Recent Security News
-
10 Security Metrics Categories CISOs Should Present to the Board
February 15, 2024 at 08:29AM Due to increased SEC regulations, companies are under pressure to enhance transparency and speed up breach disclosure in cybersecurity reporting. Boards are demanding more rigorous tracking of KPIs and KRIs, operational metrics, and asset and security performance indicators. The book, “The Cyber Savvy Boardroom,” co-authored by Homaira Akbari and Shamla…
-
Microsoft Warns of Exploited Exchange Server Zero-Day
February 15, 2024 at 06:45AM A critical vulnerability in Exchange Server (CVE-2024-21410) is actively exploited, enabling privilege escalation and NTLM hash relay attacks. Microsoft issued a warning and released Exchange Server 2019 CU14 to address the flaw. Furthermore, Check Point disclosed another critical-severity Outlook vulnerability (CVE-2024-21413) allowing remote code execution through crafted hyperlinks. Both companies…
-
DDoS Hacktivism is Back With a Geopolitical Vengeance
February 15, 2024 at 06:45AM Geopolitical revenge now dominates DDoS attacks, with Israel becoming the 4th most targeted nation. StormWall’s data shows attacks against government, energy, and telecom sectors align with inflicting economic damage. Retail attacks may stem from over-aggressive competitors, while varying motives include criminal extortion and unfair competition. StormWall advises being prepared for…
-
How Nation-State Actors Target Your Business: New Research Exposes Major SaaS Vulnerabilities
February 15, 2024 at 06:35AM Wing Security’s analysis of 493 SaaS-using companies in Q4 2023 reveals the significance of SaaS-related risks following 2023’s cyber attacks. The report underlines the need for SaaS security measures, highlights common SaaS risks, and emphasizes the growing threat of supply chain attacks. It concludes with 8 ways to mitigate SaaS…