#DataSecurity

Announcing Fortanix Key Insight — A Solution to Discover and Remediate Data Security Risks in Hybrid Multicloud Environments

by

November 29, 2023 at 05:50PM Fortanix Inc. introduces Key Insight for its DSM platform, a unique tool to discover, assess, and remediate risks in encryption key management across multicloud environments, providing a data-centric security solution with improved compliance and risk posture. To be showcased at AWS re:Invent 2023. Takeaways from Meeting Notes: 1. Fortanix Inc. … Read more

Dollar Tree hit by third-party data breach impacting 2 million customers

by

November 29, 2023 at 04:26PM Dollar Tree’s service provider, Zeroed-In Technologies, suffered a data breach, compromising the personal data of nearly 2 million customers, including names, birthdates, and Social Security numbers. Affected parties are being offered identity protection and credit monitoring services. Investigations and potential lawsuits are underway. Meeting Takeaways: 1. Dollar Tree, including Family … Read more

DP World confirms data stolen in cyberattack, no ransomware used

by

November 28, 2023 at 12:15PM DP World Australia, a major logistics company, has confirmed that data was stolen during a recent cyber attack on its systems. The attack disrupted operations at five Australian ports, leaving over 30,000 containers stranded. Although no ransomware was used, DP World confirmed that some files were accessed and a small … Read more

Transform Your Data Security Posture – Learn from SoFi’s DSPM Success

by

November 28, 2023 at 08:06AM Sentra’s DSPM offers a comprehensive solution for securing sensitive data in the cloud. The webinar features SoFi’s success story in implementing DSPM and provides insights on discovering and classifying sensitive data, assessing data security posture, and monitoring for threats. The session is tailored for IT professionals seeking to enhance their … Read more

Design Flaw in Google Workspace Could Let Attackers Gain Unauthorized Access

by

November 28, 2023 at 08:06AM A design flaw in Google Workspace’s domain-wide delegation (DWD) feature poses a serious security risk, allowing threat actors to gain unauthorized access to Workspace APIs. The flaw, called DeleFriend, can be exploited by manipulating existing delegations in Google Cloud Platform and Workspace. It enables theft of emails, data exfiltration, and … Read more

Despite Hype, the Password-Free Workplace Is Still a Long Way Off

by

November 28, 2023 at 03:53AM Despite the increasing security risk, passwords are still prevalent in the workplace, with organizations slowly transitioning to passwordless technology. According to a survey, 30% have started the transition, while 36% are one to two years away, and 21% are three to four years away. Weak password practices contribute to the … Read more

Balancing Simplicity and Security in the Digital Experience

by

November 27, 2023 at 03:02AM Digitalization has empowered consumers with more choices and information, but also increased concerns about identity theft and fraud. Consumers are worried about the misuse of AI and want their digital identity protected. Businesses can ease fears by implementing multifactor authentication and emphasizing adherence to privacy regulations. Passwordless authentication and proactive … Read more

Warning: 3 Critical Vulnerabilities Expose ownCloud Users to Data Breaches

by

November 24, 2023 at 11:30PM The open-source file-sharing software ownCloud has warned users about three critical security flaws that could expose sensitive information and allow for file modification. The vulnerabilities involve disclosure of credentials and configuration, authentication bypass, and subdomain validation bypass. The company recommends specific fixes for each flaw. Additionally, a critical remote code … Read more

Welltok data breach exposes data of 8.5 million US patients

by

November 22, 2023 at 02:09PM Healthcare SaaS provider, Welltok, has experienced a data breach, compromising the personal data of nearly 8.5 million patients in the U.S. The breach occurred after their file transfer program was hacked. Welltok offers services to health service providers, including maintaining online wellness programs and holding patient data. The breach involved … Read more

The Role of the CISO in Digital Transformation

by

November 21, 2023 at 03:59PM The role of the chief information security officer (CISO) is becoming increasingly important as organizations modernize their workflows and migrate to the cloud. The CISO must balance innovation and security, collaborate with other leaders, and ensure security is considered at all stages of the process. A strong CISO collaborates with … Read more