Five Functions That Benefit From Cybersecurity Automation
Data center cybersecurity managers have had it tough this pandemic. During the first half of 2021, bad actors launched 5.4 million DDoS attacks, setting a…
SASE Model Proving Value Beyond Remote Work Scenarios
Gartner only coined the term SASE — secure access service edge — two years ago to describe a cloud-based service that combines SD-WAN networking with all the latest security…
Paying Hackers’ Ransom Demands Is Getting Harder
If your data center’s ransomware recovery plan is to pay off the hackers with cryptocurrency, it’s time to rethink your strategy as regulators crack down.…
OMIGOD Vulnerability Exposes Virtual Machines Running Inside Azure
Late last month, researchers from cloud security firm Wiz found a new vulnerability that allows Azure users to access cloud databases of other users, breaking the principle…
What to expect from SASE certifications
Secure access service edge (SASE) is a network architecture that rolls SD-WAN and security into a single, centrally managed cloud service that promises simplified WAN…
Zero-Trust Model Gains Luster Following Azure Security Flaw
Cloud use is at an all-time high, despite security worries. Last week’s ChaosDB vulnerability shows that enterprises need to adapt their security strategies and move to the…
Microsoft Azure Vulnerability ‘Breaks Secure Multitenancy’
Last week, researchers from cloud security firm Wiz reported a new vulnerability in Microsoft Azure’s managed database service, Cosmos DB, that they called the worst they’ve ever…
Taking a Close Look at the $2B for Cybersecurity in the $1T US Infrastructure Bill
The 2,700-page $1 trillion infrastructure bill passed by the US Senate earlier this month still has the House of Representatives to get through. In addition to sizable…
What is a managed service provider? Strategic outsourcing for IT services explained
Managed service provider defined A managed service provider (MSP) is an outsourcer contracted to remotely manage or deliver IT services such as network, application, infrastructure,…
Ransomware recovery: 8 steps to successfully restore from backup
According to a ransomware survey report released in June by Keeper Security, 49% of companies hit by ransomware paid the ransom—and another 22% declined to say whether…
Why CISA’s China Cyberattack Playbook Is Worthy of Your Attention
At first glance, last week’s advisory on state-sponsored China cyberattacks by the FBI and the Cybersecurity and Infrastructure Security Agency is nothing new. It outlines the tactics,…
The Kaseya Ransomware Attack Is a Wakeup Call for MSP-Reliant IT Shops
Managed service providers, the vendors companies hire to manage their IT infrastructure, have been having a second banner year in a row. The pandemic-driven switch…
Security Problems Worsen as Enterprises Build Hybrid and Multicloud Systems
Hybrid and multi-cloud architectures are all the rage in enterprise IT infrastructure. But enabling the flexibility to deploy the right tool for each task requires…
Botnet attacks on APIs: Why most companies are unprepared
As companies move applications to the cloud and expose functionality via application programming interfaces (APIs), criminals have been moving quickly to take advantage of this…
Pressure Grows for Federal Data Breach Legislation
Cybersecurity is a major priority for U.S. President Joe Biden. It was at the top of the agenda at last week’s summit with Russian President…
Russian Cybercrime: Is Extradition Ahead?
The international community is putting increased pressure on Russia to stop protecting its cybercriminals. But while Russian President Vladimir Putin has made some positive statements,…
Is the US Government Doing Enough About Ransomware?
FBI’s seizure of $2.3 million worth of bitcoin Colonial Pipeline paid a ransomware gang to unlock its data was just the latest in a series…
How API attacks work, and how to identify and prevent them
In early May, fitness company Peloton announced that it had exposed customer account data on the internet. Anyone could access users’ account data from Peloton’s…
Report: Cloud Security Breaches Surpass On-Prem Ones for the First Time
Most cybersecurity incidents now involve cloud infrastructure, according to the latest Verizon Data Breach Investigations Report (DBIR). The annual report is the most researched of…
Pandemic, AWS Bombing Plot Heighten Data Center Physical Security Concerns
This relatively chaotic period has made data center operators increasingly worried about their facilities’ physical security. This had been true even before FBI announced the…
Confidential Computing: Arm Builds Secure Enclaves for the Data Center
Arm chips for mobile and IoT devices have supported secure enclaves – a concept known as confidential computing – for years. It’s called the Arm…
Security Tech Based on Each Chip’s Unique ‘Fingerprint’ Comes to Data Centers
The composable data center platform Fungible unveiled earlier this year has a number of new approaches to computing infrastructure. Its users can scale compute, storage,…
Tips and tactics of today’s cybersecurity threat hunters
Threat hunting isn’t just for the biggest organizations anymore. As the SolarWinds attack demonstrated, any size company can be vulnerable to stealthy attackers who worm…
Foiled AWS Data Center Bombing Plot Poses New Questions for Operators
Following the recent arrest of a man who was allegedly plotting to blow up an AWS data center, operators of computing facilities – and other…
Malware Wants to Phone Home. Trinity Cyber Doesn’t Try to Block It
The SolarWinds breach, discovered last year, demonstrated how, with enough sophistication, malware can “phone home” for years, completely undetected. The hackers found ways around the…
HPE OneView: An Overview of the Popular IT Management Platform
Cloud infrastructure customers can get all their computing resources in one place – computing, storage, and networking. It’s one of the biggest ultimate benefits virtualization…
Emotet May Be Gone, But the Security Holes It Made Could Still Be Lingering in Data Centers
In January, an international group of law-enforcement agencies took down Emotet, the world’s top malware. Authorities took over its command-and-control servers and installed a kill…
An Adobe Flash Ghost May Be Haunting Your Data Center
Adobe’s Flash Player officially hit its end of life on January 1, 2021. It was a security risk while it was still alive. To data…
Microsoft Exchange Hack Could Be Worse Than SolarWinds
The scope of damage from the newly public Microsoft Exchange vulnerability keeps growing, with some experts saying that it is “worse than SolarWinds.” As of…
What Is Zscaler and How Does It Secure Enterprise Networks?
Zscaler saw unprecedented growth last year, replacing legacy networking platforms with its scalable cloud-based alternative at breakneck speed. Today, the company serves more than a…