HackDig : Dig high-quality web security articles

Microsoft Introduces Security Program for Non-Profits

Tech giant Microsoft has rolled out new security offering to provide non-profit organizationss with additional security in the event of a nation-state attack.Microsoft said the new program would deliver monitoring and notifications for state-sponsored malware activity, assessment of organizational and infrastructure risks to help improve posture, and provide
Publish At:2021-10-22 14:22 | Read:161 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

Microsoft, Intel and Goldman Sachs Lead New Supply Chain Security Group at TCG

Microsoft, Intel and Goldman Sachs will lead a new work group focusing on supply chain security at the Trusted Computing Group (TCG).TCG is a non-profit organization that develops, defines and promotes open and vendor-neutral industry specifications and standards for trusted computing platforms, including the widely used Trusted Platform Module (TPM).TCG has
Publish At:2021-10-19 11:45 | Read:130 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Risk Management Securi

Adaptive Shield Raises $30M for SaaS Security Posture Management

Adaptive Shield, an Israeli cybersecurity startup that specializes in software-as-a-service (SaaS) application security, on Tuesday announced the closing of a $30 million Series B funding round to expand operations around the world.The latest investment was led by Insight Partners with participation from Okta Ventures and previous lead investor Vertex Ventur
Publish At:2021-10-05 14:21 | Read:444 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

Facebook Open-Sources 'Mariana Trench' Code Analysis Tool

Facebook's security team on Wednesday pulled the curtain on Mariana Trench, an open-source tool that it has been using internally to identify vulnerabilities in Android and Java applications.Named after the deepest oceanic trench on Earth, Facebook built Mariana Trench internally to handle the analysis of applications at scale, to help significantly reduce t
Publish At:2021-09-29 18:17 | Read:544 | Comments:0 | Tags:Disaster Recovery Endpoint Security Mobile Security Network

CISA Opens IPv6 Guidance to Public Feedback

The United States Cybersecurity and Infrastructure Security Agency (CISA) on Thursday announced that it’s asking for public feedback on new IPv6 guidance for federal agencies.Named IPv6 Considerations for TIC 3.0, the document was issued in line with Office of Management and Budget (OMB) Memorandum 21-07, which mandates CISA to enhance the Trusted Internet C
Publish At:2021-09-24 15:09 | Read:479 | Comments:0 | Tags:NEWS & INDUSTRY Identity & Access Risk Management Se

Patch Tuesday: Microsoft Plugs Exploited MSHTML Zero-Day Hole

Microsoft on Tuesday shipped a major security update to blunt zero-day attacks targeting a gaping hole in its proprietary MSHTML browsing engine.The patch comes exactly one week after the Redmond, Wash. software giant acknowledged the CVE-2021-40444 security defect and confirmed the existence of in-the-wild exploitation via booby-trapped Microsoft Office doc
Publish At:2021-09-14 15:26 | Read:559 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Mobile Secu

Google Warns of Exploited Zero-Days in Chrome Browser

Google has joined the list of major software providers scrambling to respond to zero-day exploits in the wild.On the same day Apple pushed out iOS and macOS patches to address gaping security holes, Google shipped an advisory of its own to warn of a pair of already-exploited flaws in its desktop Chrome browser.“Google is aware that exploits for CVE-2021-3063
Publish At:2021-09-13 19:46 | Read:399 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Mobile Secu

Tenable to Acquire Accurics in $160M Deal

Attack surface management pioneer Tenable on Monday announced plans to spend $160 million in cash to snap up Accurics, an early-stage startup selling cloud-native security for DevOps and security teams.The deal, which is expected to close later this year, is Tenable’s priciest acquisition to date and expands its product portfolio with capabilities to detect
Publish At:2021-09-13 15:26 | Read:399 | Comments:0 | Tags:Disaster Recovery Endpoint Security Network Security NEWS &a

CISA Reminds of Risks Connected to Managed Service Providers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued new  guidelines for government and private organizations to take into consideration when looking to outsource services to a Managed Service Provider (MSP).Titled Risk Considerations for Managed Service Provider Customers, CISA’s new guidance is aimed at three decision-making gro
Publish At:2021-09-08 11:31 | Read:693 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security NEWS &

Howard University Cancels Classes, Shuts Campus After Ransomware Attack

Howard University closed its physical campus and canceled classes this week after experiencing a ransomware attack.The incident was discovered on September 3, right before the Labor Day weekend, and the University’s Enterprise Technology Services (ETS) immediately shut down the internal network to contain the attack.The University did not provide information
Publish At:2021-09-08 11:31 | Read:562 | Comments:0 | Tags:Disaster Recovery Endpoint Security Network Security NEWS &a

Microsoft Office Zero-Day Hit in Targeted Attacks

Microsoft’s embattled security response unit is scrambling to deal with another zero-day attack hitting users of its flagship Microsoft Office software suite.The Redmond, Wash. software giant issued an urgent pre-patch advisory Tuesday to warn of a remote code execution vulnerability in MSHTML, the proprietary browsing engine built into the Office productivi
Publish At:2021-09-07 19:46 | Read:572 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

Cisco Patches High Severity Vulnerabilities in BPA, WSA

Cisco this week released patches for high severity vulnerabilities in Business Process Automation (BPA) and Web Security Appliance (WSA) that expose users to privilege escalation attacks.Two security holes were addressed in Business Process Automation (BPA), both featuring a CVSS score of 8.8. An authenticated, remote attacker able to exploit these could ele
Publish At:2021-07-08 16:20 | Read:524 | Comments:0 | Tags:Cyberwarfare Endpoint Security Network Security NEWS & I

Sophos Acquires Capsule8 to Beef up Linux Protection

British anti-malware powerhouse Sophos has acquired Capsule8 to beef up the Linux protection capabilities to its endpoint detection and response product stack.Financial terms of the deal were not disclosed.  Capsule8, based in New York, raised $30 million in venture capital investments since launching in 2016.  Capsule8’s investors include Intel Ca
Publish At:2021-07-07 13:02 | Read:403 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Priva

Hewlett Packard Enterprise Buys Zerto for $374 Million

Hewlett Packard Enterprise announced it has entered into a definitive agreement to acquire cloud data management and protection provider Zerto. The price tag: $374 million in cash.With this acquisition, HPE seeks to expand its GreenLake cloud data services and move HPE Storage closer to becoming a cloud-native, software-defined data services business, t
Publish At:2021-07-06 13:37 | Read:480 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

SASE Provider Versa Networks Raises $86 Million

Secure Access Service Edge (SASE) provider Versa Networks this week announced it raised $86 million in Series D funding. To date, the company has received $200 million in funding.The funding round was led by Princeville Capital and RPS Ventures, with additional participation from existing investors, including Sequoia Capital.Based in San Jose, California, Ve
Publish At:2021-07-01 12:47 | Read:465 | Comments:0 | Tags:Endpoint Security NEWS & INDUSTRY Privacy Audits Fraud &


Share high-quality web security related articles with you:)
Tell me why you support me <3