Home > News > featured news > Microsoft Exchange Server uncovered huge number of associations to cyber attack

Data Security

Microsoft Exchange Server uncovered huge number of associations to cyber attack

informationsecurity | March 08, 2021

In any event 30,000 associations across the United States have been undermined through four newfound weaknesses affecting Microsoft's Exchange Server email programming.

In every occurrence, the assailants abandoned a web shell: a secret word ensured hacking apparatus that can be gotten to over the Internet from any program, giving authoritative admittance to the casualties' workers.

Microsoft delivered security updates to address the bugs on second March, and prompted clients utilizing Exchange Server to fix the frameworks as most punctual as could really be expected.

Nonetheless, apparently the updates incited the Chinese gathering - which Microsoft has named 'Hafnium' - to venture up its assaults on workers that have not been fixed.

Security scientists have now cautioned that Microsoft's security patches can't sanitize frameworks that have effectively been hacked.

Spotlight

Getting Started with DMARC Secure your email. Stop phishing. Protect your brand.

The reality of email is that cybercriminals can use almost any brand or email domain to send spam, phishing emails, and malware installs, inflicting direct losses to customers and eroding the brand equity companies have spent years building up. The solution is DMARC, which allows companies to understand all the different mail st

More featured news

Spotlight

Getting Started with DMARC Secure your email. Stop phishing. Protect your brand.

The reality of email is that cybercriminals can use almost any brand or email domain to send spam, phishing emails, and malware installs, inflicting direct losses to customers and eroding the brand equity companies have spent years building up. The solution is DMARC, which allows companies to understand all the different mail st

Related News

Cloud Security

IBM Broadens its Cloud Security Services and Compliance Center

IBM | September 08, 2023

IBM has announced the expansion of its Cloud Security and Compliance Center to help enterprises protect data and mitigate risk across their hybrid, multi-cloud environments and workloads. With the addition of the latest solutions, IBM's solution suite now goes beyond compliance posture management and workload protection. It now includes application-level security capabilities. IBM Cloud Security and Compliance Center suite offers benefits, including intelligent automation technology, expanded compliance, and visibility into third- and fourth-party risk posture, among others. IBM, a global technology innovator at the forefront of automation, AI, and hybrid cloud solutions, has unveiled the expansion of the IBM Cloud Security and Compliance Center. This suite offers a range of updated cloud security and compliance solutions carefully designed to aid enterprises in mitigating risk and safeguarding data within their hybrid, multi-cloud environments and workloads. As organizations grapple with emerging threats along the supply chain and navigate evolving global regulations, this solution suite stands as a pillar of support for their resilience, performance, security, and compliance requirements, all while aiding in the reduction of operational costs. IBM's newly introduced Cloud Security and Compliance Center Data Security Broker solution offers a transparent data encryption layer. It utilizes format-preserving encryption and anonymization technology to safeguard sensitive data used in business applications and AI workloads. Rohit Badlaney, General Manager at IBM Cloud Product and Industry Platform, said, The expansion of the IBM Cloud Security and Compliance Center displays our continued focus on industry-specific capabilities that assist in addressing real world business challenges for our clients. For ex., clients have the ability to employ the IBM Cloud Framework for Financial Services, which can enable them to address evolving rules, laws and regulations surrounding cloud risk. The new capabilities demonstrate our commitment to supporting clients on their hybrid cloud modernization journeys, designed for security, privacy, compliance, and trust at the forefront of our product roadmap. [Source – Cision PR Newswire] IBM Cloud has a long history of working with client companies in financial services and other highly regulated sectors, especially when it comes to assisting them to drive innovation while securing their sensitive data, added Badlaney. In combination with the IBM Cloud Security and Compliance Center Data Security Broker, the upgraded suite of the IBM Cloud Security and Compliance Center will introduce a number of new features. These additions are intended to aid clients, especially those operating in regulated industries, in meeting security, compliance, and data residency requirements specific to their industry. Key features due to the expansion of IBM Cloud Security and Compliance Center: Intelligent automation technology Expanded compliance Enhanced Cloud Security Posture Management (CSPM) Optimized Cloud Workload Protection Platform (CWPP) Improved Cloud Infrastructure Entitlements Management (CIEM) Enhanced visibility into third- and fourth-party risk posture Frank Dickson, VP of Security and Trust at IDC, said, As more companies adopt a hybrid, multi-cloud approach to managing applications of all sorts across PaaS, SaaS, IaaS and on-premises, centrally automated and managed technologies that can execute security and compliance capabilities at scale are required. The IBM Security and Compliance Center addresses this requirement for holistic protection – which is especially crucial for organizations in highly regulated sectors that manage sensitive data, such as financial services – regardless of the application within which the data may live. [Source – Cision PR Newswire]

