The Fast Evolution of SaaS Security from 2020 to 2024 (Told Through Video)

October 16, 2023 at 08:25AM The text discusses the importance of SaaS security and highlights key findings from the SaaS Security Survey Report. It emphasizes the need for automated configuration and monitoring tools, as well as the critical role of identity and access governance. The risks associated with third-party connected apps are also examined. The … Read more

Equifax Fined $13.5 Million Over 2017 Data Breach

October 16, 2023 at 08:24AM The UK Financial Conduct Authority (FCA) has fined Equifax Ltd, the UK arm of Equifax Inc, more than £11 million over the 2017 data breach. The cyberattack impacted approximately 147 million people, including 13.8 million UK consumers. The FCA found that Equifax Ltd failed to properly manage and monitor the … Read more

Microsoft plans to kill off NTLM authentication in Windows 11

October 13, 2023 at 12:50PM Microsoft has announced that the NTLM authentication protocol will be phased out in Windows 11. Kerberos has replaced NTLM as the default authentication protocol since Windows 2000. Despite being used in older versions, NTLM is still vulnerable to attacks such as relay attacks and pass-the-hash attacks. Microsoft is working on … Read more

DigiCert Announces Comprehensive Discovery of Cryptographic Assets

October 12, 2023 at 06:10PM DigiCert has announced the next generation of its Trust Lifecycle Manager called Discovery. This enables customers to create a centralized record of cryptographic keys and certificates, improving security and reducing the time needed for updates and threat remediation. The integration with services like Qualys and AWS Private CA allows for … Read more