The SEC’s SolarWinds Case: What CISOs Should Do Now

/in

The SEC’s lawsuit may take years to resolve through litigation, but here are five things CISOs should do now to protect both themselves as individuals as well as their organizations.

darkreading – ​Read More

Google Fixes Eighth Actively Exploited Chrome Zero-Day This Year

/in

The security issue was discovered internally by Google’s Clément Lecigne and is tracked as CVE-2024-5274. It is a high-severity ‘type confusion’ in V8, Chrome’s JavaScript engine responsible for executing JS code.

Cyware News – Latest Cyber News – ​Read More

Machine Identities Lack Essential Security Controls, Pose Major Threat

/in

Siloed approaches to securing human and machine identities are driving identity-based attacks across enterprises and their ecosystems, according to a new report by CyberArk.

Cyware News – Latest Cyber News – ​Read More

Cyber Force Provision Gets House Committee’s Approval

/in

A requirement for the Pentagon to commission an independent study on the creation of a U.S. Cyber Force was added late Wednesday to the House version of the defense policy bill.

Cyware News – Latest Cyber News – ​Read More

When ‘No’ & ‘Good Enough’ Challenge Cybersecurity

/in

As the digital landscape evolves, these words must become an impetus for innovation and dialogue, not insurmountable barriers.

darkreading – ​Read More

White House Seeks Critical Cyber Assistance for Water Utilities, Healthcare

/in

National Cyber Director Harry Coker Jr. said the administration is taking actions to strengthen key critical infrastructure sectors, including healthcare and water utilities, and will pursue additional steps to fight ransomware and boost resilience.

Cyware News – Latest Cyber News – ​Read More

Averlon Emerges From Stealth Mode With $8 Million in Funding

/in

Averson secures seed funding to build technology that uses AI to identify cloud security weaknesses and counter cyberattacks.

The post Averlon Emerges From Stealth Mode With $8 Million in Funding appeared first on SecurityWeek.

SecurityWeek – ​Read More

Courtroom Recording Software Compromised With Backdoor Installer

/in

“Through ongoing monitoring and collaboration with cyber authorities, we identified attempts to replace our Viewer 8.3.7 software with a compromised file,” the company said in a statement on Thursday.

Cyware News – Latest Cyber News – ​Read More

JAVS Courtroom Audio-Visual Software Installer Serves Backdoor

/in

Backdoored JAVS courtroom recording and management software installer puts thousands at risk of complete takeover.

The post JAVS Courtroom Audio-Visual Software Installer Serves Backdoor appeared first on SecurityWeek.

SecurityWeek – ​Read More

Future-Proof Your Cybersecurity AI Strategy

/in

An effective, long-term XDR strategy will address the ongoing need for rapid analysis and continual vetting of the latest threat intelligence.

darkreading – ​Read More