Read More

Software Security

Palo Alto Joins Telstra as the First Sole Cyber Security Vendor

Palo Alto | September 22, 2023

Palo Alto Networks has announced a strategic partnership with the largest telecommunications company in Australia, Telstra. This signifies Palo Alto Networks' commitment to delivering an expanded portfolio of cybersecurity solutions and services to meet the needs of Telstra's extensive business clientele. The partnership strengthens the existing 10-year relationship between Palo Alto Networks and Telstra. Palo Alto Networks, a global cybersecurity company, has announced teaming up with Telstra, Australia's largest telecommunications company, to offer an enhanced range of cybersecurity solutions and services to Telstra's business clients both in Australia and around the world. This collaboration marks a significant milestone, as Palo Alto Networks becomes the first dedicated cybersecurity company to be recognized as a technology alliance partner for Telstra's enterprise customer segment. Telstra serves customers in over 200 countries and territories. Telstra's technology alliance partners collaborate to create and provide comprehensive services encompassing connectivity, voice, and professional services. These services are designed to assist businesses of all sizes in addressing their challenges and capitalizing on opportunities. Regional Vice President for Australia and New Zealand of Palo Alto Networks, Steve Manley, stated, This new alliance with Telstra reinforces Palo Alto Networks’ position in the Australian market as the leading cyber security vendor to leading telecommunications carrier in Australia. It also reinforces our increased commitment to offering industry-leading joint solutions with one of the country’s most trusted managed service providers. Together, Palo Alto Networks and Telstra will collaborate to offer businesses with best-of-breed cyber security solutions to help keep them safe in a rapidly changing market landscape. [Source – Web Wire] This new partnership further solidifies the long-standing 10-year relationship between Palo Alto Networks and Telstra. It also builds upon previous agreements that expanded Telstra's SecureEdge portfolio with offerings like SecureEdge Cloud for business clients and Sovereign SecureEdge for the Australian government and agencies, both powered by Palo Alto Networks' advanced cloud-based security services. David Burns, Enterprise Group Executive at Telstra, said, Cyber security has become one of the top concerns among businesses worldwide, including here in Australia, and especially in the wake of a no. of high-profile cyber breaches. We’re now seeing the industrialization of cybercrime and the scale of threat continues to evolve and grow. As a result, we all need to be constantly changing, adapting, and looking at new technologies that can assist protect us and our customers’ data. As a leading provider of network, managed, and professional services, this new alliance between Telstra and Palo Alto Networks further boosts our capabilities to help customers protect their organizations and data from evolving cyber threats. [Source – Web Wire]

