My TechDecisions

Search Results: AWS

Fortinet Vulnerability, Fortigate

Tenable Developing Four Generative AI Tools for Security Research

Tenable's generative AI-assisted tools help with reverse code engineering, debugging, web app security and visibility into cloud-based tools.

April 27, 2023 Zachary Comeau Leave a Comment

Tenable is developing four new tools designed to create efficiencies in processes such as reverse code engineering, code debugging, web app security and visibility into cloud-based tools. The Columbia, Md.-based vulnerability management software provider’s research team is conducting ongoing experimentation with generative AI applications such as ChatGPT, and researchers have made them publicly available to […]

Read More
Cloud, SASE, Aryaka

7 Strategies for Improving Your Business’s Security in the Cloud

Complexity of the cloud can make it difficult to protect data. Here are seven strategies to Improve your business’s security in the cloud.

April 11, 2023 Joseph Carson Leave a Comment

Editor’s note: This article was originally published on March 13, 2023 and has since been updated as of April 11, 2023.  Cloud computing offers numerous advantages, including flexibility, cost-effectiveness, scalability, rapid deployment and storage capacity. Still, there are inherent cybersecurity risks with cloud infrastructure, including data breaches and leaks, compromised credentials, and human errors that […]

Read More
backup storage security

Backup and Storage Devices Contain an Average of 14 Security Issues

Research from cyber resilience company Continuity shows that enterprise backup and storage devices need to be more secure.

April 5, 2023 Zachary Comeau Leave a Comment

With storage and backup devices often representing the last line of defense against ransomware attacks and outages, they should be as secure as possible so organizations can restore their data in a critical time of need. However, new research from cyber resilience company Continuity shows that the average enterprise storage and backup device has 14 […]

Read More
My TechDecisions Podcast, zero trust

My TechDecisions Podcast Episode 191: Learnings From the LastPass Breach

Scott Caveza, senior research manager at Tenable, joins the podcast to discuss security lessons we've learned from the LastPass breach.

March 23, 2023 Zachary Comeau Leave a Comment

On this episode of the My TechDecisions Podcast, we discuss the LastPass breach and what IT security teams can learn from it with Scott Caveza, senior research manager at Tenable. Late last month, LastPass revealed that the same threat actor that accessed portions of the LastPass development environment and source code that has forced the company […]

Read More
Mattermost Microsoft Teams

Mattermost Launches Microsoft Teams Solution

Mattermost for Microsoft Teams enables users to stay connected to the Teams platform while collaborating in a customized technical environment.

March 9, 2023 Zachary Comeau Leave a Comment

Mattermost, a favorite collaboration platform among tech workers, is launching a new solution for Microsoft Teams designed to speed up technical workflows. The Palo Alto, Calif.-based company’s solution, Mattermost for Microsoft Teams, enables technical users to stay connected to Microsoft’s flagship enterprise collaboration platform while collaborating in a highly customized technical collaboration environment that includes […]

Read More
LastPass Breach, Hack

LastPass Hack: Attacker Accessed DevOps Engineer’s Home Computer to Steal Decrpytion Keys

LastPass reveals new information on its ongoing investigation into a security incident, including how a developer's home computer was hacked.

February 28, 2023 Zachary Comeau Leave a Comment

[Editor’s note: This article has been updated to reflect the company’s official statement on the new updates.] The same threat actor that accessed portions of the LastPass development environment and source code that has forced the company since August 2022 to provide updates as new information is revealed, apparently accessed a shared cloud-storage environment obtained […]

Read More
Log4j, Older Vulnerabilities, CISA KEV

Older, Unpatched Vulnerabilities Are Still Wreaking Havoc

Older vulnerabilities that remain unpatched are still the primary vehicle for cyberattacks, Tenable report finds.

February 28, 2023 Zachary Comeau Leave a Comment

Older vulnerabilities for which patches have already been made available by the vendor are still the primary vehicle for cyberattacks, suggesting that organizations are still behind in practicing good cyber hygiene, according to new data from Tenable. The Columbia, M.D.-based provider of vulnerability management software finds in its 2022 Threat Landscape Report that the number […]

Read More
Cloud Security, Wiz

Research: Growing Cloud Adoption Leading to Security Concerns

Nearly 8 in 10 organizations have over 80% of their workloads in a single cloud provider, according to research from cloud security firm Wiz.

February 10, 2023 Zachary Comeau Leave a Comment

New research shows that as cloud adoption grows, many organizations aren’t prioritizing security when storing data with cloud providers, making it easier for threat actors to compromise a business’ data in one place. The study, from New York-based cloud security firm Wiz, finds that the growth of cloud platforms in recent years and an increase […]

Read More
CISA Ransomware

Critical VMware Vulnerability From 2021 Leveraged in Mass Ransomware Campaign

A threat actor is reportedly leveraging a two-year-old vulnerability in VMware ESXi servers to deploy ransomware.

February 7, 2023 Zachary Comeau Leave a Comment

A two-year-old vulnerability in VMware ESXi servers is reportedly under mass-exploitation by a ransomware threat actor, and more than 1,000 VMware ESXI severs have been compromised. According to cybersecurity firm Blackberry, the new ransomware, ESXiArgs, is targeting unpatched VMware ESXi servers connected to the internet, leveraging a remote code execution bug from 2021 to cause […]

Read More