Editor's News

Providers of cloud-based zero-trust and zero-knowledge cybersecurity, Keeper Security have announced that it has joined the Amazon Web Services (AWS) Partner Network (APN). The APN is a global community of AWS Partners that leverage programmes, expertise and resources to build, market and sell customer offerings. As an APN member, Keeper joins a global network of 130,000 partners from more than 200 countries working with AWS to provide innovative solutions, solve technical challenges, win deals and...

The Cyber Scheme has announced availability of a new CSII Practitioner Training Course that has been developed as a comprehensive IoT/ICS hacking course. The aim of the course is to teach candidates all the skills they need to securely test and assess connected systems and devices in consumer, industrial, and critical infrastructure environments.  It is designed for beginner-intermediate level security professionals, whether they are engineers, technicians, analysts, or penetration testers.   The in-person course covers all...

Today, API security pros Salt Security have announced that the Salt Security API Protection Platform is now available for purchase in the CrowdStrike Marketplace. Salt Security integrates with the industry-leading CrowdStrike Falcon® XDR platform to provide customers with best-of-breed API runtime monitoring and AI-driven insights for a 360-degree view of API security risks for effective threat protection and improved security posture. Now CrowdStrike customers can seamlessly purchase Salt Security's offering via CrowdStrike Private Offer and leverage...

Today, Keeper Security have announced the appointment of Dr. Chase Cunningham to its Public Sector Advisory Board. Cunningham's appointment reflects Keeper Security's commitment to zero-trust security. Keeper’s early adoption of zero-trust architecture has become a model for national security and cybersecurity organisations preparing to invest in and implement zero trust. As an advisory board member, Cunningham will contribute his expertise to bolster Keeper’s ongoing efforts to meet the shifting cyber demands of the US government...

Third-party cyber-attacks remain one of the most significant threats facing organisations across the globe. Most recently, Bank of America, a multinational investment banking and financial services corporation, began notifying customers that a November 2023 hack against one of its service vendors resulted in the exposure of personally identifiable information (PII).  The breach occurred following a security incident against Infosys McCamish Systems (IMS), a subsidiary of Infosys that provides deferred compensation plan services to Bank of...

A household name among American media companies, Verizon Communications on Wednesday began notifying employees that an insider may have gained access to their data. According to the breach notice to the Maine Attorney General, an unauthorized employee opened a file containing sensitive data of 63,206 other employees.  While customers are not believed to have been impacted in this breach, Verizon is warning that the exposed employee data could include Social Security Numbers, National Identifiers, full...

Password manager Keeper Security announced this week that users can log in to applications on the new Apple Vision Pro™ with Keeper, providing secure and seamless access to content on the revolutionary new device. As spatial computing becomes a reality and blends the physical world with virtual experiences, securing this evolving form of computing is critical. Using Keeper with Apple Vision Pro provides the same login experience and autofill capabilities users know from their mobile...

Have you heard of the term HTTP Request Smuggling? What about HTTP/2 Downgrading? Well, these are vulnerabilities that can be exploited by cybercriminals when there are issues between the front-end and back-end of websites. If left unresolved, these can result in some very dire consequences for any business. The IT Security Guru chatted with Love Andren, Junior Application Security Auditor, Ghostlabs AppSec at Outpost24, to understand more about this threat. IT Security Guru (ISG) -...

Today, API security company Salt Security has announced that it has been accepted to the Amazon Web Services (AWS) Lambda Ready Program. Salt now supports and simplifies deployments to AWS Lambda, allowing customers to capture API traffic flowing through serverless environments using Amazon API Gateway, both REST and HTTP, with no risk for any latency or overhead. Salt is the only AWS Lambda Partner in the API Security space.  “By joining AWS Lambda Ready Program, we...

Today, password security pros, Keeper Security have released the key findings from its latest survey about the state of cybersecurity and the burgeoning threats that are keeping cyber professionals up at night. The survey of more than 800 IT security leaders around the globe finds that the vast majority (95%) believe cyberattacks are more sophisticated than they have ever been. AI-powered attacks emerge as the most serious and phishing attacks are widely considered to be...