The entire cybersecurity realm is buzzing over zero-day vulnerabilities and SQL injection attacks owing to the MOVEit Transfer MFT breach. In case you missed it, here’s the back story, timeline of events, and latest updates. On May 31, 2023, Progress Software rolled out security patches for the recently discovered SQL injection vulnerability in their file sharing application, MOVEit Transfer.
Mobile phones have become an indispensable tool in all our lives. Ensuring their security and protecting sensitive information becomes paramount, especially when you have all your work-related apps and data synced. Every 39 seconds, a new assault occurs on the internet, and 24,000 malicious mobile apps are typically blocked everyday.
Ever wondered what lurks in the mysterious corners of the internet? Welcome to the dark web: an uncharted digital territory that’s inaccessible through regular search engines and is notorious for its association with illegal activities, like drug trafficking, firearm sales, and stolen data trading. How did this underworld come to be, and what risks does it pose to you and your business? Step into the shadows of the dark web, where anonymity reigns and practically anything is for sale.
The Business Intelligence Group announced the winners of the Fortress Award 2023 on May 31. We are thrilled to share that ManageEngine AD360 stood out amongst the competition, earning recognition in the Authentication and Identity category. The Fortress Award is a prestigious accolade in the cybersecurity space, and it recognizes outstanding achievements and innovations in the fight against cyberthreats.
The 11th annual Global InfoSec Awards, held at the RSA Conference 2023 in San Francisco, brought together over 4,300 companies vying for recognition in various categories. Among the standout performers, ManageEngine’s AD360 won prestigious accolades in four categories. Cyber Defense Magazine (CDM) hosted the Global InfoSec Awards, recognizing the most innovative and effective cybersecurity companies and products in the industry.
It’s safe to say that we are at a juncture where Zero Trust architecture is being heralded as the gold standard when it comes to cybersecurity. This architecture gives top priority to user behavior and assets as the primary line of defense from cyber threats. Even though the vast majority of companies worldwide have adopted Zero Trust, only 1% actually meet the requirements.
Cybersecurity is a mix of both reactive and proactive approaches. In the past, enterprises were often limited to the reactive approach. With compliance and security strategies gaining prominence, the proactive approach is also getting the spotlight. Compared to other industries, cybersecurity is highly dynamic and cybersecurity teams adopt any new technologies that can help them optimize.
In any organization, a user may access numerous devices and applications, but not always with the same username or credentials. Devices and applications use platform-specific user registries that are distinct from each other. As a result, organizations may end up monitoring five user identities from five devices separately, while they actually belong to a single user. The table below shows one user, Michael Bay, using different user identities to log on and access various devices and applications.
Imagine clicking on a seemingly harmless link and unknowingly giving away your personal and financial information to cybercriminals. Sounds like a nightmare, right? This nightmare became a reality for thousands of people in Australia and New Zealand when Latitude Financial Services suffered a massive data breach in March of 2023. Let’s take a look at the implications of the Latitude data breach and what you can do to protect yourself from falling victim to a similar attack.
