Asia's leading source of security and threat news
These search results are from across the Techday network of sites
CIOs massively underestimate Secure Shell risks - study
While CIOs say they are concerned about the security risks SSH machine identities pose, Venafi data indicates they seriously underestimate the scope of these risks.
Machine identities increasingly exploited, new research finds
Venafi, the provider of machine identity management, finds that malware attacks using machine identities doubled from 2018 to 2019, including high-profile campaigns such as: TrickBot, Skidmap, Kerberods and CryptoSink.
Malware attacks abusing machine identities grew eightfold over the last 10 years - report
"Machine identity capabilities have become commoditised and are being added to off-the-shelf malware, making it more sophisticated and harder to detect."
CIOs put too much trust in TLS certificates - survey
Despite the prolific usage of TLS certificates within organisations, many CIOs aren't concerned about security risks associated with TLS machine identities.
Venafi acquires Jetstack, brings greater security to digital transformation
"Our team is thrilled to join Venafi so we can accelerate our plans to bring machine identity protection to the cloud native stack, grow the community and contribute to a wider range of projects across the ecosystem.”
'We are in a permanent state of cyber warfare' say 88% of IT pros
“Powerful attack methods, like establishing backdoors with machine identities, are now available as commodity malware, making it harder for security professionals to defend against these attacks.”
Unprotected machine identities costing firms billions - report
Organisations worldwide could recover a collective total of between US$51 billion to as much as US$72 billion just by repairing their poorly protected machine identities.
Cyber-gangs using SSH identities to sell on the black market
Only 10% of organisations believe they have complete and accurate intelligence over all SSH machine identities.
Security teams could be slowing down DevOps, survey shows
Venafi has released the findings of its latest survey, revealing 75% of DevOps professionals say certificate issuance policies slow them down.
Four mistakes that can plague PKI administrators
These mistakes increase security risks and negatively impact the reliability and availability of business-critical network resources, Venafi has found.
75% of DevOps professionals say certificate issuance policies slow them down
Less than half of DevOps professionals believe developers always request certificates that serve as machine identities through authorised channels.
Venafi uncovers suspicious retail lookalike domains using valid certificates
The total number of certificates using lookalike domains is more than 400% greater than the number of authentic retail domains.
F5 integrates BIG-IQ into Venafi Machine Identity Protection Platform
The integration allows network operations to orchestrate the lifecycle of SSL/TLS certificates and ensure security policies are enforced across devices.
Govts risk cyber attacks if they continue to demand encryption backdoors
Governments that flout encryption best practice and mandate the inclusion of backdoors into technology are putting their entire countries at risk, according to security professionals.
Venafi announces guarantee for no certificate-related outages
Eliminating certificate-related outages within complex, multi-tiered architectures can feel like an impossible effort.
New code-signing solution released by Venafi
Machine identity protection solution secures code signing across organisations and guards against unauthorised use.
ZombieLoad: Another batch of flaws affect Intel chips
“This flaw can be weaponised in highly targeted attacks that would normally require system-wide privileges or a complete subversion of the operating system."
Certificate-related outages impact 60% of businesses - Venafi
Certificate-related outages harm the reliability and availability of vital network systems and services while also being difficult to diagnose and remediate.
Government-mandated encryption backdoors a dangerous game, says survey
'This is not rocket science; backdoors inevitably create vulnerabilities that can be exploited by malicious actors."
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
SSL/TLS certificate marketplaces thriving on dark web - study
These services deliver machine-identities-as-a-service to cybercriminals who wish to spoof websites, eavesdrop on encrypted traffic, perform man-in-the-middle attacks and steal sensitive data.
Venafi and nCipher Security partner on machine identity protection
Cryptographic keys serve as machine identities and are the foundation of enterprise information technology systems.
Cyber criminals using lookalike online shopping domains to phish buyers
Because they point to malicious online shopping sites that mimic legitimate, well-known retail websites, it makes it increasingly difficult for customers to detect the fake domains.
Study: 80% of enterprises struggle to protect machine identities
The study focused on enterprise machine identity protection challenges and included responses from 350 senior IT security professionals.