North Korea exploits weak email DMARC settings, and the latest Verizon analysis of thousands of data breaches. Welcome to Cyber Security Today. It’s Friday May 3rd, 2024. I’m Howard Solomon, contributing reporter on cybersecurity for TechNewsday.com. North Korean hackers are trying exploit improperly configured DMARC email server security controls to hide spearphishing attacks. The warning […]
Monthly Archives: May 2024
SaaS applications are dominating the corporate landscape. Their increased use enables organizations to push the boundaries of technology and business. At the same time, these applications also pose a new security risk that security leaders need to address, since the existing security stack does not enable complete control or comprehensive monitoring of their usage.
The U.S. government on Thursday published a new cybersecurity advisory warning of North Korean threat actors’ attempts to send emails in a manner that makes them appear like they are from legitimate and trusted parties. The joint bulletin was published by the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the Department of State. “The
Google on Thursday announced that passkeys are being used by over 400 million Google accounts, authenticating users more than 1 billion times over the past two years. “Passkeys are easy to use and phishing resistant, only relying on a fingerprint, face scan or a pin making them 50% faster than passwords,” Heather Adkins, vice president of security engineering […]
02
May
May
Applications are now open for a $10 million Google for Startups Ukraine Support Fund
HPE Aruba Networking (formerly Aruba Networks) has released security updates to address critical flaws impacting ArubaOS that could result in remote code execution (RCE) on affected systems. Of the 10 security defects, four are rated critical in severity – CVE-2024-26304 (CVSS score: 9.8) – Unauthenticated Buffer Overflow Vulnerability in the L2/L3 Management Service Accessed via
Onur Aksoy, the CEO of a group of companies controlling multiple online storefronts, was sentenced to six and a half years in prison for selling $100 million worth of counterfeit Cisco network equipment to government, health, education, and military organizations worldwide. […]
Bitwarden, the creator of the popular open-source password manager, has just launched a new authenticator app called Bitwarden Authenticator, which is available for iOS and Android devices. […]
CISA and the FBI urged software companies today to review their products and eliminate path traversal security vulnerabilities before shipping. […]
Sony’s latest flagship smartphone, the Xperia 1 VI, is set to launch on May 17th. We’ve managed to get exclusive details ahead of the official reveal, and while it appears to be a modest upgrade, there are still exciting updates in store. Camera: Triple Rear Setup The Xperia 1 VI boasts a triple rear camera […]