Dateline
Why cybersecurity leaders trust the MITRE ATT&CK Evaluations. (N2K Networks) This is a sponsored story produced in collaboration with Cynet.
Attacks, Threats, and Vulnerabilities
Operation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnels (SentinelOne) Threat actors abused Visual Studio Code and Microsoft Azure infrastructure to target large business-to-business IT service providers in Southern Europe.
Avast researchers detect a surge in fake e-shops following holidays (Avast) We kick off the new year with expectations of sales, but beware: a dangerous wave of fake e-shops is spreading on the internet.
Security Patches, Mitigations, and Software Updates
Patch Tuesday, December 2024 Edition (KrebsOnSecurity) Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in active attacks. The zero-day seeing exploitation involves CVE-2024-49138, a security weakness in the Windows Common…
OTICS Patch Tuesday: Security Advisories Released by Siemens, Schneider, CISA, Others (SecurityWeek) December 2024 ICS Patch Tuesday brings advisories from CISA, as well as several major industrial automation companies.
Microsoft Fixes 71 CVEs Including Actively Exploited Zero-Day (Infosecurity Magazine) Microsoft has patched dozens of vulnerabilities in December, including one zero-day being exploited in the wild
Trends
61% of Global Businesses are Scaling Back AI Investment as a Result of Trust Issues (GlobeNewswire News Room) Qlik study reveals that despite 88% of businesses knowing AI is fundamental to success, factors including a lack of trust, a lack of skills and data...
NetRise Releases Supply Chain Visibility & Risk Study, Edition 2: Containers, Revealing Significant Visibility and Risk Challenges within Common Containers (NetRise) The report is based on an in-depth analysis of 100 networking devices across five key classes: routers, switches, firewalls, VPN gateways, and wireless access points.
NetApp’s 2024 Data Complexity Report Reveals AI’s Make or Break Year Ahead (NetApp) Organizations Worldwide Brace for a Year of AI Transformation, Security Challenges, and Sustainability Imperatives
Marketplace
DTEX Establishes Advisory Board with The Honorable Sue Gordon and Rear Admiral (Ret.) Mike Studeman (GlobeNewswire News Room) Top Cybersecurity and Intelligence Leaders to Help Drive Company Strategy, Highlight Insider Risk Management’s Critical Role for National Security and...
Titania Appoints Experienced Cybersecurity Leader Victoria Dimmick as CEO to Spearhead Next Phase of Growth (Titania) Titania, a global leader in network security and compliance assurance, is pleased to announce the appointment of Victoria Dimmick as CEO.
Island Announces Participation of Singapore-based Global Investor EDBI in its Series D Round to Accelerate Expansion Plans in the Asia-Pacific Region (Island.io) Island Announces Participation of Singapore-based Global Investor EDBI in its Series D Round to Accelerate Expansion Plans in the Asia-Pacific Region
RegScale’s New CTO Explains How We’re Transforming the GRC Industry (RegScale) Hear from RegScale's new CTO about how we’re transforming the GRC industry — and how his years of engineering leadership will move the company forward.
Products, Services, and Solutions
Previously Undetectable AI-Designed Cyberattacks Can Now Be Found in Minutes as CyTwist Launches Breakthrough Malware Detection Engine (CyTwist) In a recent red team AI-generated malware cyberattack, mirroring the attack on France’s government agencies, CyTwist’s purpose-built patented detection engine uncovered in minutes, what usually takes months, demonstrating its unmatched protection against AI-originated attacks and novel malware [Tel Aviv, Israel – Dec 10, 2024] – Today, CyTwist, a leading cybersecurity platform countering Advanced Persistent Threats […]
Stamus Networks Announces Clear NDR: The Next Generation of Open and Transparent Network Defense (Stamus Networks) PRESS RELEASE: Stamus Networks announces Clear NDR™, an open and transparent NDR system.
Data Protection and Security with Versa’s Endpoint DLP Solution (The Versa Networks Blog - The Versa Networks Blog) Data Protection and Security with Versa’s Endpoint DLP Solution In a hyper-digital and remote-working world, protecting sensitive data has become more critical than ever. Endpoint and network Data Loss Prevention (DLP) work together to provide data visibility and control, safeguarding businesses against potential breaches and compliance risks. For this blog, we’ll focus on the value
Legislation, Policy, and Regulation
Federal Appeals Court Upholds Law Threatening US TikTok Ban (Infosecurity Magazine) Appeals court upheld law forcing TikTok divestiture, citing national security risks over China ties
BreachRx Cyber Rules Research & Regulations Report (CRRR) | 2024: The Year of SEC Cyber Rules (BreachRx) Download the research to learn more about the new cyber rules and regulations and what they reveal about the new era of transparency.