-
Xage’s new IAM offering provides multilayer authentication for ICS/OT
PRIVACY PRIVACY Zero trust security provider Xage Security has added a multilayer identity and access management (IAM) solution to its decentralized access control platform Xage Fabric to secure assets in different layers of operational technology (OT) and industrial control systems (ICS) environments. “Multilayer IAM is needed for a couple of reasons,” said Roman Arutyunov, co-founder,…
-
Cyber insurer launches InsurSec solution to help SMBs improve security, risk management
PRIVACY PRIVACY Cyber insurance provider At-Bay has announced the launch of a new InsurSec solution to help small-to-mid sized businesses (SMBs) improve their security and risk management postures through their insurance policy. The firm describes the At-Bay Stance platform as a “world’s first” that aims to addresses major security technology and skills access gaps by…
-
Ex-CEO of hacked therapy clinic sentenced for failing to protect patients’ session notes
PRIVACY PRIVACY A Finnish court has given the former CEO of a chain of psychotherapy clinics a suspended jail sentence after failing to adequately protect highly sensitive notes of patients’ therapy sessions from falling into the hands of blackmailing hackers. Read more in my article on the Hot for Security blog. Read More
-
Five Eye nations release new guidance on smart city cybersecurity
PRIVACY PRIVACY New guidance, Cybersecurity Best Practices for Smart Cities, wants to raise awareness among communities and organizations implementing smart city technologies that these beneficial technologies can also have potential vulnerabilities. A collaboration among the Five Eye nations (Australia, Canada, New Zealand, the UK, and the US), it advises communities considering becoming smart cities to…
-
New Zero-Click Exploits Against iOS
PRIVACY PRIVACY CitizenLab has identified three zero-click exploits against iOS 15 and 16. These were used by NSO Group’s Pegasus spyware in 2022, and deployed by Mexico against human rights defenders. These vulnerabilities have all been patched. One interesting bit is that Apple’s Lockdown Mode (part of iOS 16) seems to have worked to prevent…
-
FTC accuses payments firm of knowingly assisting tech support scammers
PRIVACY PRIVACY Multinational payment processing firm Nexway has been rapped across the knuckles by the US authorities, who claim that the firm knowingly processed fraudulent credit card payments on behalf of tech support scammers. Read more in my article on the Tripwire State of Security blog. Read More
-
Get ready for RSA 2023: Stronger Together
PRIVACY PRIVACY Going to RSA next week? If you don’t know, it’s a huge cybersecurity conference held at Moscone Center in San Francisco, CA. If you’re going, please stop by the AT&T Cybersecurity booth and check us out. It’s at #6245 in the North Hall. Remember to bring a picture ID for RSA check-in, otherwise…
-
Recycled Network Devices Exposing Corporate Secrets
PRIVACY PRIVACY ESET warns of breach risk from kit that is not properly decommissioned Read More
-
#CYBERUK23: Russian Cyber Offensive Exhibits ‘Unprecedented’ Speed and Agility
PRIVACY PRIVACY Russia’s cyber operations since the invasion of Ukraine have been deployed with remarkable speed and flexibility, a new NCSC report shows Read More
-
Critical Infrastructure Firms Concerned Over Insider Threat
PRIVACY PRIVACY Financial services sector is particularly badly impacted Read More