Cox Biz Auth-Bypass Bug Exposes Millions of Devices to Takeover

June 4, 2024 at 10:14AM An API authorization-bypass flaw in Cox Communications’ infrastructure exposed millions of business customer devices to attacks. Independent bug researcher Sam Curry identified and reported the issue, leading to a prompt fix by the provider. Potential risks included unauthorized access to customer information, Wi-Fi passwords, and connected devices. The vulnerability highlighted … Read more

Bolster Raises $14 Million for AI-Powered Phishing Protection

May 23, 2024 at 09:09AM Bolster, a multi-channel phishing protection provider, has secured $14 million in a Series B funding round led by Microsoft’s M12, with additional funding from several other ventures. The Santa Clara-based company founded in 2019 uses AI and ML to prevent phishing and impersonation attacks. The funding will accelerate go-to-market initiatives … Read more

Deepfakes Rank As the Second Most Common Cybersecurity Incident for US Businesses

May 20, 2024 at 04:11PM Deepfakes are now the second most common cybersecurity incident for US businesses, with over a third experiencing such incidents in the last year. Managing third-party vendor risk is a major challenge, and financial allocations for securing supply chain connections are set to increase. While AI and ML are seen as … Read more

AT&T Launches New Managed Cybersecurity Services Business LevelBlue

May 7, 2024 at 08:42AM WillJam Ventures and AT&T have united to establish a standalone cybersecurity services business, LevelBlue. With 1,000 employees globally, LevelBlue offers comprehensive cybersecurity services, including consulting, SOC support, managed security services, and threat intelligence. Leveraging the Open Threat Exchange, the company focuses on simplifying cybersecurity for businesses of all sizes and … Read more

Expert-Led Webinar – Uncovering Latest DDoS Tactics and Learn How to Fight Back

May 3, 2024 at 09:57AM Summary: A webinar titled “Uncovering Contemporary DDoS Attack Tactics—How to Fight Back” will feature Andrey Slastenov, Head of Security at Gcore, discussing the escalating risks of DDoS attacks. Attendees will gain proactive defense strategies, practical tips, and have a chance to engage with the expert directly. The webinar aims to … Read more

Kaspersky Unveils New Flagship Product Line for Business, Kaspersky Next

April 16, 2024 at 05:04PM Kaspersky introduced its new flagship product line, Kaspersky Next, offering robust endpoint protection with EDR and XDR capabilities. The product is tailored to different business requirements and IT infrastructures. It provides advanced cybersecurity solutions, deployment flexibility, and automation features. The product comes in three tiers to meet varying security needs. … Read more

Kim Larsen New Chief Information Security Officer at SaaS Data Protection Vendor Keepit

April 16, 2024 at 04:29PM Kim Larsen, a seasoned cybersecurity leader with 20+ years of Govt and private sector experience, has joined Keepit as the new CISO. Larsen’s expertise spans business-driven security, risk management, and aligning digital strategies. His strategic insights and unique perspective position him to elevate Keepit’s security advisory capabilities and future services. … Read more

5 Ways CISOs Can Navigate Their New Business Role

March 19, 2024 at 05:02PM Forrester analysts advise CISOs on how to enhance business security and increase their strategic influence within the organization, cautioning about potential pitfalls. After reviewing the meeting notes, the key takeaway would be that CISOs have the potential to enhance the security of business operations and contribute significantly to the organization’s … Read more

3 Ways Businesses Can Overcome the Cybersecurity Skills Shortage

March 18, 2024 at 01:08AM Businesses must creatively defend against cybersecurity threats due to budget constraints and limited skilled talent. It seems that the main takeaway from the meeting notes is that businesses are facing challenges due to budget constraints and a limited supply of skilled talent in defending against cybersecurity threats. The notes emphasize … Read more

6 CISO Takeaways From the NSA’s Zero-Trust Guidance

March 15, 2024 at 12:33PM All companies, not just federal agencies, should strive to implement the “network and environment” aspect of the National Security Agency’s zero-trust guidelines. Based on the meeting notes, the key takeaway is that it is recommended for all companies, not just federal agencies, to strive to implement the “network and environment” … Read more