November 16, 2023 at 01:04PM A similar organization to the US National Highway Traffic Safety Administration (NHTSA) should be created to ensure consumer software security. Software should meet basic security and safety standards and be easily understood and implemented by consumers. Safety features should be in place by default, but users need to actively use … Read more
November 15, 2023 at 06:12PM Samsung Electronics has experienced a data breach in the UK, affecting customers who made purchases between July 2019 and June 2020. The breach was caused by a hacker exploiting a vulnerability in a third-party application used by the company. Customer names, phone numbers, addresses were exposed, but financial information and … Read more
November 15, 2023 at 05:46PM ALTR Solutions, Inc. has closed its $25 million Series C Preferred financing to meet the growing demand for its SaaS-based data access governance and security solutions. The funding will be used to strengthen ALTR’s position in the cloud data access governance and security market, expand its footprint across data sources, … Read more
November 14, 2023 at 04:51PM Frontegg has released an open source tool called HARmor to help secure HTTP Archive (HAR) files from unauthorized access. HAR files are commonly used by developers and support teams for debugging, performance analysis, and investigating security vulnerabilities of web applications. HAR files can contain sensitive data, making them potential targets … Read more
November 13, 2023 at 05:22AM Data diodes, also known as unidirectional gateways, are gaining attention as a solution for enhancing cybersecurity. Unlike firewalls, data diodes only allow data to flow in one direction, preventing attackers from accessing secure networks. While they have been around since the 1980s, advancements in software have made data diodes compatible … Read more
November 10, 2023 at 02:16PM A group of cybercriminals exploited a vulnerability in the MOVEit file-transfer tool, gaining access to files belonging to the State of Maine. The breach exposed information on 1.3 million individuals, including names, Social Security numbers, dates of birth, and more. The state has implemented security measures and is offering credit … Read more
November 10, 2023 at 11:30AM Canadian cybersecurity startup Cavelo has secured CA$5 million in seed funding, bringing its total raised to CA$6.3 million. The funding round was led by Inovia Capital, with participation from Graphite Ventures and existing investors. Cavelo’s solution leverages machine learning to continuously scan an organization’s assets, identify sensitive data, and provide … Read more
November 10, 2023 at 10:03AM Executives need a profound understanding of cyber, data, and technology risks in today’s business landscape, especially during mergers and acquisitions (M&A). The significance of cybersecurity during M&A due diligence lies in evaluating the target company’s cybersecurity posture. Intangible assets, specifically digital assets, hold substantial value but are susceptible to breaches … Read more
November 7, 2023 at 05:38PM London-based cyber security business Risk Ledger has raised £6.25m ($8.5m) in a series A funding round led by Mercia Ventures. The company plans to use the funding to strengthen supply chains and develop tools to combat supply chain security attacks. Risk Ledger offers a social network approach to supply chain … Read more
November 6, 2023 at 10:48AM The Allied Pilots Association (APA) is making progress in restoring its systems after a ransomware attack on October 30. The attack encrypted certain systems, but APA’s IT team, with external support, is working to restore functionality. Pilot-facing products and tools will be the main focus of restoration efforts, with full … Read more