December 2, 2024 at 11:37AM In November 2024, a record 49 cybersecurity M&A deals were announced, contributing to a total of 178 deals in the first half of the year, the slowest since 2021. Notable acquisitions include Belden’s purchase of Voleatech, Bitsight’s acquisition of Cybersixgill, and CrowdStrike’s buy of Adaptive Shield. ### Meeting Takeaways: Cybersecurity … Read more
December 2, 2024 at 10:05AM An effective incident response (IR) library emphasizes the necessity of having up-to-date IR plans and playbooks. While IR plans outline organizational roles during incidents, playbooks standardize responses, enhance efficiency, and improve preparedness. Regular updates and testing of playbooks are crucial for effective incident management and cost reduction. ### Key Takeaways … Read more
December 2, 2024 at 09:52AM Red Hat invites IT professionals to the State of Linux Security Symposium 2024 on December 10th, 10am PT/1pm ET. The event covers security principles, supply chain protection, and the benefits of Red Hat Enterprise Linux, featuring real-world insights and collaboration strategies for enhancing Linux infrastructure security. Sign up to participate. … Read more
December 2, 2024 at 08:53AM Microsoft plans to release a new version of Windows in 2025, featuring enhanced security measures, including more resilient drivers and a “self-defending” operating system kernel to improve overall protection. **Meeting Takeaways:** 1. Microsoft is planning to release a new version of Windows in 2025. 2. The upcoming release will feature … Read more
December 2, 2024 at 08:50AM Mozilla is experimenting with a new strategy aimed at encouraging more users to change their default browser on Windows. The initiative seeks to enhance user engagement and promote Firefox as a preferred choice. **Meeting Notes Takeaways:** 1. **Initiative**: Mozilla is exploring a new strategy aimed at encouraging Windows users to … Read more
December 2, 2024 at 07:44AM Mikhail Pavlovich Matveev, a notorious cybercriminal and alleged ransomware mastermind, was reportedly arrested by Russian authorities. Indicted by the US in 2023 with a $10 million reward for his capture, his arrest might signal a shift in Russia’s approach to cybercrime, possibly linked to financial pressures due to the Ukraine … Read more
December 2, 2024 at 07:25AM Zabbix has announced a critical vulnerability (CVE-2024-42327) in its monitoring solution, allowing SQL injection attacks through API access for non-admin users. Affected versions include 6.0.0 to 6.0.31, 6.4.0 to 6.4.16, and 7.0.0. Patches are available in recent releases. Users are urged to update promptly. ### Meeting Takeaways on Zabbix Vulnerabilities … Read more
December 2, 2024 at 07:09AM AI is transforming various sectors, but it also presents significant security risks. An upcoming webinar by Liqian Lim of Snyk will cover essential strategies for securing AI app development. Participants will learn how to identify risks, integrate security in development, and choose protective tools. Registration is limited, so act quickly. … Read more
December 2, 2024 at 07:09AM Hackers launch approximately 2,200 attacks daily, with evolving threats like AI-generated phishing emails and adaptive malware. T-Mobile recently detected attempted intrusions by a group called ‘Salt Typhoon’ using a new tool, GHOSTSPIDER. Key developments include arrests in ransomware operations and new malware targeting various platforms. Stay vigilant in cybersecurity. ### … Read more
December 2, 2024 at 06:55AM Two NHS hospitals in the UK reported cyberattacks last week, with Alder Hey investigating a ransomware claim regarding stolen patient data. The Wirral University Hospital also experienced a cyber incident, disrupting services but without confirmed ransomware involvement. Both hospitals are working to secure systems and assess impacts on operations. **Meeting … Read more