This October will mark the 20th anniversary of Cybersecurity Awareness Month, a pivotal initiative launched under the guidance of the U.S. Department of Homeland Security and the National Cyber Security Alliance (NCSA). It’s primary goal is to empower Americans with knowledge that enables them to stay safe and secure online. In the spirit of reflection, ..
Tag : Network Security
Secure access service edge (SASE) solutions provider Cato Networks on Tuesday announced raising $238 million in equity investment at a valuation that exceeds $3 billion. The latest funding round, which brings the total raised by the company to $773 million, was led by LightSpeed Venture Partners, with participation from Adams Street Partners, Softbank Vision Fund ..
One of the ongoing threats that defenders have to deal with is APTs: advanced persistent threats. APT attackers use more complex tactics to compromise networks than a typical attacker might, such as the deployment of a Trojan or other straightforward software. For instance, an APT attacker may employ complex espionage techniques over an extended period ..
Just days after shipping a major security update to correct vulnerabilities in its Aria Operations for Networks product line, VMWare is warning that exploit code has been published online. In an updated advisory, the virtualization technology giant confirmed the public release of exploit code that provides a roadmap for hackers to bypass SSH authentication and ..
Researchers have abused dangling DNS records to hijack subdomains belonging to over a dozen major organizations, and they warn that thousands of entities are vulnerable to such attacks. The research was conducted by Vienna-based IT security consulting firm Certitude Consulting, whose employees managed to take control of subdomains belonging to governments, political parties, universities, and ..
A serious flaw affecting several major Border Gateway Protocol (BGP) implementations can be exploited to cause prolonged internet outages, but some vendors are not patching it, a researcher warned on Tuesday. The issue was discovered by Ben Cartwright-Cox, the owner of BGP.Tools, a company that provides monitoring services to help organizations quickly identify and address ..
Virtualization technology giant VMware on Tuesday shipped a major security update to correct at least two critical vulnerabilities in its Aria Operations for Networks product line. In a critical-severity advisory, VMware said the flaws could be exploited by malicious hackers to bypass SSH authentication and gain access to the Aria Operations for Networks command line ..
You’re invited to join Cloudflare and SecurityWeek for a live webinar on Tuesday, August 22nd we discuss “VPN Replacement: Other ZTNA Superpowers CISOs Should Know” Organizations are exploring their initial steps in adopting a Zero Trust architecture. Often, this involves strategizing meaningful pilot projects to augment and eventually (mostly) replace their VPNs. But what comes ..
Horizon3.ai, a provider of autonomous security testing solutions, announced today that it has raised $40 million through a Series C funding round led by Craft Ventures with participation from Signal Fire. Horizon3.ai’s NodeZero platform provides autonomous pentesting as a self-service SaaS offering, allowing customers to verify their security posture and reduce their exploitable attack surface. ..
The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) on Monday published guidance on hardening 5G standalone network slices against potential threats. Titled ‘5G Network Slicing: Security Considerations for Design, Deployment, and Maintenance’, the new document is the second paper in a two-part series that provides considerations on the risks, benefits, ..