TechTarget News - Week of Aug 07, 2022
Mon Aug 8, 2022
VMware: The threat of lateral movement is growing
The majority of incident response professionals surveyed for VMware's 'Global Incident Response Threat Report' observed lateral movement in at least some attacks in the past year.
Mon Aug 8, 2022
BT claims breakthrough for enterprise mobile with 5G standalone
Leading UK telco reveals carrier aggregation technology trials with Nokia mark first time four carrier components on a 5G standalone network have been used achieved outside of a lab in Europe
Mon Aug 8, 2022
Internet giants in favour as Ireland tightens rules on datacentres
Irish premier Michael Martin has insisted its temporary squeeze on datacentre construction is not a moratorium on the industry
Mon Aug 8, 2022
Celigo in channel-building mode
Integration-platform-as-a-service specialist is looking to significantly grow its partner base to ensure it can service increasing demand
Mon Aug 8, 2022
NHS recovering key services after attack on supplier
Incident at software provider Advanced took out multiple NHS services before the weekend, including the 111 advice service
Mon Aug 8, 2022
Channel roundup: Who’s gone where?
The channel does not take the summer off, and the personnel moves continue to stack up as we move into August
Mon Aug 8, 2022
Around 750 new software developer jobs advertised every day
Tech job adverts in the UK are still on the rise, with recruiters saying finding the talent they need for roles could be the biggest challenge of 2022
Mon Aug 8, 2022
CHIPS and Science Act boosts U.S. technology investment
Agencies including the National Science Foundation will receive a significant increase in funding from the CHIPS and Science Act to research and develop new technologies.
Mon Aug 8, 2022
Blue chips hone continuous compliance as GRC pressures mount
The concept of continuous improvement has found its way into IT governance, as companies such as Fannie Mae, JPMorgan Chase and John Deere embrace continuous compliance.
Mon Aug 8, 2022
Devs don't trust AI in software testing
Artificial intelligence can eliminate mundane testing tasks and reduce bugs without human intervention, but its inner machinations make testers uneasy.
Mon Aug 8, 2022
Partner ecosystem economy bucks market turbulence
A key index reports unexpected service sector growth, while digital services M&A could overtake 2021 deal volume and value levels; more IT channel news.
Mon Aug 8, 2022
Phison's new X1 controller to power Seagate SSD
Seagate continues its partnership with Phison through the release of the X1, a customizable SSD controller that promises higher performance and lower power use.
Mon Aug 8, 2022
CHIPS Act targets emerging technologies including quantum, AI
While semiconductors have grabbed most of the attention with the CHIPS and Science Act, emerging tech such as quantum and AI figures to grab a generous share of the $280 billion.
Mon Aug 8, 2022
U.S. sanctions another cryptocurrency mixer in Tornado Cash
The U.S. Treasury Department issued sanctions against Tornado Cash, a cryptocurrency mixer accused of helping North Korea's Lazarus Group launder stolen funds.
Tue Aug 9, 2022
Nokia on track with NCRTC voice/data offering and Orange Egypt network modernisation
Nokia tests mission-critical voice and data on 4.9G/LTE private wireless network for India’s regional rapid transit system, while being selected by leading Egyptian telco to upgrade network for increased reliability, security and operational efficiencies
Tue Aug 9, 2022
Brsk announces new full-fibre roll-out region as CityFibre focuses on Warwickshire
Pace quickens on UK gigabit broadband market as growing altnet provider and nation’s third-largest network take more full-fibre to non-urban English shires
Tue Aug 9, 2022
HS2 sets aside £9.5m to cover cost of IR35 non-compliance
HS2 has become the latest public sector entity to have fallen foul of the IR35 rules, with its accounts confirming that it is anticipating a tax bill of £9.5m for failing to assess the status of contractors provided to it by a third party
Tue Aug 9, 2022
Cyber insurance getting harder to obtain
Organisations looking to shore up their security postures face more and more barriers to obtaining cyber insurance
Tue Aug 9, 2022
Tata teams with Genesys to boost enterprise engagement with enhanced InstaCC Platform
Global digital ecosystem enabler partners with cloud-based customer experience orchestration to further transform customer engagement across platforms ranging from social to mobile
Tue Aug 9, 2022
Logicalis adds Q Associates to bolster data management
Acquisition will give the channel player more depth around management, protection and compliance
Tue Aug 9, 2022
Supply chain attacks spark security investments
There have been several episodes of attacks in the software supply chain world, and MSPs in general are feeling the heat
Tue Aug 9, 2022
Nvidia targets metaverse with new Omniverse Avatar Engine
The vendor's new cloud engine will help organizations easily build avatars and digital assistants. Nvidia also revealed plans to evolve USD with partners such as Pixar.
