SecurityBrief Asia - Asia's leading source of security and threat news

Asia's leading source of security and threat news

Story image

Hybrid cloud security big concern for business leaders

A new study highlights that IT and security professionals have significant concerns around security for hybrid cloud and multi-cloud environments.

Story image

GitHub launches fund to sponsor open source developers

In addition to GitHub Sponsors, GitHub is launching the GitHub Sponsors, GitHub will match all contributions up to $5,000 during a developer’s first year in GitHub Sponsors.

Story image

Check Point announces integration with Microsoft Azure

The integration of Check Point’s advanced policy enforcement capabilities with Microsoft AIP’s file classification and protection features enables enterprises to keep their business data and IP secure, irrespective of how it is shared.

ESET researchers break down latest arsenal of the infamous Sednit group

At the end of August 2018, the Sednit group launched a spear-phishing email campaign, in which it distributed shortened URLs that delivered first-stage Zebrocy components.

Container survey shows adoption accelerating while security concerns remain top of mind

The report features insights from over 500 IT professionals.

Google 'will do better' after G Suite passwords exposed since 2005

Fourteen years is a long time for sensitive information like usernames and passwords to be sitting ducks, unencrypted and at risk of theft and corruption.

Fake apps on Google Play scamming users out of cryptocurrency

Fake cryptocurrency apps on Google Play have been discovered to be phishing and scamming users out of cryptocurrency, according to a new report from ESET.

Hackbusters! Reviewing 90 days of cybersecurity incident response cases

While there are occasionally very advanced new threats, these are massively outnumbered by common-or-garden email fraud, ransomware attacks and well-worn old exploits.

SEGA turns to Palo Alto Networks for cybersecurity protection

When one of the world’s largest video game pioneers wanted to strengthen its IT defences against cyber threats, it started with firewalls and real-time threat intelligence from Palo Alto Networks.

Forrester names Trend Micro Leader in email security

TrendMicro earned the highest score for technology leadership, deployment options and cloud integration.

LogRhythm releases cloud-based SIEM solution

LogRhythm Cloud provides the same feature set and user experience as its on-prem experience.

Story image

One Identity named Leader in PAM and IAM by KuppingerCole

KuppingerCole lead analyst Anmol Singh evaluated the strengths and weaknesses of 20 solution providers in the PAM market for the report.

Story image

Healthcare environments difficult to secure - Forescout

The convergence of IT, Internet of Things (IoT) and operational technology (OT) makes it more difficult for the healthcare industry to manage a wide array of hard-to-control network security risks.

Story image

Bitglass appoints new cloud, business development leaders

The cloud security company has appointed vice presidents for worldwide channels and worldwide business development.

Story image

Four steps to Zero Trust network security - AlgoSec

The core principles of zero trust reflect the reality of today’s complex, heterogenous enterprise network environments.

Story image

Using data science to improve threat prevention

With a large amount of good quality data and strong algorithms, companies can develop highly effective protective measures.

Story image

Trust without visibility is blind – Avi Networks

Enterprises are wanting to gain the trust of their customers, but are often found blindly defending themselves.

Story image

Microsoft achieves FIDO2 certification for authentication solution

FIDO2 is a set of standards that enables easy and secure logins to websites and applications via biometrics, mobile devices and/or FIDO Security Keys.

Story image

Veeam joins the ranks of $1bil-revenue software companies

It’s also marked a milestone of 350,000 customers and outlined how it will begin the next stage of its growth.

Story image

ZombieLoad: Another batch of flaws affect Intel chips

“This flaw can be weaponised in highly targeted attacks that would normally require system-wide privileges or a complete subversion of the operating system."

Story image

PrinterLogic software vulnerable to remote attacks

The vulnerabilities affect PrinterLogic versions 18.3.1.96 and older.

Story image

Silverlake and Intel partner on edge security

With Intel’s software and hardware technologies, Silverlake’s technology stack designed for PAM will form a cybersecurity PAM product line.

Story image

Nuix eyes legal sector as eDiscovery demand skyrockets

eDiscovery must encompass so much more than email and documents. If you haven’t looked at text messages and online chats, digital images, mobile devices, data in the cloud and social media, you’re not getting the whole story.

