TechTarget News
News from TechTarget's global network of independent journalists. Stay current with the latest news stories. Browse thousands of articles covering hundreds of focused tech and business topics available on TechTarget's platform.Latest News
-
08 May 2024
Experts highlight progress, challenges for election security
By Alexander CulafiInfosec professionals at RSA Conference 2024 discussed digital and physical security challenges for election cycles across the globe in a post-COVID landscape.
-
08 May 2024
Databricks adds vector search, new LLM support to AI suite
By Eric AvidonThe data lakehouse pioneer is targeting model accuracy with the GA of vector search capabilities that help customers find the data needed to train advanced analytics applications.
-
08 May 2024
Panasas embraces software-defined storage, rebrands as Vdura
By Adam ArmstrongPanasas is now Vdura, a software-defined storage company that aims to make its cluster parallel file system work on a swath of storage media on premises and in the cloud.
- Latest news from around the world
Security News from the past 365 days
-
21 Jun 2023
Critical VMware Aria Operations bug under active exploitation
By Alexander CulafiReports of exploitation for a critical command injection flaw in VMware Aria Operations for Networks came roughly a week after a researcher published a proof-of-concept for it.
-
21 Jun 2023
Nearly quarter of a million malicious websites reported and removed through NCSC service
By Karl FlindersA suspicious email and text message reporting service in the UK has directly led to a quarter of a million malicious websites being removed
-
21 Jun 2023
The security interviews: Exploiting AI for good and for bad
By Cliff SaranThe chief product officer of AI security firm Darktrace explains how large language AI models are making it harder for people to spot email attacks
-
21 Jun 2023
May ransomware activity rises behind 8base, LockBit gangs
By Arielle WaldmanLockBit was the most active group last month, but NCC Group researchers were surprised by 8base, which started listing victims from attacks that occurred beginning in April 2022.
-
20 Jun 2023
Attackers discovering exposed cloud assets within minutes
By Alexander CulafiCloud security vendor Orca Security used honeypots to learn more about how threat actors compromise cloud resources such as misconfigured AWS S3 buckets and GitHub repositories.
-
20 Jun 2023
Oracle opens first EU-based sovereign cloud regions in Germany and Spain
By Caroline DonnellyDatabase software giant is making good on its July 2022 pledge to open a series of sovereign cloud regions to cater to the data protection needs of EU-based enterprises
-
20 Jun 2023
Exclusive Networks continues to add depth to its on-demand platform X-OD
By Simon QuickeExclusive Networks looks to increase the on-demand options available through its as a service proposition X-OD
-
19 Jun 2023
Microsoft: DDoS attacks caused M365, Azure disruptions
By Arielle WaldmanMicrosoft confirmed widespread service disruptions earlier this month were caused by layer 7 DDoS attacks by a threat group it identified as Storm-1359.
-
19 Jun 2023
Supreme Court sidesteps Section 230 -- for now
By Makenzie HollandAlthough the Supreme Court's recent decisions in cases against Twitter and Google avoided ruling on Section 230, the issue will likely be in front of the justices again soon.
-
19 Jun 2023
Prime minister Rishi Sunak faces pressure from banks to force tech firms to pay for online fraud
By Karl FlindersThe UK’s major banks have told the prime minister to force tech firms to do more to prevent fraud that the banks end up paying for
-
19 Jun 2023
How Fastly thinks differently about CDNs and the edge
By Aaron TanFastly is counting on its developer chops and different approaches towards security and other areas to compete with its rivals
-
19 Jun 2023
Early June Microsoft outages were result of large-scale DDoS hit
By Alex ScroxtonInvestigations into recent outages on Microsoft Azure and Outlook services have turned up evidence of a massive distributed denial-of-service attack
-
19 Jun 2023
Nakivo adds ransomware scanning and new restore options
By Antony AdsheadBackup maker adds malware scanning with big names in security to immutable backup copy functionality. “Tape’s not dead” either, with restore from the venerable medium now possible
-
19 Jun 2023
UK to contribute up to £25m to Ukraine cyber defences
By Alex ScroxtonPrime minister Rishi Sunak announces an expansion to the Ukraine Cyber Programme, with a cash boost of up to £25m over the next two years
-
16 Jun 2023
U.S. government agencies breached via MoveIt Transfer flaw
By Alexander CulafiCISA Director Jen Easterly said 'several' U.S. agencies suffered intrusions via their MoveIt Transfer instances, but have not seen significant effects from the attacks.