Tue Aug 9, 2022
IT pros weigh COVID-19 risks, safety at tech conferences
Companies preparing to send employees to tech conferences should have a COVID-19 safety plan and prepare for the possibility that some workers will bring the virus back to the office.
Wed Aug 10, 2022
DogWalk zero-day squashed on August Patch Tuesday
In addition to a long-simmering bug in the Microsoft Support Diagnostic Tool, Microsoft corrects a sizeable number of flaws in its Azure Site Recovery product.
Wed Aug 10, 2022
UK to surveil convicted migrants with facial recognition
A Home Office scheme to biometrically scan the faces of convicted migrants who have already carried out punishments has come under fire from privacy and human rights groups for being discriminatory
Wed Aug 10, 2022
‘Coopetition’ a growing trend among ransomware gangs
Sophos shares data from its new X-Ops unit at Black Hat in Las Vegas, revealing a growing number of ransomware victims being attacked by multiple gangs at the same time
Wed Aug 10, 2022
Waterstones’ supply chain disrupted in Blue Yonder implementation
Bookseller Waterstones is recovering from the effects of a Blue Yonder implementation that has seen authors and readers up in arms
Wed Aug 10, 2022
Cellular low-power WAN connectivity to grow over twofold in next five years
Even though the lack of widespread roaming agreements thus far has hampered the growth of the mobile standard outside of China, and roaming and monetisation continue as core service provider challenges, the LPWAN landscape is changing, with an increasing number of agreements having been concluded to facilitate regional roaming and boost income generation
Wed Aug 10, 2022
Positioning rapidly finds its place in 5G ecosystem
Research find that while 5G positioning is developing quickly and could be featured in billions of consumer and enterprise devices by 2030, the journey to commercial success is not without hurdles
Wed Aug 10, 2022
Google Cloud to open three new cloud regions in APAC
New Google Cloud regions in Malaysia, Thailand and New Zealand will enable local organisations to maintain low latency and meet data residency requirements
Wed Aug 10, 2022
Microsoft fixes two-year-old MSDT vulnerability in August update
August’s Patch Tuesday drop fixes more than 120 CVEs, including another MSDT RCE zero-day that is being actively exploited.
Wed Aug 10, 2022
GitHub targets vulnerable open source components
There are thousands of vulnerabilities in open source code – GitHub aims to help developers see if their projects are impacted
Wed Aug 10, 2022
Increase in UK startups scaling to exit, but half still struggle
Despite more startups scaling to the point of exit than ever before, half are still stuck in low growth stages – particularly those working with emerging technologies
Wed Aug 10, 2022
COBOL programming skills gap thwarts modernization to Java
The challenge of migrating COBOL applications to run in the cloud is made nearly impossible with tricky line-to-line conversions and a lack of developers with the right skills.
Wed Aug 10, 2022
Nokia on track to modernise Western Australia rail communications
Leading comms tech provider to upgrade Public Transport Authority of Western Australia’s railway communications system with private wireless and mission-critical IP/MPLS covering 250km of railway track and tunnels in project including designing, building and maintenance
Wed Aug 10, 2022
Online retail sales see year-on-year drop of 2.3% in July 2022
Despite another year-on-year drop in online retail sales in July, the fall is smaller than those seen in previous months of 2022 as online sales decline slows
Wed Aug 10, 2022
Salesforce adds headless commerce capabilities
Salesforce enables 'composable commerce' -- headless e-commerce, where users bring their own interface designs -- for large brick-and-mortar retailers and online-only sellers.
Wed Aug 10, 2022
Oracle CX layoffs: What customers should do right now
After the turmoil that has hit Oracle's customer experience division, here's what current enterprise customers need to do next to preserve their technology investments.
