Elon Musk may have fired many of the staff in Twitter’s Trust & Safety division after purchasing the company in October 2022, but for over a year he has been saying how Twitter DMs should support end-to-end encryption like Signal. As far back as 2014, Twitter was toying with the idea of introducing encryption to […]
Cybersecurity
Software supply chain security provider Arnica has added new real-time scanning tools to its namesake code-security suite, including static application security testing (SAST), infrastructure as code (IaC) scanning, software component analysis (SCA), and third-party package reputation checks. With the enhancements, the company claims to provide a comprehensive security solution that identifies and prevents the introduction […]
CybersecurityA month after news came out about PharMerica cyber attack, the US-based healthcare organization has started alerting its customers that their data could be at risk. Consumer rights law firm Wolf Haldenstein Adler Freeman & Herz is investigating claims on behalf of customers of PharMerica Corporation. According to a disclosure filed at the Office of […]
Cybersecurity
Cloud native security vendor Aqua Security has announced the launch of Real-Time CSPM, a new cloud security posture management solution designed to provide visibility and risk prioritization across multi-cloud security risks. Real-Time CSPM uses “real-time scanning” to pinpoint threats that evade agentless detection and reduce noise so security practitioners can identify, prioritize, and remediate the […]
Cybersecurity
Graham Cluley Security News is sponsored this week by the folks at Expel. Thanks to the great team there for their support! Expel wanted to find out what cybersecurity issues were most important to organisations in the United Kingdom, so it surveyed 500 IT decision-makers (ITDMs) to get a better sense for the state of […]
CybersecurityThe Indian Computer Emergency Response Team (CERT-IN) has issued an alert on vulnerabilities in VMware Aria Operations. Versions of VMware Aria Operations prior to 8.12 are vulnerable to cyberattacks due to the high-severity vulnerabilities published in the CERT-IN vulnerability note CIVN-2023-1032, with a severity rating of High. VMware has issued patches for these vulnerabilities. […]
CybersecurityMedusa ransomware group has misidentified its victim, claims HostAfrica, after the hacker group listed the company as a victim on its dark web portal. On May 13, the Medusa Ransomware Group claimed the HostAfrica cyber attack adding that they had successfully hacked into the systems of the company, asserting their possession of sensitive data and […]
CybersecurityIn today’s interconnected digital landscape, the role of Chief Information Security Officers (CISOs) has continued to evolve as these dedicated professionals work relentlessly to safeguard organizations against the growing threats of cybercrime and data breaches. Tasked with protecting the company’s data and fortifying defenses against potential breaches, these individuals have the know-how and foresight to […]
CybersecurityIn what seems to be a negotiation failure, the LockBit ransomware group decided to go ahead and leak the data it claimed was stolen after the Bank Syariah Indonesia cyber attack. LockBit made an initial threat on its leak site on May 12, which was tweeted about by researchers. However, on May 15, the group […]
Cybersecurity