-
16 Jun 2023
Core to Cloud signals shift to MSP approach
By Simon QuickeSecurity player cuts the ribbon on its first services, makes a major hire to support the moves and indicates more plans are in the pipeline
-
15 Jun 2023
Server prices drop while cloud costs rise in PPI data
By John MooreThe U.S. government's latest inflation reading shows moderating hardware prices, which spiked in mid-2022. Cloud costs, however, have been moving in the opposite direction.
-
15 Jun 2023
Chinese nation-state actor behind Barracuda ESG attacks
By Arielle WaldmanMandiant said the zero-day attacks on Barracuda Email Security Gateway appliances were part of a 'wide-ranging campaign in support of the People's Republic of China.'
-
15 Jun 2023
CISA SBOM standards efforts stymied by confusion, inertia
By Beth PariseauEfforts to establish SBOM standards and guidance have progressed, but unanswered questions persist -- including how the federal government plans to enforce its own requirements.
-
15 Jun 2023
Exploitation of Barracuda ESG appliances linked to Chinese spies
By Alex ScroxtonIntelligence from Mandiant links exploitation of a flaw in a subset of Barracuda ESG appliances to a previously untracked China-nexus threat actor
-
15 Jun 2023
NCSC warns over ‘enduring’ LockBit threat
By Alex ScroxtonAlthough its activity volumes have been lower of late, LockBit is still a highly dangerous ransomware gang and is now the subject of a new international cyber advisory
-
15 Jun 2023
Clop begins naming alleged MOVEit victims
By Alex ScroxtonClop uploaded details of 12 new victims to its dark web leak site late on 14 June, many of them likely linked to the ongoing MOVEit cyber attack
-
14 Jun 2023
State governments among victims of MoveIT Transfer breach
By Alexander CulafiThe Clop ransomware gang, which claimed responsibility for multiple data breaches tied to the MoveIT Transfer flaw, said it would delete data stolen from government agencies.
-
14 Jun 2023
Global cooperation on tech standards is falling apart
By Makenzie HollandIncreasing cooperation between the U.S. and EU on global tech standards will enable rather than hurt competition with China, experts argue.
-
14 Jun 2023
Ransomware-stricken Capita to run Action Fraud successor
By Alex ScroxtonA £50m deal to replace the Action Fraud service has been handed to PwC and Capita, which is facing investigations over its handling of customer data in a ransomware incident
-
14 Jun 2023
HashiCorp Vault trims SaaS; Boundary hooks up Enterprise
By Beth PariseauHashiCorp Vault's appeal to a broader field of users gets a boost from a new entry-level cloud service, while a new Boundary Enterprise targets the high end of the market.
-
14 Jun 2023
QBS expanding portfolio and geographical reach
By Simon QuickeDistributor has had a busy few days with fresh vendor signing and taking a stake in a Turkish business
-
14 Jun 2023
No zero-days for June Patch Tuesday, but plenty to chew over
By Alex ScroxtonOn the face of it, Microsoft’s monthly round of updates is a lighter-than-usual load for security teams, with no zero-days in evidence, but there are still plenty of issues needing attention
-
14 Jun 2023
TSB calls on Meta to intervene and protect users from fraud losses of £250m this year
By Karl FlindersTSB is the latest bank to demand more action from social media sector in helping to reduce online fraud
-
14 Jun 2023
Clop’s MOVEit ransom deadline expires
By Alex ScroxtonA seven-day deadline set by Clop for victims of its latest attack to contact it to arrange payment passes today
-
14 Jun 2023
Cyber attacks against APAC commerce sector surpass 1.1 billion
By Aaron TanRetailers, hotels and travel-related organisations in the region saw over a billion cyber attacks last year amid the surge in e-commerce activity and online travel bookings
-
14 Jun 2023
June Patch Tuesday settles two Exchange Server bugs
By Tom WalatMicrosoft's plans for upcoming security hardening in Kerberos and Netlogon protocols will have admins busy with testing over the next several weeks.
-
13 Jun 2023
AWS launches EC2 Instance Connect Endpoint, Verified Permissions
By Rob WrightAt re:Inforce 2023, AWS launched a new service that allows customers to connect to their EC2 instances through SSH and RDP connections, removing the need for a public IP address.