Wed Aug 10, 2022
AWS, Splunk and more launch cybersecurity analytics standard
AWS and other IT vendors will start building connectors based on a new standard schema meant to streamline data sharing between cybersecurity tools.
Wed Aug 10, 2022
Samsung offers Fold4 to an indifferent business market
Samsung aims the new Fold4 directly at the business market with optimized versions of Google and Microsoft productivity apps. The device is scheduled to ship this month.
Wed Aug 10, 2022
Industroyer2: How Ukraine avoided another blackout attack
A Black Hat 2022 session explained how the latest attack on Ukraine's energy grid was thwarted this spring, thanks to quick responses and timely sharing of threat data.
Wed Aug 10, 2022
Chris Krebs: It's still too hard to work with the government
Former CISA Director Chris Krebs offered multiple areas of improvement to the U.S. government's cyber readiness during a Black Hat 2022 keynote.
Wed Aug 10, 2022
Ermetic addresses IAM weaknesses in multi-cloud environments
Researchers at the cloud security vendor discussed the importance of understanding the different identity and access management features among the major cloud providers.
Thu Aug 11, 2022
Sellafield Ltd inks network services contract with BT
UK incumbent telco strikes deal with leading UK nuclear facility to take on network service responsibility across all of its sites with potential for future projects involving technologies such as IoT and 5G
Thu Aug 11, 2022
Samsung, Kajeet collaborate to deliver smart private 5G network
Wireless connectivity provider teams with mobile technologies and CE giant to bring together private 5G platform and 5G RAN innovations
Thu Aug 11, 2022
NHS may take a month to recover from supply chain attack
Ransomware attack victim Advanced warns its NHS customers they could be waiting until early September to fully recover their operations
Thu Aug 11, 2022
Crown Commercial Service opens door to Salesforce
The Crown Commercial Service has agreed a Memorandum of Understanding with Salesforce to facilitate public sector access to the supplier’s products and services, including Tableau, Slack and Mulesoft
Thu Aug 11, 2022
Seacom teams up with BT to deliver enterprise communications services across Africa
Deal with leading UK telco intended for customers of Africa’s first broadband submarine cable system to benefit from what is claimed to be world-class portfolio of network services
Thu Aug 11, 2022
FCC rejects Starlink, LTD Broadband bids for satellite connectivity subsidies
US regulator deals blow for bid by consortium headed by Elon Musk-led satellite company to gain financial stimulus under Rural Digital Opportunity Fund
Thu Aug 11, 2022
Google researchers dissect Android spyware, zero days
Researchers with Google's Threat Analysis Group say the ecosystem of surveillance vendors is far larger than just NSO Group, and some vendors are sharing or trading exploits.
Thu Aug 11, 2022
Cisco averts cyber disaster after successful phishing attack
A potentially serious cyber attack on Cisco’s systems that began after a threat actor successfully exploited an employee’s carelessly secured credentials was thwarted without major damage
Thu Aug 11, 2022
Researcher finds 10 vulnerabilities in Cisco firewalls
At Black Hat USA, Rapid7 researchers report on 10 security issues in popular Cisco firewall products, many of which do not yet have patches
Thu Aug 11, 2022
How CI/CD pipelines are putting enterprise networks at risk
At Black Hat USA 2022, NCC Group researchers demonstrated how threat actors can compromise CI/CD pipelines and break out into enterprise networks and cloud environments.
Thu Aug 11, 2022
Zero Day Initiative launches new bug disclosure timelines
The Trend Micro Zero Day Initiative's vulnerability disclosure policy will now mandate shorter disclosure windows for flaws believed to result from bypassed security patches.
Thu Aug 11, 2022
SentinelOne discusses the rise of data-wiping malware
During a Black Hat 2022 session, researchers showed how expectations of cyber war may differ from the reality.
Thu Aug 11, 2022
Cloud-agnostic ethos key for Qlik as an independent vendor
The vendor has developed relationships with many of the key cloud providers and is intent on enabling its users to house their data on the cloud of their choice.
Thu Aug 11, 2022
Lessons enterprises can learn from Meta BlenderBot 3
The tech giant's AI chatbot raises concerns on how enterprises can train natural language generative systems without creating controversial and damaging products.
