Recent Security News
-
What the Bionic Acquisition Can Bring to CrowdStrike
October 30, 2023 at 07:34AM CrowdStrike’s recent acquisition of Bionic is strengthening its cloud security offerings and positioning the company as a player in reactive cloud security. The acquisition brings capabilities like Cloud Native Application Protection Platform (CNAPP) and Application Security Posture Management (ASPM) to CrowdStrike’s Falcon platform. Bionic’s technology will be integrated into a…
-
EleKtra-Leak Cryptojacking Attacks Exploit AWS IAM Credentials Exposed on GitHub
October 30, 2023 at 07:24AM The EleKtra-Leak campaign is targeting exposed Amazon Web Service (AWS) identity and access management (IAM) credentials on public GitHub repositories for cryptojacking. The campaign has been active since December 2020 and has employed automated targeting of IAM credentials within four minutes of exposure. The attacker has also been linked to…
-
Urgent: New Security Flaws Discovered in NGINX Ingress Controller for Kubernetes
October 30, 2023 at 03:18AM Unpatched security flaws have been discovered in the NGINX Ingress controller for Kubernetes. These vulnerabilities (CVE-2022-4886, CVE-2023-5043, CVE-2023-5044) could allow threat actors to steal secret credentials, execute arbitrary commands, and inject code into the ingress controller. Mitigations have been released, but updating NGINX and enabling strict path validation is recommended.…
-
Securing Modern Enterprises in a Borderless Landscape
October 30, 2023 at 03:08AM The COVID-19 pandemic led to a surge in remote work, prompting organizations to quickly adopt remote collaboration tools. However, ensuring robust security for remote access has been a challenge. To address this, Cisco partnered with Forgepoint Capital, NightDragon, and Team8 to create the 2023 CISO Survival Guide, a framework for…
-
CISO Skills in a Changing Security Market: Are You Prepared?
October 30, 2023 at 03:08AM CISOs today require a combination of technical and business skills. They must be critical thinkers who can contribute to strategic business discussions. They need to educate and communicate effectively with boards and decision-makers. CISOs benefit from diverse perspectives gained through different industries and roles. They must also promote a multi-layered…