Read More

Enterprise Security

Netskope Partners with Wipro to Power New Managed Security and Network Services

PRnewswire | July 11, 2023

Netskope, a leader in Secure Access Service Edge (SASE) today announced a new partnership with Wipro Limited to deliver robust cloud-native Managed Secure Access Service Edge (SASE) and Managed Zero Trust Network Access (ZTNA) services to Wipro's extensive global enterprise client portfolio. "As the global work environment transforms, our Security Cloud platform continues to serve as a critical component for remote workforces, and we are well-positioned to continue to support enterprises as their security needs evolve," said Dave Rogers, SVP of Global Alliances and Channel Sales, Netskope. "By pairing Wipro's deep cybersecurity managed services expertise with Netskope's advanced, full-stack SASE platform, this partnership will build on our shared goal of providing customers an efficient and robust integrated managed cloud security offering to secure and accelerate their digital transformation projects." Wipro provides best-in-class, end-to-end transformative cybersecurity solutions. Wipro CyberTransform® delivers cyber resilience to clients through an integrated suite of business-aligned strategy-first cybersecurity advisory and implementation services. Wipro CyberShieldSM offers proactive, on-demand cyber defense and comprehensive managed security services. "Wipro and Netskope support many Fortune 2000 companies that have successfully navigated significant digital transformation journeys," said Tony Buffomante, Senior Vice President and Global Head of Cybersecurity and Risk Services, Wipro Limited. "As our clients move forward, they understand the need to have a strong cloud-based security posture that's smart enough to protect data, applications and users no matter where they are located. That's now possible through this new partnership with Netskope, which extends Wipro CyberTransform® and Wipro CyberShieldSM capabilities." Managed Secure Access Service Edge (SASE) powered by Netskope delivers security services to protect employees and applications in the cloud as well as existing on-premises applications and infrastructure. The solution helps users: • Eliminate blind spots across thousands of cloud services (SaaS and IaaS) and millions of websites • Secure managed cloud services like Microsoft 365, Google Workspace and AWS, as well as unmanaged cloud services, without the need for blocking • Guard sensitive data with award-winning data loss prevention (DLP), including pre-defined profiles for compliance • Stop elusive cloud threats with anti-malware, sandboxing, machine learning (ML) analysis, Cloud Threat Exchange for IOC sharing, plus behavior analytics or targeted remote browser isolation (RBI) The managed SASE package offers clients unparalleled service coverage, performance and resilience, by leveraging Wipro's strategy-first design and Netskope's NewEdge Network, the world's largest, highest-performing security private cloud. Access to key enterprise applications and data must be controlled no matter where the resources are located. Wipro's Managed Zero Trust Network Access (ZTNA) powered by Netskope allows users to retire legacy connections and gain direct access to applications based on user identity and behavioral context, providing: • Superior user experience with consistent and secure policy controls • Application-level access control that reduces threats by eliminating lateral movement within the network • Reduced deployment complexity and higher visibility and control, lowering the risk of data loss associated with multiple vendor solutions • Improved efficiency in security operations leveraging platforms • Simplified security and lower total cost of ownership About Netskope Netskope, a global SASE leader, is redefining cloud, data, and network security to help organizations apply zero trust principles to protect data. Fast and easy to use, the Netskope platform provides optimized access and real-time security for people, devices, and data anywhere they go. Netskope helps customers reduce risk, accelerate performance, and get unrivaled visibility into any cloud, web, and private application activity. Thousands of customers, including more than 25 of the Fortune 100, trust Netskope and its powerful NewEdge network to address evolving threats, new risks, technology shifts, organizational and network changes, and new regulatory requirements.

