The C-suite conundrum: are senior executives the Achilles' heel of cybersecurity?
In today's digital landscape, an organisation's C-suite and senior executives hold the most valuable corporate data and sign-off authorities, representing the highest potential risk over email. Whether it's inbound spear phishing attacks or outbound mistakes resulting in a damaging data breach, the C-suite are vulnerable.
But what do cybercriminals want from these individuals, are breaches always a result of external actors, and what can organisations do to protect their top decision-makers?
Dealing with digital certificate vulnerabilities [Q&A]
While digital certificates are an essential part of day-to-day security they also present challenges. They can expire or be revoked, or even forged.
We spoke to Bert Kashyap, CEO of passwordless security platform SecureW2, to learn more about certificate-related vulnerabilities and what IT and security teams can do to deal with them effectively.
Devs beware: Apple announces Gatekeeper security enhancements in macOS Sequoia
Working much like Microsoft's Smart App Control tool that is part of Windows, Apple has Gatekeeper for macOS. It is a security feature which is designed to ensure that only trusted software runs on a user's Mac.
In the upcoming macOS Sequoia, Gatekeeper is being updated to help boost security. While this runtime protection change may be welcomed by many, the approach Apple has taken is also likely to irritate some users as it makes it more awkward to run unsigned software.
Google TV Streamer: A threat to Apple TV?
Google has unveiled its latest product in home entertainment: the Google TV Streamer. This new device aims to elevate the smart home experience, replacing the Chromecast with a more advanced, premium version that doubles as a smart home hub. But with such advancements, should Apple be concerned about its Apple TV media box?
The Google TV Streamer boasts huge enhancements over its predecessor, the Chromecast. It is designed to offer not only top-tier entertainment options but also to integrate seamlessly into a smart home setup. With access to over 700,000 movies and shows and 800+ live TV channels through various streaming services including YouTube TV, Netflix, and even Apple TV (the service), the device aims to be a central hub for all media consumption.
NETGEAR launches WBE710: A Wi-Fi 7 access point for business networks
NETGEAR has launched the WBE710 Insight Manageable Tri-band Wi-Fi 7 Access Point, a new component of its business-oriented Wi-Fi 7 lineup. This device is designed to meet the increasing demands of modern business environments, offering improvements in speed, latency, and data capacity.
As multi-gig capable devices become more common, the need for network enhancements capable of handling large volumes of data grows. The WBE710 uses the latest Wi-Fi 7 technology to enhance data throughput across multiple bands and reduce network congestion, aiming to provide a solution as more Wi-Fi 7-enabled devices hit the market.
Google unveils 4th-gen Nest Learning Thermostat and Temperature Sensor
Google has introduced the latest version of its Nest Learning Thermostat alongside an updated Nest Temperature Sensor. Originally launched thirteen years ago, the Nest Learning Thermostat was designed to enhance the smart home experience by integrating intelligence into household temperature control. The latest model builds on this foundation with improved design and technology.
The fourth-generation Nest Learning Thermostat offers a redesigned appearance with a larger, clearer domed LCD display and a slimmer profile, which gives it a subtle presence on a wall. The device is available in three finishes: Polished Silver, Polished Obsidian, and Polished Gold, allowing it to blend seamlessly with various home decors.
Ransomware groups develop more sophisticated business models
Ransomware groups continue to refine their craft, building and scaling business models that resemble legitimate corporate enterprises according to a new report.
The latest Ransomware Radar Report from Rapid7 finds smaller organizations are becoming a more frequent target too. Companies with annual revenues around $5 million are falling victim to ransomware twice as often as those in the $30-50 million range and five times more frequently than those with a $100 million revenue.
62 percent of phishing emails pass DMARC checks
Phishing remains a significant threat to organizations. A new report from Darktrace shows 17.8 million phishing emails detected across its customer fleet between December 21, 2023, and July 5, 2024. Alarmingly, 62 percent of these emails successfully bypassed DMARC checks.
Cybercriminals are embracing more sophisticated tactics, techniques and procedures designed to evade traditional security parameters.
