Featured

Researchers at Armis, the unified asset visibility and security platform provider, have disclosed the discovery of an authentication bypass vulnerability in Schneider Electric’s Modicon programmable logic controllers (PLCs) that can lead to remote-code-execution (RCE). The vulnerability, dubbed Modipwn, allows for a complete takeover of impacted devices by leveraging the UMAS protocol, and impacts Modicon M340, M580 and other models from the Modicon series. Millions of devices use these PLCs and are now deemed to be at...

Of the 73% of security professionals with responsibility for the security of public cloud who operate in a multi-cloud environment, 98% think these more complex environments pose greater security challenges, a survey conducted for Tripwire by Dimensional Research reveals.   Organizations have a wide range of reasons for going multi-cloud, including meeting varying business needs, running certain applications, distributing risk, taking advantage of cost savings, and to provide redundancy in the event of downtime. In the industrial space specifically,...

The sixth annual Security Serious Unsung Heroes Awards are now open for nominations. This is a chance to celebrate the people working on the frontlines to fight against cyber threats, no matter if they work in the classroom, law enforcement or corporate organisations. This year sees three new categories introduced, which will be for Business Support Standout, HR Superstar and Remote Work Guru.    “We are passionate about getting the community together and recognising the...

Armis, a unified asset visibility and security platform provider, has today released results from a survey that looked at the UK's attitude towards cyberattacks on critical infrastructure. The study, carried out by Censuswide*, found that nearly 9 in 10 (87%) believe that cyberattacks on critical services, such as oil suppliers, healthcare services, police departments or water treatment facilities, could have a major impact on everyday life. When it comes to increasing protection against cyberattacks on...

A new cybersecurity coalition, which is backed by IT Security Guru, has launched this week in a move to fight back against ransomware. The coalition is part of a new movement headed by managed security service provider Talion, called #RansomAware, which encourages organisations to come clean on ransomware and speak up about the attacks they are facing. Today businesses are facing a tidal wave of ransomware attacks and recent data from Cybereason has revealed that...

Shortly after hitting Colonial Pipeline, Darkside developers announced they would be closing operations. Nevertheless, researchers at AT&T Alien Labs have observed evidence that the group has completed a Linux version of its malware that is targeting ESXi servers hosting VMware virtual machines. To this point, the authors announced the Darkside 2.0 version with Linux capabilities.   "Linux and UNIX servers have always been a preferred option for servers and data centers, likely due to the...

Recent research from security and privacy comparison and advice website Comparitech.com, which has looked at children's apps available through Google Play  has found that 1 in 5 breach COPPA rules. Even more worrying is that half of the apps that violate the rules have received a "teacher-approved" badge. COPPA, imposed by the Federal Trade Commission (FTC), enforces a number of requirements on operators of websites or online services that are aimed at under 13 year...

What will the legacy of security leaders be in the years to come? Will they be remembered as the defenders of the cyber realm, heroes or will history view them as annoying barriers who did nothing but slow down innovation? Many security leaders agree that too many times, the security team is viewed as the Department of No. Now, some may believe that the end justifies the means. Every third party needs to be audited...

Armis, the unified asset visibility and security platform provider, has announced the appointment of Michael Carpenter to Armis’ Board of Directors. As the President of Global Sales and Field Operations at Crowdstrike, he was instrumental in expanding the sales organisation worldwide and generating business growth at incredible scale. This led to its IPO in 2019 and he has maintained the company’s tremendous growth today. Prior to Crowdstrike, Carpenter served as president, Global Sales and Field...

CyberSmart has today announced the completion of a successful over-subscribed Series A funding round, bringing the total raised to over $10 million. Alongside deeptech fund IQ Capital and with the additional support of InsurTech specialist, Eos Venture Partners, and data science focused Winton Ventures, CyberSmart is set to further disrupt the cybersecurity market. The funding will be used to enhance their product’s capabilities further, invest in channel partnerships as well as scale into the UK...