered pricing. “Our priority is to make cloud security as effortless as possible, which starts by meeting IT users and … More

The post Trend Micro’s Deep Security as a Service now available on the Microsoft Azure Marketplace appeared first on Help Net Security.

Karamba Security implements its security software on Alpine infotainment systems

Karamba Security, a world leader in automotive and enterprise edge cybersecurity, announced the signing of a production agreement of its leading Carwall runtime integrity software, in Alpine infotainment systems. The platform provides an ECU self-protection against remote code execution (RCE), helping to protect vehicles from cyberattacks. Protection against cyberattacks is critical in order to safeguard customer safety in the connected and autonomous vehicle era. Such exploits of in-memory vulnerabilities can jeopardize customer safety by controlling … More

The post Karamba Security implements its security software on Alpine infotainment systems appeared first on Help Net Security.

RISC-V Soft CPU Contest challenges designers to develop a hardware secure RISC-V soft CPU solution

The RISC-V Foundation, a non-profit corporation controlled by its members to drive the adoption and implementation of the free and open RISC-V instruction set architecture (ISA), announced the call for submissions for the RISC-V Soft CPU Contest. The aim of the contest is to challenge designers to develop a hardware secure RISC-V soft CPU solution that can thwart malicious software security attacks. The contest is sponsored by RISC-V Foundation members Microchip Technology Inc. and Thales. … More

The post RISC-V Soft CPU Contest challenges designers to develop a hardware secure RISC-V soft CPU solution appeared first on Help Net Security.

Ingram Micro chooses AvePoint as a global Modern Workplace Accelerate partner

AvePoint and Ingram Micro jointly announced the formation of a new global relationship. As part of this relationship, Ingram Micro will list AvePoint’s solutions to migrate, manage and backup data in Office 365 and Dynamics 365 in all of its Cloud Marketplaces around the world at discounted rates for managed service providers (MSPs) who qualify under Ingram Micro’s new Modern Workplace Accelerate program. Modern Workplace Accelerate is a global program designed to simplify the complexity … More

The post Ingram Micro chooses AvePoint as a global Modern Workplace Accelerate partner appeared first on Help Net Security.

Alfresco Migration Service to help orgs move off legacy platforms and migrate to the cloud

Alfresco Software, a commercial, open source software company, launched the Alfresco Migration Service to help enterprises move off outdated, legacy platforms, while mitigating the risk of migrating content to the cloud. Alfresco has completed many migrations and, based on this experience, created the Migration Service with a migration toolkit, skilled consultancy, and a robust 5-week process. Today’s enterprises need the modern deployment capabilities, hyper-scale and agility of the cloud and yet remain concerned about the … More

The post Alfresco Migration Service to help orgs move off legacy platforms and migrate to the cloud appeared first on Help Net Security.

T-Mobile launches Roambee BeeAware, a narrowband IoT asset tracking solution

T-Mobile is now in the asset tracking business. T-Mobile for Business will sell the first asset tracking solution, Roambee BeeAware, on a Narrowband IoT (NB-IoT) network in the United States. This moment marks the next stage of development for the IoT market. High-value asset tracking is a perfect match for America’s first NB-IoT network: Cost: When a company deploys hundreds, if not thousands, of asset trackers, device and service costs can add up quickly. No-hit … More

The post T-Mobile launches Roambee BeeAware, a narrowband IoT asset tracking solution appeared first on Help Net Security.

Eurofins’ testwizard system to provide automated testing for Niko Home Control

Eurofins Digital Testing, a global leader in end-to-end quality assurance (QA) and testing services, announced it was selected by Niko, a leader in residential and commercial switching material and smart home products, to provide automated quality assurance and device interoperability testing for Niko’s premier smart home solution. Specifically, Niko will use Eurofins’ testwizard system as a total, end-to-end test solution for their IoT home automation system, Niko Home Control. Niko Home Control is a state-of-the … More

The post Eurofins’ testwizard system to provide automated testing for Niko Home Control appeared first on Help Net Security.

DefenseStorm raises $15M to invest in employees and innovation

DefenseStorm, a leading cloud-based cybersecurity and cybercompliance management provider to regional and community banks and credit unions, announced that it has raised $15M in a Series A financing round led by Georgian Partners. Justin LaFayette, Managing Partner at Georgian Partners, will join the DefenseStorm board of directors. In addition to the investment, DefenseStorm will engage with the Georgian Impact team to accelerate the adoption of applied artificial intelligence and trust. The Georgian Impact team comprises … More

The post DefenseStorm raises $15M to invest in employees and innovation appeared first on Help Net Security.

Five chief IT security executives join RiskSense’s new Technology Advisory Board

RiskSense, pioneering risk-based vulnerability management and prioritization, announced that five leading chief IT security executives have joined the company’s new Technology Advisory Board. Each will bring a unique perspective on security, privacy and risk management to the Board. “Each of our advisory board members are highly respected practitioners, thought leaders and advocates that have made significant contributions to advance IT security over the course of their careers,” said Dr. Srinivas Mukkamala, co-founder and CEO of … More

The post Five chief IT security executives join RiskSense’s new Technology Advisory Board appeared first on Help Net Security.

ADVA launches AI-powered analytics service for monitoring the quality of GNSS-based timing

ADVA launched ADVA SatAware, the industry’s first AI-powered analytics service for monitoring the quality of GNSS-based timing. The unique solution provides communication service providers (CSPs) and other operators of critical infrastructure with real-time insight into signal quality at their GNSS satellite receivers. With the ADVA SatAware solution, operators can easily identify any physical objects blocking GNSS signals and resolve issues before they impact the synchronization network. The non-intrusive, cost-effective solution is specifically designed to meet … More

The post ADVA launches AI-powered analytics service for monitoring the quality of GNSS-based timing appeared first on Help Net Security.