Enterprises building AI infrastructure on a budget
A new study finds that 70 percent of enterprises are still experimenting with AI and preparing for it is a top priority.
However, the report from Komprise finds that budgets are an even higher priority with only 30 percent saying they will increase their IT budgets to support AI projects.
Proton VPN launches updates to protect free speech
Governments in many countries are imposing internet shutdowns at alarming rates, reaching new milestones each year with 283 shutdowns documented in 39 countries in 2023. Often these are triggered by public protests, active conflict, elections or political instability in order to keep people in the dark.
Proton VPN is announcing three major updates designed to fight censorship and protect free speech around the world.
It's time to get proactive about vulnerability remediation
Traditionally, the main concern security teams used to have about vulnerabilities was finding them. In the chaotic pre-cloud security years, identifying security issues on time was challenging, leading to gaps, blind spots, poor security hygiene and a growing attack surface. The introduction of cloud security posture management solutions that provide visibility and detection capabilities resolved these gaps but created new challenges -- an avalanche of alerts that overwhelmed security teams, frustrated engineers and created friction and noise, making remediation a costly, time-consuming task. Still today, many companies rely on these security posture management tools to indicate the existence of a vulnerability but react to these indications with a 'first come-first served' approach. Completely reactive, this approach means that teams are led by the events and alerts instead of controlling, managing and remediating them. Having a reactive approach means possibly missing the most critical alerts, lacking a proper organizational workflow to ensure the right people are addressing the right things, and ultimately negatively impacting your organization's security posture. It's time to get proactive about vulnerability remediation.
From following to leading
You could finally be about to get a payout from Apple for your dodgy MacBook butterfly keyboard
The saga of Apple's notoriously unreliable MacBook butterfly keyboards could be drawing to a close after almost a decade.
The company has finally started to issue compensatory payments to people who bought a MacBook between 2015 and 2019 only to be plagued by sticky and unresponsive keys. With payouts nudging towards $400, this is a significant sum that should not be sniffed at.
Security firm warns that 'design weaknesses' in Windows Smart App Control mean it can be easily bypassed
Smart App Control is just one of various security features Microsoft has built into Windows 11. But while many users place faith in the tool to block malicious apps, Elastic Security Labs warns that it is fundamentally flawed.
The company says that Windows Smart App Control and its predecessor SmartScreen "have several design weaknesses that allow attackers to gain initial access with no security warnings or popups". In an investigatory report, Elastic Security Labs details numerous types of attack that can be used to bypass Windows Smart Control as well as revealing a bug in the handling of .lnk files which can be used to get around security.
Samsung starts mass-producing thinnest 12nm-class LPDDR5X DRAM for next-gen mobile devices
Samsung has officially started mass production of the thinnest 12 nanometer-class, 12GB and 16GB LPDDR5X DRAM packages in the industry. This latest advancement in chip packaging technology allows Samsung to offer ultra-slim DRAM packages that not only enhance performance but also improve the internal layout of mobile devices by creating more space and improving airflow.
According to YongCheol Bae, Executive Vice President of Memory Product Planning at Samsung Electronics, the new LPDDR5X DRAM represents a monumental improvement in on-device AI capabilities. "Samsung’s LPDDR5X DRAM sets a new standard for high-performance on-device AI solutions, offering not only superior LPDDR performance but also advanced thermal management in an ultra-compact package," stated Bae.
Micron introduces first PCIe Gen6 SSD for data centers
Micron has announced the development of the first PCIe Gen6 SSD technology aimed at data center ecosystems. This initiative is part of a broader portfolio designed to meet the increasing demands of AI applications.
Raj Narasimhan, Senior Vice President and General Manager of Micron’s Compute and Networking Business Unit, is scheduled to discuss the significance of data in AI at the Flash Memory Summit (FMS). His keynote, titled "Data is at the heart of AI: Micron memory and storage are fueling the AI revolution," will take place on Wednesday, Aug. 7, at 11:00 a.m. Pacific time.
Most Commented Stories
© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.