SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers

Security vulnerabilities stories

Story image
ASX 200 companies on-par with FTSE 350, Fortune 500 - report
Today
#
email security
#
asx
#
security vulnerabilities
A new report by Rapid7 has found that companies listed on the ASX 200 have a good security posture, and the attack surface overall is on-par with global counterparts in the FTSE 350 and Fortune 500.
Story image
Rapid7 unveils new capabilities to simplify CDR at AWS event
Last week
#
aws
#
security vulnerabilities
#
rapid7
Rapid7 is showcasing a range of new capabilities at Amazon Web Services (AWS) re:Invent 2022, designed to make cloud detection and response (CDR) and vulnerability assessments easier.
Story image
Varonis Systems launches new program through HackerOne
Last week
#
saas
#
cloud security
#
security vulnerabilities
Data security and analytics pioneer Varonis Systems has launched its public vulnerability disclosure program through HackerOne.
Story image
Forescout’s Vedere Labs details OT vulnerabilities in latest study
Last week
#
it in manufacturing
#
attack
#
forescout technologies
Forescout’s Vedere Labs disclosed an update to its OT:ICEFALL study distributed in June 2022, which detailed vulnerabilities found in thousands of OT devices.
Story image
Gallagher named Security Software Manufacturer of the Year
Last month
#
gallagher
#
integrated products
#
security vulnerabilities
Global security manufacturer Gallagher has been awarded the Security Software Manufacturer of the Year accolade at the 2022 Security & Fire Excellence Awards.
Story image
Application Portfolio Management: A quick win today or a crisis tomorrow
Last month
#
digital transformation
#
it debt
#
security vulnerabilities
It’s highly likely that Application Portfolio Management (APM) isn’t at the top of your to-do list. It may not even be on your list anymore.
Story image
HackerOne launches Gold Standard Safe Harbour statement
Last month
#
hackers
#
attack
#
customers
The GSSH is a short, broad, easily-understood safe harbour statement that’s simple for customers to adopt, HackerOne states.
Story image
Genetec warns against cyber crime risk from older systems
Last month
#
cyber criminal
#
unified threat management
#
security vulnerabilities
With the ever-increasing rise in cyber crime, Genetec is cautioning organisations of all sizes to be vigilant about the cybersecurity risk.
Story image
Varonis Labs discovers SQLi and access flaws in Zendesk
Last month
#
cybersecurity
#
zendesk
#
security vulnerabilities
Varonis helped solve an SQLi vulnerability and an access control flaw in Zendesk Explore that would have allowed a threat actor to leak data.
Story image
Aqua Security unveils new Lightning Enforcer offering
Last month
#
cybersecurity
#
zero day malware
#
security vulnerabilities
Aqua Security has announced Lightning Enforcer, a new offering designed to stop zero-day attacks and protect critical vulnerabilities in production from being exposed until a patch can be applied.
Story image
Building on the ‘Essential Eight’ with a people-centric approach to cybersecurity
Last month
#
iot
#
breach prevention
#
proofpoint
Organisations often combat threats by placing too much emphasis on technology alone and too little emphasis on people and their behaviour.
Story image
Text4Shell++ - Where there’s smoke, there’s fire
Last month
#
cybersecurity
#
devsecops
#
security vulnerabilities
While being the generally nefarious and curious people that we are - we noticed some further interesting interpolation operators, which could potentially be abused by an attacker and had not been patched out.
Story image
Claroty's Team82 uncovers new ABB TotalFlow vulnerability
Last month
#
ransomware
#
cybersecurity
#
security vulnerabilities
ABB TotalFlow is used within many large oil and gas utilities worldwide to calculate volume and flow rates for oil and gas, which are critical to electric power manufacturing and distribution.
Story image
Flashpoint releases a new ransomware prediction model
Last month
#
ransomware
#
cybersecurity
#
predictions
It links individual vulnerabilities in ransomware operations, helping vulnerability management teams prevent potential cyber extortion events with VulnDB.
Story image
GitHub Universe: company unveils new enterprise products
Last month
#
app development
#
ai
#
open source
GitHub has announced a range of new products designed to accelerate the company's push into major enterprises at its San Francisco event.
Story image
Video: 10 Minute IT Jams - An update from Azul
Last month
#
java
#
security vulnerabilities
#
threat detection
Today on 10 Minute IT Jams, we are joined by Erik Costlow, who is the Senior Director of Product Management, Azul.
Story image
Azul launches a new Saas to secure software supply chain
Last month
#
saas
#
cybersecurity
#
java
Azul’s Vulnerability Detection, the new SaaS product, continuously detects vulnerabilities in Java applications by eliminating false positives.
Story image
New Trustwave solution designed to uncover complex vulnerabilities
Last month
#
testing
#
enterprise
#
trustwave
"Our proven methodologies allow us to find even the most difficult vulnerabilities and provide a world-class testing solution to global enterprises."
Story image
Varonis uncovers two new Windows vulnerabilities
Thu 27 Oct 2022
#
windows
#
security attack
#
internet explorer
Users don’t have to use Internet Explorer for its legacy to have left you vulnerable to LogCrusher and OverLog.
Story image
Blue Connections improves The Dempsey Group's security posture
Tue 18 Oct 2022
#
network security
#
network management
#
cybersecurity
Blue Connections was chosen by The Dempsey Group to provide a Fortinet network security solution to refresh its ageing network infrastructure.
Story image
Claroty reveals new cryptographic key extraction method
Fri 14 Oct 2022
#
security vulnerabilities
#
information protection
#
claroty
Claroty's Team82 has developed a new, innovative method to extract heavily guarded, hardcoded, global private cryptographic keys embedded within the Siemens SIMATIC S7-1200/1500 PLC and TIA Portal product lines.
Story image
Trellix advances threat intelligence with new research centre
Tue 27 Sep 2022
#
ai
#
ai security
#
security vulnerabilities
Trellix has announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Story image
Secure Code Warrior announces Coding Labs innovation
Fri 23 Sep 2022
#
cybersecurity
#
web development
#
security vulnerabilities
Coding Labs mechanisms allow developers to move from learning to applying secure coding knowledge more efficiently, leading to fewer code vulnerabilities.
Story image
Vectra Protect team finds Microsoft Teams vulnerability
Fri 23 Sep 2022
#
uc
#
microsoft
#
phishing
The Vectra Protect team identified a post-exploitation opportunity in August, allowing malicious actors to steal valid user credentials from Microsoft Teams.
© 2022 Techday, All rights reserved. Hosted on Plan B's Cloud Services. DMARC protection by PowerDMARC.