HackDig : Dig high-quality web security articles

Zoom Patches High Risk Flaws on Windows, MacOS Platforms

Video messaging giant Zoom has released patches for multiple security vulnerabilities that expose both Windows and macOS users to malicious hacker attacks.The vulnerabilities, in the enterprise-facing Zoom Rooms product, could be exploited in privilege escalation attacks on both Windows and macOS platforms.The company’s first batch of patches for 2023 includ
Publish At:2023-01-10 14:30 | Read:98020 | Comments:0 | Tags:Network Security NEWS & INDUSTRY Application Security Em

Adobe Plugs Security Holes in Acrobat, Reader Software

Software maker Adobe has rolled out its first batch of security patches for 2023 with fixes for at least 29 security vulnerabilities in a range of enterprise-facing products.The most prominent update, for the widely deployed Adobe Acrobat and Reader software, fixes critical-severity flaws that expose Windows and macOS users to code execution attacks.Accordin
Publish At:2023-01-10 14:30 | Read:84554 | Comments:0 | Tags:Endpoint Security NEWS & INDUSTRY Application Security E

Microsoft Flags Ransomware Problems on Apple's macOS Platform

Security researchers at Microsoft are flagging ransomware attacks on Apple’s flagship macOS operating system, warning that financially motivated cybercriminals are abusing legitimate macOS functionalities to exploit vulnerabilities, evade defenses, or coerce users to infect their devices.In a blog post documenting its research into four known macOS ransomwar
Publish At:2023-01-09 18:28 | Read:98770 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

AWS Enables Default Server-Side Encryption for S3 Objects

AWS has announced that server-side encryption (SSE-S3) is now enabled by default for all Simple Storage Service (S3) buckets.Initially introduced in 2011, SSE-S3 handles both encryption and decryption, along with key management. An opt-in feature until now, SSE-S3 relies on Advanced Encryption Standard (AES) encryption with 256-bit keys managed by AWS.“S3 bu
Publish At:2023-01-09 10:32 | Read:105841 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Cloud Security Data Protection

SASE Company Netskope Raises $401 Million

Secure access service edge (SASE) provider Netskope on Thursday announced that it has raised $401 million in an oversubscribed financing round. To date, the company has raised close to $1.5 billion.The new investment round was led by Morgan Stanley Tactical Value, with participation from CPP Investments, Goldman Sachs Asset Management, and Ontario Teachers'
Publish At:2023-01-06 12:00 | Read:80676 | Comments:0 | Tags:NEWS & INDUSTRY Cloud Security Data Protection Managemen

California v. Congress: Data Protection Law Showdown

When it comes to data protection laws, the United States has long lagged behind Europe, whose  General Data Protection Regulation (GDPR) came into effect in 2018 as the gold standard in data protection.  Also, in 2018, California passed the California Privacy Protection Act, further expanding it to the California Privacy Rights Act (CPRA) in 2020.
Publish At:2023-01-06 11:38 | Read:85152 | Comments:0 | Tags:Government Risk Management California cybersecurity law Data

Predictions 2023: Big Tech’s Coming Security Shopping Spree

The SecurityWeek editorial team huddled over the holidays to look back at the stories that shaped 2022 and, more importantly, to stare into a shiny crystal ball to find the cybersecurity narratives that will dominate this year’s headlines.For the most part, not much will change. Organizations large and small will continue to acknowledge major data breaches,
Publish At:2023-01-05 14:30 | Read:78339 | Comments:0 | Tags:Cyberwarfare Endpoint Security Network Security NEWS & I

Database Containing 235 Million Twitter User Records Available for Free

A database containing over 235 million unique records of Twitter users is now available for free on the web, cybercrime intelligence firm Hudson Rock warns.Containing information such as name, username, email address, follower count, and creation date, the database has been circulating on underground forums and was eventually leaked for free.“The database co
Publish At:2023-01-05 10:32 | Read:79247 | Comments:0 | Tags:NEWS & INDUSTRY Data Protection Cybercrime

Slack Says Hackers Stole Private Source Code Repositories

Enterprise communication and collaboration platform Slack has informed customers that hackers have stolen some of its private source code repositories, but claims impact is limited.Slack disclosed the incident on December 31. It’s not uncommon for companies to disclose data breaches right before or during major holidays in hopes that they will not get too mu
Publish At:2023-01-05 10:32 | Read:90592 | Comments:0 | Tags:NEWS & INDUSTRY Application Security Data Protection Cyb

Netwrix Acquires Remediant for PAM Technology

Data security software vendor Netwrix has acquired Remediant, an early-stage startup working on technology in the PAM (privileged access management) category.Financial terms of the acquisition were not disclosed. Remediant, based in San Francisco and backed by Dell Technologies Capital and ForgePoint Capital, raised $15 million in Series A venture capit
Publish At:2022-12-28 14:29 | Read:126216 | Comments:0 | Tags:Network Security NEWS & INDUSTRY Application Security Au

Data of 400 Million Twitter Users for Sale as Irish Privacy Watchdog Announces Probe

An individual is offering to sell the data of more than 400 million Twitter users, just as Ireland’s data protection watchdog has announced an investigation into the recent data leaks impacting the social media giant.On December 23, someone posted a message on a popular hacking forum announcing the sale of a database containing the names, usernames, email ad
Publish At:2022-12-27 10:31 | Read:142274 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Compliance Data Protection Cyber

Microsoft Patches Azure Cross-Tenant Data Access Flaw

Microsoft has silently fixed an important-severity security flaw in its Azure Container Service (ACS) after an external researcher warned that a buggy feature allowed cross-tenant network bypass attacks.The vulnerability, documented by researchers at Mnemonic, effectively removed the entire network and identity perimeter around  internet-isolated Azure
Publish At:2022-12-23 18:27 | Read:134096 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Appli

How the CCPA is Shaping Other State’s Data Privacy

Privacy laws are nothing new when it comes to modern-day business. However, since the global digitization of data and the sharing economy took off, companies have struggled to keep up with an ever-changing legal landscape while still fulfilling their obligations to protect user data. The challenge is that there is no one-size-fits-all solution regarding dat
Publish At:2022-12-23 11:37 | Read:109629 | Comments:0 | Tags:Data Protection privacy laws Data Privacy Privacy

LastPass Says Password Vault Data Stolen in Data Breach

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that could be exposed by brute-forcing or guessing master passwords.The company, which is owned by GoTo (formerly LogMeIn), said the hackers broke into its network in August and used information from that hack
Publish At:2022-12-22 22:25 | Read:123393 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security NEWS &

What Can We Learn From Recent Cyber History?

The Center for Strategic and International Studies compiled a list of significant cyber incidents dating back to 2003. Compiling attacks on government agencies, defense and high-tech companies or economic crimes with losses of more than a million dollars, this list reveals broader trends in cybersecurity for the past two decades. And, of course, there are t
Publish At:2022-12-22 11:37 | Read:114835 | Comments:0 | Tags:Intelligence & Analytics Data Protection cyber attacks cyber

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud