Social-security and credit-card numbers frequently leak or are stolen from corporate networks—and surface on the black market. Adam Ghetti, founder of Ionic Security, says he has invented technology that could largely end the problem. His software keeps corporate data such as e-mails and documents encrypted at all times, except for when someone views it on an authorized computer or mobile device.
Information sharing on cybersecurity is an increasing focus for the security community, vertical markets and the federal government, with much debate as to how to best architect systems for doing so. AlienVault is taking an unusual tack, and has announced the beta release of Open Threat Exchange (OTX) 2.0, a social media platform for the security community to share threat intelligence for collaborative cyber-defense.
Microsoft updated four critical flaws that could have left users vulnerable to attacks using remote code execution in a lighter-than-average Patch Tuesday.
The critical updates centre on vulnerabilities in HTTP.sys, Internet Explorer, Microsoft Office and Microsoft Graphics component.
The HTTP.sys patch will resolve a flaw in Windows that could allow remote code execution if an attacker sends a specifically crafted HTTP request to an affected system, said Microsoft. The vulnerability is understood to affect all versions of Microsoft Server from 2008 onwards.
KPN’s CIO Jaya Baloo wants everyone to “live long, laugh a lot, and encrypt everything.”
Speaking at the International NCSC One Conference at the Hague, Baloo said encryption was essential for protecting the freedom of expression.
The European Commission has officially accused Google of unfair and monopolistic search practices and concerns regarding the way the giant company affects competition. The authorities have also launched an investigation into Google’s mobile service through Android apps and services.