Download image

How using syslog-ng to store logs could help your business

Syslog-ng is a high-speed data processor that parses both structured and unstructured log messages.

Story image

DimData: Fear finally setting in amongst vulnerable orgs

New data ranking the ‘cybermaturity’ of organisations reveals the most commonly targeted sectors are also the most prepared to deal with the ever-evolving threat landscape.

Story image

How to avoid becoming a cryptojacking victim - Bitglass

Large-scale cryptojacking is a lucrative business due to the popularity and value of cryptocurrencies like Bitcoin and Ethereum.

Download image

Why you could detect breaches as they happen

Breaches often happen when businesses least expect them, causing slow reaction times and possibly catastrophic loss.

Download image

The 3 essential elements to consider with SaaS security

Speed, ease of use, and low capital expenses are just some of the factors driving the continued growth in SaaS security adoption.

Story image

Ping Identity offerings accelerates cloud MFA and SSO adoption

90% of respondents trust MFA as an effective security control to protect identity data in public clouds, yet only 60% of organisations have formally adopted it.

Story image

Symantec, Ixia combine efforts to secure hybrid networks

Ixia’s CloudLens and Symantec Security Analytics now feature complete integration, which allows Symantec customers to gain real-time visibility into their hybrid cloud environments.

Download image

Case study: It's Sunnyside up for Arizona school district's VDI solution

In this case study, you’ll be taken on a journey that explains how one of Arizona's biggest school districts leads the way into the 21st century.

Download image

Whitepaper: How classifying your log messages makes for happier sysadmins

Operating systems, applications, and network devices generate text messages of the events that happen to them.

Story image

Tenable leverages partner ecosystem with new integrations

Tenable has introduced 19 new technology integrations to its Cyber Exposure Ecosystem on an open platform in a bid to better protect against security risks.

Story image

Secureworks Magic Quadrant Leader for Security Services

This is the 11th time Secureworks has been positioned as a Leader in the Gartner Magic Quadrant for Managed Security Services, Worldwide.

Story image

General staff don’t get tech jargon - expert says time to ditch it

There's a serious gap between IT pros and general staff, and this expert says it's on the people in IT to bridge it.

Story image

ExtraHop’s new partner program for enterprise security

New accreditations and partner portal enable channel partners to fast-track their expertise and build their security businesses.

Download image

An insider's tips on how to get more from your Splunk platform

Having the right tools is only half the battle, not until you can leverage them most effectively can you see the gains that properly managed data can provide.

Download image

Should you run your central log server in Docker?

Collecting logs can be especially important in a containerized environment, where you start and stop containers around the clock.

Download image

Can your vulnerability assessments protect your organisation?

33% of enterprises surveyed are at a low maturity, conducting only limited assessments of selected assets.

Story image

Unisys: Users looking for data security when choosing banks

The report studied attitudes of banking customers in Hong Kong, Australia, New Zealand, the Philippines and Taiwan.

Download image

Security and mobility in a mobile-first world

Explore security, productivity, mobility, and what solutions are available to you. Here's how to move your organisation towards the mobile-first world, securely.

Download image

IT admins: Exploit the benefits of advanced log classification

It’s not hard to say ‘I don’t envy you’ to system administrators who are lumped with the burden of classifying log messages every time somebody conducts an action on the network.

Story image

Red Hat’s new role in enabling modern DevOps

The global open source vendors approach has come of age.

Story image

What your privacy means to Google - and what it's doing about it

Google has declared that it’s all about making privacy work for everyone – despite its long-held reputation as an information harvester.

Download image

Whitepaper: How to manage mobile risk in a perimeter-less work environment

Enabling mobility and the ability to access data seamlessly is a great development for enterprise productivity, but it causes a serious challenge to security teams.

Story image

Hackers increasingly ‘island hopping’ – so what does it mean?

Carbon Black's Rick McElroy discusses this new trend and what it means for the new age of cybercrime.

Download image

DNS security is easier than you think

Over the years, DNS, both the protocol and the servers, have become the target of a variety of attacks, including the Lion worm.

