Security News, Features, and Interviews

• EY teams up with Wire to enable end-to-end encrypted messaging with clients

  As the threat landscape continues to grow, EY has collaborated with encrypted messaging service Wire to improve its security strategy and move away from email

• Cisco spotlights Microsoft Office 365 email phishing increase

  It’s no secret that if you have a cloud-based email service, fighting off the barrage of security issues has become a maddening daily routine.

• Why we need to merge DevOps and cyber security

  Cyber attacks are rising in frequency, complexity and impact as savvy attackers take advantage of security risks to infiltrate enterprise infrastructure.

• Extreme Networks grows networked IoT security protection

  ExtremeAI security app features machine learning technology that can understand typical behaviour of IoT devices.

• Cisco releases a critical security patch for a virtualized automation tool

  Cisco has released a software patch for a critical vulnerability in software used to control large virtual environments.

• Stop cleaning up someone else’s vulnerability mess

  The fundamental problem with cyber security today comes down to the simple fact there isn’t enough time in the day to discover and remediate all the potential vulnerabilities that exist within any IT environment.

• Cisco issues critical security warning for Nexus data centre switches

  Cisco has issued some 40 security advisories but only one of them was deemed “critical​”.

• How to shop for enterprise firewalls

  Performance, form factors, and automation capabilities are key considerations when choosing a next-generation firewall (NGFW).

• The new PCI Software Security Framework may be just the start

  Nothing bums out a room like starting to talk about compliance. Go ahead, try it at your next meet up and see how many people turn to their phones or the door.

• Cisco: DNSpionage attack adds new tools, morphs tactics

  The group behind the Domain Name System attacks known as DNSpionage have upped their dark actions with new tools and malware to focus their attacks and better hide their activities.

• Cisco warns WLAN controller, 9000 series router and IOS/XE users to patch urgent security holes

  Cisco says unpatched vulnerabilities could lead to DoS attacks, arbitrary code execution, take-over of devices.

• Cisco Talos details exceptionally dangerous DNS hijacking attack

  Cisco Talos says state-sponsored attackers are battering DNS to gain access to sensitive networks and systems

• Google, Hyperledger launch online identity management tools

  The new tools enable mobile-based options for employees to sign into corporate applications or create self-sovereign identities, access to which they control.

• US govt warns on VPN security bug in Cisco, Palo Alto, F5, Pulse software

  VPN packages from Cisco, Palo Alto, F5 and Pusle may improperly secure tokens and cookies, allowing nefarious actors an opening to invade and take control over an end user’s system.

• What is a honeypot? A trap for catching hackers in the act

  A honeypot is a system designed to lure hackers into revealing their origins and techniques, and they're used by security researchers and corporate IT alike.

• Cisco warns of two security patches that don’t work, issues 17 new ones for IOS flaws

  Cisco is issuing 17 new fixes for security problems with IOS and IOS/XE software that runs most of its routers and switches, while it has no patch yet to replace flawed patches to RV320 and RV 325 routers.

• How to hack your own Wi-Fi network

  Attempting to "hack" into your own wireless network can help you spot potential Wi-Fi security vulnerabilities and figure out ways to protect against them.

• Cisco directs high priority patches for IP phone security exposures

  Cisco has advised customers using its 7800 and 8800 series IP phones they should patch a variety of high-priority vulnerabilities.

• Quantum computing will break encryption in a few years

  Quantum technology’s set to make public-key infrastructure obsolete before too long, but it might also keep your data secure.

• VMware firewall takes aim at defending apps in data centre, cloud

  VMware has taken the wraps off a firewall​ it says protects enterprise applications and data inside data centers​ or clouds.

How to stay agile and tackle IT complexity