Universal Health Services (UHS) in its recent earnings report revealed that a ransomware attack last fall, left them with a whopping pre-tax loss of $67 million.
In the report, UHS referred to the cyberattack as an “information technology security incident” and said that the incident forced them to suspend user access to several technology applications in the US during the…
The National Security Agency (NSA) has released Cybersecurity Information Sheet: Embracing a Zero Trust Security Model, which provides information about, and recommendations for, implementing Zero Trust within networks.
The Zero Trust security model is a set of IT system design principles and a cybersecurity strategy based on the fact that threats exist both inside and outside traditional…
Microsoft 365 update ensures connectivity even during uncertain internet access conditions
April 9, 2021
Microsoft 365 users can breathe a sigh of relief as the company is updating its policy regarding offline access of applications. The previous policy stated that the devices must connect to the internet at least once every 30 days to ensure that all apps are up to date. Now, the time-frame has been extended to 180 days, and this will help remote users and other workers who may be working for long…
IBM patched a critical buffer-flow error that affected its Integration Designer toolset. The error has the potential of being exploited to enable the execution of remote codes. The flaw (CVE-2020-27221) was critical in severity as it has a CVSS base score of 9.8 out of 10.
The critical flaw originated from an issue in versions 7 and 8 of Java Runtime Environment (JRE), which is a software layer…
Clubhouse, the iOS-only audio-based social app that has been on the news for quite a while, is trending now for not-so-great reasons. A third-party developer from mainland China designed an open-source app for Android that allowed users to access the audio platform’s service. The developer posted the source code on Github and said that the app allowed anyone to access personal audio sessions…
Microsoft announced that two of its security services, Azure Front Door and Azure Firewall have been updated with improvements. Azure Front Door now comes with two new products in the preview stage, Standard and premium, while Azure Firewall has a Premium option in the preview stage as well.
The company conducted a web presentation titled “Modernize Your Network Security Strategy” on Feb…
Aspredicted by IDC, there will be 55.7 billion connected devices worldwide by 2025, out of which 75% will be connected to an IoT platform. To communicate securely, each machine needs a unique identity to authenticate and secure communications. Machines are identified by digital certificates that are assigned by dedicated Certification Authorities (CA), which encrypts the data for machines…
Active Directory’s architectural limitations taken advantage of during Solorigate, says CrowdStrike CEO
April 9, 2021
During the Feb 23rd senate hearing on SolarWinds Orion software hack, George Kurtz, president, and CEO of CrowdStrike pointed towards an ‘architectural limitation’ in Active Directory federation Service that was taken advantage of during the attack.
“Significantly, one of the most sophisticated aspects of the StellarParticle campaign was how skillfully the threat actor took advantage of…
Microsoft is helping organizations that are investigating whether they are victims of the Solorigate attack by offering them a free tool, the CodeQL queries that the company used to scan its source code for after the attack. the queries Microsoft used with CodeQL identify any code that is similar in pattern and function to the SolarWinds malware. So, these queries can be used on any software to do…
In a historic settlement, the French government doled out a fine of €50 million penalty in March 2020 for failing to be transparent to it’s users about the personal data that it collected from its services and products.
In a similar fashion, Italian telecommunication giant, Telecom Italia, was also awarded aGDPR fine of $31.5 million or €27.8 million by the Italian Data…