Read More

Cloud Security

IBM Broadens its Cloud Security Services and Compliance Center

IBM | September 08, 2023

IBM has announced the expansion of its Cloud Security and Compliance Center to help enterprises protect data and mitigate risk across their hybrid, multi-cloud environments and workloads. With the addition of the latest solutions, IBM's solution suite now goes beyond compliance posture management and workload protection. It now includes application-level security capabilities. IBM Cloud Security and Compliance Center suite offers benefits, including intelligent automation technology, expanded compliance, and visibility into third- and fourth-party risk posture, among others. IBM, a global technology innovator at the forefront of automation, AI, and hybrid cloud solutions, has unveiled the expansion of the IBM Cloud Security and Compliance Center. This suite offers a range of updated cloud security and compliance solutions carefully designed to aid enterprises in mitigating risk and safeguarding data within their hybrid, multi-cloud environments and workloads. As organizations grapple with emerging threats along the supply chain and navigate evolving global regulations, this solution suite stands as a pillar of support for their resilience, performance, security, and compliance requirements, all while aiding in the reduction of operational costs. IBM's newly introduced Cloud Security and Compliance Center Data Security Broker solution offers a transparent data encryption layer. It utilizes format-preserving encryption and anonymization technology to safeguard sensitive data used in business applications and AI workloads. Rohit Badlaney, General Manager at IBM Cloud Product and Industry Platform, said, The expansion of the IBM Cloud Security and Compliance Center displays our continued focus on industry-specific capabilities that assist in addressing real world business challenges for our clients. For ex., clients have the ability to employ the IBM Cloud Framework for Financial Services, which can enable them to address evolving rules, laws and regulations surrounding cloud risk. The new capabilities demonstrate our commitment to supporting clients on their hybrid cloud modernization journeys, designed for security, privacy, compliance, and trust at the forefront of our product roadmap. [Source – Cision PR Newswire] IBM Cloud has a long history of working with client companies in financial services and other highly regulated sectors, especially when it comes to assisting them to drive innovation while securing their sensitive data, added Badlaney. In combination with the IBM Cloud Security and Compliance Center Data Security Broker, the upgraded suite of the IBM Cloud Security and Compliance Center will introduce a number of new features. These additions are intended to aid clients, especially those operating in regulated industries, in meeting security, compliance, and data residency requirements specific to their industry. Key features due to the expansion of IBM Cloud Security and Compliance Center: Intelligent automation technology Expanded compliance Enhanced Cloud Security Posture Management (CSPM) Optimized Cloud Workload Protection Platform (CWPP) Improved Cloud Infrastructure Entitlements Management (CIEM) Enhanced visibility into third- and fourth-party risk posture Frank Dickson, VP of Security and Trust at IDC, said, As more companies adopt a hybrid, multi-cloud approach to managing applications of all sorts across PaaS, SaaS, IaaS and on-premises, centrally automated and managed technologies that can execute security and compliance capabilities at scale are required. The IBM Security and Compliance Center addresses this requirement for holistic protection – which is especially crucial for organizations in highly regulated sectors that manage sensitive data, such as financial services – regardless of the application within which the data may live. [Source – Cision PR Newswire]

Read More

Software Security

Palo Alto Joins Telstra as the First Sole Cyber Security Vendor

Palo Alto | September 22, 2023

Palo Alto Networks has announced a strategic partnership with the largest telecommunications company in Australia, Telstra. This signifies Palo Alto Networks' commitment to delivering an expanded portfolio of cybersecurity solutions and services to meet the needs of Telstra's extensive business clientele. The partnership strengthens the existing 10-year relationship between Palo Alto Networks and Telstra. Palo Alto Networks, a global cybersecurity company, has announced teaming up with Telstra, Australia's largest telecommunications company, to offer an enhanced range of cybersecurity solutions and services to Telstra's business clients both in Australia and around the world. This collaboration marks a significant milestone, as Palo Alto Networks becomes the first dedicated cybersecurity company to be recognized as a technology alliance partner for Telstra's enterprise customer segment. Telstra serves customers in over 200 countries and territories. Telstra's technology alliance partners collaborate to create and provide comprehensive services encompassing connectivity, voice, and professional services. These services are designed to assist businesses of all sizes in addressing their challenges and capitalizing on opportunities. Regional Vice President for Australia and New Zealand of Palo Alto Networks, Steve Manley, stated, This new alliance with Telstra reinforces Palo Alto Networks’ position in the Australian market as the leading cyber security vendor to leading telecommunications carrier in Australia. It also reinforces our increased commitment to offering industry-leading joint solutions with one of the country’s most trusted managed service providers. Together, Palo Alto Networks and Telstra will collaborate to offer businesses with best-of-breed cyber security solutions to help keep them safe in a rapidly changing market landscape. [Source – Web Wire] This new partnership further solidifies the long-standing 10-year relationship between Palo Alto Networks and Telstra. It also builds upon previous agreements that expanded Telstra's SecureEdge portfolio with offerings like SecureEdge Cloud for business clients and Sovereign SecureEdge for the Australian government and agencies, both powered by Palo Alto Networks' advanced cloud-based security services. David Burns, Enterprise Group Executive at Telstra, said, Cyber security has become one of the top concerns among businesses worldwide, including here in Australia, and especially in the wake of a no. of high-profile cyber breaches. We’re now seeing the industrialization of cybercrime and the scale of threat continues to evolve and grow. As a result, we all need to be constantly changing, adapting, and looking at new technologies that can assist protect us and our customers’ data. As a leading provider of network, managed, and professional services, this new alliance between Telstra and Palo Alto Networks further boosts our capabilities to help customers protect their organizations and data from evolving cyber threats. [Source – Web Wire]

