Read Time:4 Second
Rising salaries, the cost of living and changing expectations makes hiring cybersecurity specialists hard
Monthly Archives: June 2023
Supply Chain and APIs Top Security Concerns, CISO Survey Shows
Read Time:6 Second
Findings indicate that 89% of CISOs are grappling with risks arising from the rapid deployment of digital services
Security Researchers Uncover New Spyware Implant TriangleDB
Read Time:4 Second
Kaspersky report that the implant specifically targets iOS devices via a malicious iMessage attachment
Oreo maker Mondelez staff hit by data breach at third-party law firm
Read Time:12 Second
Snack giant Mondelez is warning past and present employees that their personal information may now be in the hands of hackers following a data breach at a third-party firm.
Read more in my article on the Hot for Security blog.
#InfosecurityEurope: Compliance Does Not Mean Security, Experts Warn
#InfosecurityEurope: Security Training Failures Impacting Digital Transformation
Read Time:4 Second
Organizations are still failing to consider cyber risk from the start, experts say
CVE-2022-45287
Read Time:7 Second
An access control issue in Registration.aspx of Temenos CWX 8.5.6 allows authenticated attackers to escalate privileges and perform arbitrary Administrative commands.
CVE-2022-3372
Read Time:18 Second
There is a CSRF vulnerability on Netman-204 version 02.05. An attacker could manage to change administrator passwords through a Cross Site Request Forgery due to the lack of proper validation on the CRSF token. This vulnerability could allow a remote attacker to access the administrator panel, being able to modify different parameters that are critical for industrial operations.
Baffle launches new user interface to simplify application data security
Read Time:32 Second
Data security software provider Baffle has released Baffle Manager 2.0, an interface upgrade to automate enterprise-level data protection for applications, analytics, and AI.
The user interface upgrade is aimed at simplifying application-level encryptions, which were difficult and time-consuming with legacy systems, the company said in a press statement.
“Baffle Manager 2.0 is a single platform where users can create and manage their data protection policies across the cloud, legacy, and third-party applications and stay on the forefront of new AI initiatives,” said Ameesh Divatia, co-founder and chief executive officer at Baffle.