Story image

Two years on: Have organisations learnt from WannaCry?

This month marks a special anniversary – two years since one of the world’s most destructive pieces of ransomware ever caused chaos.

Story image

Trend Micro introduces cloud and container workload security offering

Container security capabilities added to Trend Micro Deep Security have elevated protection across the DevOps lifecycle and runtime stack.

Download image

DNS attackers love legacy systems - but how much damage can they inflict?

DNS infrastructure is vulnerable in terms of its security, availability, and integrity. An attacker just has to exploit the Domain Name System (DNS) on legacy systems and they get free reign.

Download image

Whitepaper: How you can simplify compliance and SIEM with efficient logging

IT environments generate log messages with a variety of functions and significance to an organisation – but they’re only useful if they trigger the necessary responses.

Download image

SIEM: Expensive? Storage-intensive? Not any more with these performance tips

SIEM can be expensive, eat up storage, and overwhelm IT teams with the sheer differentiation of log data formats that they need to process. Yet SIEM is now an essential part of an organisation’s security strategy.

Story image

How a virtual CISO can become part of a managed security regime

Security-as-a service is a particularly compelling option for smaller businesses that perhaps do not yet have the resources to adequately maintain a cybersecurity regime internally.

Download image

Case Study: Infoblox protects the network that hosts City University’s curriculum

After recovering from a ransomware attack, City University began to work with Infoblox to bring its network security to the next level.

Story image

Forcepoint 2019 APAC Channel Partner Award winners announced

The company recognized 9 partners across 6 categories based on criteria including overall revenue performance and new business growth secured in 2018.

Story image

Samsung left Bixby & SmartThings code wide open to the public

If you’re someone who likes to use apps and platforms with some level of confidence that they’re secure, you may want to take another look at how much you trust big brands like Samsung.

Story image

Failure to prioritize cybersecurity stunting digital transformation – Frost & Sullivan

Security leaders need to look beyond perimeter security, leverage automation, and have a better grasp of the psychology of both cybercriminals and their business users.

Story image

Slack users urged to update to prevent security vulnerability

Businesses that use popular messaging platform Slack are being urged to update their Slack for Windows to version 3.4.0 immediately.

Story image

IXUP goes "post-quantum" with security tech upgrade

The secure analytics company has also partnered with Deloitte as a reseller, and launched a SaaS offering on Microsoft Azure.

Story image

Veeam enables secondary storage solutions with technology partner program

Veeam has worked with its strategic technology alliance partners to provide flexible deployment options for customers that have continually led to tighter levels of integration.

Story image

EXCLUSIVE: Forcepoint global channel chief talks strategy

As a solution sold 100% via the channel, cybersecurity solutions company Forcepoint places a strong emphasis on its partner relationships.

Story image

Veeam Availability Orchestrator update aims to democratise DR

The ability to automatically test, document and reliably recover entire sites, as well as individual workloads from backups in a completely orchestrated way lowers the total cost of ownership (TCO) of DR.

Download image

Insider threats & breach reports: Why security needs more investment

Insider threats (those that come from within your organisation) are a serious concern - here's why.

Story image

Salesforce continues to stumble after critical outage

“To all of our Salesforce customers, please be aware that we are experiencing a major issue with our service and apologise for the impact it is having on you."

Link image

How edge data centres can help accelerate your business

Edge computing is an IT architecture designed to put applications and data closer to the users or “things” that need them.

Story image

Forget endpoints—it’s time to secure people instead

Security used to be much simpler: employees would log in to their PC at the beginning of the working day and log off at the end. That PC wasn’t going anywhere, as it was way too heavy to lug around.

Story image

Google puts Huawei on the Android naughty list

Google has apparently suspended Huawei’s licence to use the full Android platform, according to media reports.

Story image

Another cryptocurrency exchange breached, but at least investors are safe

It takes patience to steal more than 7000 Bitcoin (approximately US$41 million) from cryptocurrency exchanges, despite global awareness that such attacks are becoming more prolific.

Download image

Whitepaper: The Mobile Risk Matrix - how exposed are you?

The proliferation of cloud services has increased the attack surface to include applications, devices, networks, and external web and content delivery methods.