Read More

Enterprise Security

Netskope Partners with Wipro to Power New Managed Security and Network Services

PRnewswire | July 11, 2023

Netskope, a leader in Secure Access Service Edge (SASE) today announced a new partnership with Wipro Limited to deliver robust cloud-native Managed Secure Access Service Edge (SASE) and Managed Zero Trust Network Access (ZTNA) services to Wipro's extensive global enterprise client portfolio. "As the global work environment transforms, our Security Cloud platform continues to serve as a critical component for remote workforces, and we are well-positioned to continue to support enterprises as their security needs evolve," said Dave Rogers, SVP of Global Alliances and Channel Sales, Netskope. "By pairing Wipro's deep cybersecurity managed services expertise with Netskope's advanced, full-stack SASE platform, this partnership will build on our shared goal of providing customers an efficient and robust integrated managed cloud security offering to secure and accelerate their digital transformation projects." Wipro provides best-in-class, end-to-end transformative cybersecurity solutions. Wipro CyberTransform® delivers cyber resilience to clients through an integrated suite of business-aligned strategy-first cybersecurity advisory and implementation services. Wipro CyberShieldSM offers proactive, on-demand cyber defense and comprehensive managed security services. "Wipro and Netskope support many Fortune 2000 companies that have successfully navigated significant digital transformation journeys," said Tony Buffomante, Senior Vice President and Global Head of Cybersecurity and Risk Services, Wipro Limited. "As our clients move forward, they understand the need to have a strong cloud-based security posture that's smart enough to protect data, applications and users no matter where they are located. That's now possible through this new partnership with Netskope, which extends Wipro CyberTransform® and Wipro CyberShieldSM capabilities." Managed Secure Access Service Edge (SASE) powered by Netskope delivers security services to protect employees and applications in the cloud as well as existing on-premises applications and infrastructure. The solution helps users: • Eliminate blind spots across thousands of cloud services (SaaS and IaaS) and millions of websites • Secure managed cloud services like Microsoft 365, Google Workspace and AWS, as well as unmanaged cloud services, without the need for blocking • Guard sensitive data with award-winning data loss prevention (DLP), including pre-defined profiles for compliance • Stop elusive cloud threats with anti-malware, sandboxing, machine learning (ML) analysis, Cloud Threat Exchange for IOC sharing, plus behavior analytics or targeted remote browser isolation (RBI) The managed SASE package offers clients unparalleled service coverage, performance and resilience, by leveraging Wipro's strategy-first design and Netskope's NewEdge Network, the world's largest, highest-performing security private cloud. Access to key enterprise applications and data must be controlled no matter where the resources are located. Wipro's Managed Zero Trust Network Access (ZTNA) powered by Netskope allows users to retire legacy connections and gain direct access to applications based on user identity and behavioral context, providing: • Superior user experience with consistent and secure policy controls • Application-level access control that reduces threats by eliminating lateral movement within the network • Reduced deployment complexity and higher visibility and control, lowering the risk of data loss associated with multiple vendor solutions • Improved efficiency in security operations leveraging platforms • Simplified security and lower total cost of ownership About Netskope Netskope, a global SASE leader, is redefining cloud, data, and network security to help organizations apply zero trust principles to protect data. Fast and easy to use, the Netskope platform provides optimized access and real-time security for people, devices, and data anywhere they go. Netskope helps customers reduce risk, accelerate performance, and get unrivaled visibility into any cloud, web, and private application activity. Thousands of customers, including more than 25 of the Fortune 100, trust Netskope and its powerful NewEdge network to address evolving threats, new risks, technology shifts, organizational and network changes, and new regulatory requirements.

Read More

More featured news