Thu Aug 11, 2022
Cisco hacked by access broker with Lapsus$ ties
No Cisco employee or customer personal information was stolen in the hack, though some data did make it onto the dark web.
Thu Aug 11, 2022
Researchers reveal Kubernetes security holes, prevention
Researchers with Palo Alto Networks took the stage at Black Hat to explain how configurations and system privileges in Kubernetes clusters can allow container escape and takeover.
Thu Aug 11, 2022
Sigstore co-creator talks GitHub, Kubernetes and next steps
Dan Lorenc reflects on a whirlwind year for his open source project, now officially incorporated into Kubernetes and GitHub's npm registry, and his plans for the year to come.
Thu Aug 11, 2022
GridGain, Apache Ignite founder talks in-memory databases
Nikita Ivanov details the origin of his company and discusses the growing need organizations have for real-time database processing capabilities to complete modern transactions.
Fri Aug 12, 2022
Rapid7: Cisco ASA and ASDM flaws went unpatched for months
While several of the vulnerabilities were reported to Cisco in February, they remained unpatched until Thursday when Rapid7's Jake Baines discussed the flaws at Black Hat USA 2022.
Fri Aug 12, 2022
How critical infrastructure operators can secure OT data
Cohesity’s CISO discusses the challenges of securing data in operational technology systems and what can be done to mitigate security threats
Fri Aug 12, 2022
Online Safety Bill ‘not fit for purpose’, say tech experts
IT specialists lack confidence that legislation compelling tech firms to tackle online harms will work as intended, with only a small minority believing ‘harmful but legal’ content can be effectively and proportionately policed by internet platforms
Fri Aug 12, 2022
SMEs overwhelmed by distraction of comms technology, networking platforms
Study from collaboration workspace and targeted networking platform provider reveals small and medium-sized enterprises are becoming overwhelmed by the noise and distraction of social media channels
Fri Aug 12, 2022
Microsoft doles out $13.7m in bug bounties
Microsoft’s Bug Bounty programme has paid a total of $13.7m to more than 300 researchers in almost 50 countries
Fri Aug 12, 2022
Met Police ramps up facial recognition despite ongoing concerns
The Metropolitan Police is taking an “irresponsible” approach to deploying live facial-recognition technology, say experts. We talk to civil society groups, lawyers and politicians about the controversial programme
Fri Aug 12, 2022
UK Amazon workers stage series of wildcat strikes over pay offers
Amazon warehouse workers across the UK have organised a series of spontaneous strike actions after the e-commerce giant’s management offered them pay rises between 35p and 50p
Fri Aug 12, 2022
CityFibre begins £30m full-fibre build out in Rochdale
UK’s third largest infrastructure provider continues with its cross-UK gigabit fibre rollout in Lancashire town to benefit residents, businesses and services
Fri Aug 12, 2022
Department of Health investigates bias in medical devices and algorithms
The government has launched a review to look at the problem of discrimination in medical devices and decision-making software
Fri Aug 12, 2022
Cyber criminal forum targets only Russia
The Digital Shadows Photon Research Team has been investigating a pro-Ukraine cyber criminal forum called Dumps, which appears to be one of a kind
Fri Aug 12, 2022
Cobbling together a recruiting software empire
Employ Inc. was created earlier this year to lead a growing portfolio of recruiting software companies that aim to sell to any customers, no matter the size.
Fri Aug 12, 2022
Free tool from Collibra tests data maturity against peers
The assessment tool is free to anyone and is designed to help organizations better understand the evolution of their data and analytics systems relative to others.
Fri Aug 12, 2022
Third-party cookies remain as Google advertising in DOJ's sights
If Google gets sued by U.S. antitrust authorities on the grounds its advertising network is a monopoly, marketers need to plan for how it may affect their operations.
Fri Aug 12, 2022
Kubernetes training, tech can tackle orchestration pain
DevOps can force developers to work outside their comfort zone and create frustration, but the right Kubernetes training and tools can ease the burden.
Fri Aug 12, 2022
Eclypsium calls out Microsoft over bootloader security woes
At DEF CON 30, Eclypsium researchers detailed three new vulnerabilities in third-party Windows bootloaders that were signed with Microsoft's UEFI certificates.