New Guide Explains How to Eliminate the Risk of Shadow SaaS and Protect Corporate Data https://firewall.firm.in/wp-content/uploads/2024/05/layer.png May 03, 2024The Hacker NewsSaaS Security / Browser Security SaaS applications are dominating the corporate landscape. Their increased use enables organizations to push the boundaries of technology and business. At the same time, these applications also pose a new security risk that security leaders ...

Protect Your Business From These Dangerous Data Breach Trends – ET CISO https://etimg.etb2bimg.com/thumb/msid-84786293,imgsize-4126751,width-1200,height=765,overlay-etciso/news/protect-your-business-from-these-dangerous-data-breach-trends.jpg 2020 was an unprecedented year in many ways, and data breaches were no exception. According to fraud detection vendor SpyCloud’s 2021 Annual Credential Exposure Report, there were 33% more breach sources in 2020 compared to 2019. Of those breaches, there were at least 1,486,416,779 stolen credentials in ...

Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks https://firewall.firm.in/wp-content/uploads/2024/05/hpe.png May 03, 2024NewsroomVulnerability / Software Security HPE Aruba Networking (formerly Aruba Networks) has released security updates to address critical flaws impacting ArubaOS that could result in remote code execution (RCE) on affected systems. Of the 10 security defects, four are rated critical in severity – CVE-2024-26304 (CVSS score: 9.8) ...

Spies for Hire: China’s new breed of hackers blends espionage and entrepreneurship – ET CISO https://etimg.etb2bimg.com/thumb/msid-85680968,imgsize-30538,width-1200,height=765,overlay-etciso/news/spies-for-hire-chinas-new-breed-of-hackers-blends-espionage-and-entrepreneurship.jpg China’s buzzy high-tech companies do not usually recruit Cambodian speakers, so the job ads for three well-paid positions with those language skills stood out. The ad, seeking writers of research reports, was placed by an internet security startup in China’s tropical island-province of Hainan. ...

Popular Android Apps Like Xiaomi, WPS Office Vulnerable to File Overwrite Flaw https://firewall.firm.in/wp-content/uploads/2024/05/apps.png May 02, 2024NewsroomVulnerability / Android Several popular Android applications available in Google Play Store are susceptible to a path traversal-affiliated vulnerability that could be exploited by a malicious app to overwrite arbitrary files in the vulnerable app’s home directory. “The implications of this vulnerability pattern include arbitrary ...

Zero-day vulnerabilities becoming major source of cyberattacks: Verizon – ET CISO https://etimg.etb2bimg.com/thumb/msid-109773721,imgsize-874584,width-1200,height=765,overlay-etciso/corporate/zero-day-vulnerabilities-becoming-major-source-of-cyberattacks-verizon.jpg Cyberattacks stemming from exploitation of vulnerabilities for accessing data have shot up by a staggering 180% in 2023 and almost tripled over the past year, a new study has revealed. The growth is majorly fueled by the MOVEit vulnerability where hackers exploited a zero-day vulnerability in the MOVEit ...

CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability https://firewall.firm.in/wp-content/uploads/2024/05/gitlab.png May 02, 2024NewsroomVulnerability / Data Breach The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw impacting GitLab to its Known Exploited Vulnerabilities (KEV) catalog, owing to active exploitation in the wild. Tracked as CVE-2023-7028 (CVSS score: 10.0), the maximum severity vulnerability could facilitate account ...

Comprehensive law to prevent organisations from hiding data breaches: Rajeev Chandrasekhar – ET CISO https://etimg.etb2bimg.com/thumb/msid-89821283,imgsize-52790,width-1200,height=765,overlay-etciso/news/comprehensive-law-to-prevent-organisations-from-hiding-data-breaches-rajeev-chandrasekhar.jpg Rajeev Chandrasekhar The government is working on comprehensive laws that will prevent corporations from hiding security and data breaches, said Rajeev Chandrasekhar, Union Minister of State for Electronics and IT. Chandrasekhar was speaking at the launch of IBM’s security command centre in Bengaluru. He said ...

Bitcoin Forensic Analysis Uncovers Money Laundering Clusters and Criminal Proceeds https://firewall.firm.in/wp-content/uploads/2024/05/blockchain.png May 01, 2024NewsroomFinancial Crime / Forensic Analysis A forensic analysis of a graph dataset containing transactions on the Bitcoin blockchain has revealed clusters associated with illicit activity and money laundering, including detecting criminal proceeds sent to a crypto exchange and previously unknown wallets belonging to a Russian darknet market. ...

Protecting your web application from security breach – A primer – ET CISO https://etimg.etb2bimg.com/thumb/msid-93425610,imgsize-349780,width-1200,height=765,overlay-etciso/news/protecting-your-web-application-from-security-breach-a-primer.jpg By Venkatesh Sundar Going digital has become the norm today and software applications have become an integral part of our lives. However, this has also meant that data breaches and cyberattacks are also growing at an alarming rate. These breaches often come from minor glitches in ...