Quest QoreStor 6.0 offers native cloud support and instant recovery

Quest Software, a global systems management, data protection and security software provider, announced the general availability of Quest QoreStor 6.0 to enable software defined hybrid cloud secondary storage for businesses. With new feature enhancements to the award winning QoreStor technology, along with enterprise class compression and backup-vendor agnostic deduplication technology, businesses can now take advantage of QoreStor’s Cloud Tier cloud native storage technology to seamlessly streamline non-invasive long term retention. QoreStor 6.0 also introduces a … More

The post Quest QoreStor 6.0 offers native cloud support and instant recovery appeared first on Help Net Security.

Microsoft data security improved with Nucleus Cyber MIP integration

Nucleus Cyber, the intelligent data-centric security company for the modern workplace, at Microsoft Inspire in Las Vegas announced its NC Protect solution now utilizes MIP labels to enhance conditional access and data security controls in Microsoft platforms to guard against insider threats, sensitive data misuse, unauthorized sharing and exfiltration. Tom Hill, Managing Director at Slater Hill, a Microsoft Gold Partner for Portals and Collaboration, said, “We’re very excited about this new enhancement from Nucleus Cyber. … More

The post Microsoft data security improved with Nucleus Cyber MIP integration appeared first on Help Net Security.

Pundi X completes integration support of its XPOS module on Verifone X990

Leading provider of blockchain-powered devices Pundi X has successfully completed integration support of its XPOS module on X990 made by US-based Verifone, one of the largest providers of traditional point-of-sale (POS) terminals in the world, to allow a wider network of retailers to accept payments in cryptocurrencies. With this integration, shops and retail outlets using the Verifone X990 with XPOS module activated will now be able to process cryptocurrency payments alongside traditional transactions. The XPOS … More

The post Pundi X completes integration support of its XPOS module on Verifone X990 appeared first on Help Net Security.

Saviynt now supports Amazon EventBridge

Saviynt, a trusted and award-winning provider of a leading intelligent, identity governance and management platform, announced support for the newly launched Amazon EventBridge, from Amazon Web Services (AWS). Amazon EventBridge is a serverless event bus service that connects applications using events. Events include security configuration changes, changes in application data, privilege access escalations, or joiner/mover/leaver/conversions in human resources (HR) systems. Amazon EventBridge allows Saviynt to further enhance and extend its services by publishing key events … More

The post Saviynt now supports Amazon EventBridge appeared first on Help Net Security.

Avast appoints Jaya Baloo as CISO

Avast announced it has appointed Jaya Baloo to the position of Chief Information Security Officer (CISO), effective October 1, 2019. Jaya Baloo joins Avast from KPN, the largest telecommunications carrier in the Netherlands, where she held the position of CISO. Ms. Baloo has been formally recognized in the list of the top 100 CISOs globally and ranks among the top 100 security influencers worldwide. Ms. Baloo has been working in the field of information security … More

The post Avast appoints Jaya Baloo as CISO appeared first on Help Net Security.

Keysight’s new automotive cybersecurity program helps automotive industry ensure safety of vehicles

Keysight Technologies, a leading technology company that helps enterprises, service providers and governments accelerate innovation to connect and secure the world, announced a new automotive cybersecurity program that enables automotive security professionals at car manufacturers (OEM) and their suppliers (Tier 1) to ensure the safety of their vehicles with proactive protection against cyberattacks throughout the R&D and production process, as well as post sales. There are more connected cars in production and on the road … More

The post Keysight’s new automotive cybersecurity program helps automotive industry ensure safety of vehicles appeared first on Help Net Security.

iDS now handles all facets of data management by launching iCyber Solutions

iDiscovery Solutions (iDS) has launched iCyber Solutions, a dedicated cybersecurity practice. Already recognized as experts in eDiscovery, data analytics, and digital forensics, iDS is now positioned to handle all of its clients’ data needs. “With iCyber Solutions, iDS now offers all aspects of data management,” said Dan Regard, President and CEO of iDS. “It provides clients world-class subject matter expertise on domestic and international data privacy, policy design and execution, and incident response.” Robert Kirtley … More

The post iDS now handles all facets of data management by launching iCyber Solutions appeared first on Help Net Security.

Cloudflare’s global network now serves more than 18 million Internet properties

Cloudflare, a leading Internet security, performance, and reliability company, announced that it protects and optimizes more than 18 million Internet properties as of the second quarter of 2019, an increase of more than two million from last quarter. This is made possible through Cloudflare’s global network, which spans more than 180 cities in 80 countries and counts approximately ten percent of the Fortune 1,000 as paying customers. Cloudflare announced a number of partnerships in the … More

The post Cloudflare’s global network now serves more than 18 million Internet properties appeared first on Help Net Security.

ThreatConnect Platform now supports MITRE ATT&CK framework

ThreatConnect, provider of the industry’s only intelligence-driven security operations platform announces the support of the MITRE ATT&CK framework, a globally-accessible knowledge base of adversary tactics and techniques, within its own Platform. Users of the ThreatConnect Platform will now be able to classify their intelligence and derive meaningful conclusions to help prioritize responses. The ATT&CK Framework was developed by The MITRE Corporation, and the ATT&CK knowledge base is used as a foundation for the development of … More

The post ThreatConnect Platform now supports MITRE ATT&CK framework appeared first on Help Net Security.