-
13 Jun 2023
AWS shuffles DevSecOps deck with CodeGuru Security SAST
By Beth PariseauA new DevSecOps service links AWS security code scanning to third-party pipeline tools, potentially a shot at GitHub Copilot that increases overlap with AWS SAST partners.
-
13 Jun 2023
Fortinet warns critical VPN vulnerability 'may' be under attack
By Arielle WaldmanFortinet said the heap buffer overflow flaw might have been exploited already and warned that Chinese nation-state threat group Volt Typhoon would likely attack the vulnerability.
-
13 Jun 2023
Mandiant: New VMware ESXi zero-day used by Chinese APT
By Alexander CulafiVMware said the ESXi flaw was 'low severity' despite being under active exploitation because it requires the attacker to already have gained root access on the target's system.
-
13 Jun 2023
Arnold Clark data leak victims prepare legal action
By Alex ScroxtonMore than 10,000 people who had their data stolen and leaked in a ransomware attack on the Arnold Clark car dealer network have signed up to a group legal action after facing elevated amounts of fraud
-
13 Jun 2023
Salesforce moves forward with secure, private generative AI
By Mary ReinesWith its new AI Cloud and built-in Einstein GPT Trust Layer, The CRM and CX vendor is investing in generative AI technology and adding data security and privacy features.
-
13 Jun 2023
(ISC)² and CIISec set out to make cyber language more inclusive
By Alex ScroxtonNewly published guide on appropriate use of language in cyber security aims to help make the profession more inclusive for all
-
12 Jun 2023
MoveIT Transfer attacks highlight SQL injection risks
By Arielle WaldmanSecurity vendors say SQL injection flaws, like the zero-day vulnerability recently disclosed by Progress Software, can be challenging for companies to identify and resolve.
-
12 Jun 2023
Ofcom data stolen in MOVEit cyber attack
By Alex ScroxtonCommunications regulator Ofcom says data on employees and regulated communications companies was stolen by the Clop gang
-
12 Jun 2023
Veeam execs examine backup and security blend, other trends
By Paul CrocettiVeeam leaders break down how cybersecurity issues have changed the data protection conversation. The discussion also details future plans, such as in SaaS backup and potential IPO.
-
12 Jun 2023
Progress Software releases patch for second MOVEit Transfer vulnerability
By Alex ScroxtonProgress Software releases a patch for a second MOVEit Transfer issue, which was uncovered by third-party security specialist Huntress Security during post-incident code scanning
-
09 Jun 2023
Extreme Networks emerges as victim of Clop MOVEit attack
By Alex ScroxtonNetwork equipment and services supplier Extreme Networks has revealed its instance of Progress Software’s MOVEit tool was compromised in the ongoing Clop cyber attack
-
09 Jun 2023
Barracuda ESG users told to throw away their hardware
By Alex ScroxtonOwners of Barracuda Email Security Gateway appliances are being told that they will need to throw out and replace their kit after it emerged that a patch for a recently disclosed vulnerability had not done the job
-
09 Jun 2023
UK and US move closer to transatlantic data bridge deal
By Alex ScroxtonThe British and American governments have committed, in principle, to a new data bridge agreement that will ease the free flow of personal data across the Atlantic
-
09 Jun 2023
University of Manchester hit by cyber attack
By Alex ScroxtonThe University of Manchester has been hit by a cyber attack of an undisclosed nature
-
08 Jun 2023
Cisco generative AI heads to Security Cloud, Webex
By Antone GonsalvesCisco plans to release generative AI features in the Webex platform and Security Cloud this year. Together, the products tighten security for remote workers.
-
08 Jun 2023
Barracuda: Replace vulnerable ESG devices 'immediately'
By Arielle WaldmanCustomers with email security gateway appliances affected by a recent zero-day flaw, CVE-2023-2868, are being urged to replace devices, even if the hardware has been patched.
-
08 Jun 2023
CDEI publishes portfolio of AI assurance techniques
By Sebastian Klovig SkeltonThe UK’s Centre for Data Ethics and Innovation has published a variety of case studies to show how different assurance techniques can build and maintain trust in artificial intelligence systems
-
08 Jun 2023
Dell UK boss talks of channel benefits
By Simon QuickeThe recently appointed senior vice-president and general manager of Dell Technologies UK shares an update and discusses the major themes in the market
-
08 Jun 2023
MoveIt Transfer flaw leads to wave of data breach disclosures
By Alexander CulafiOrganizations that have confirmed a data breach tied to the critical MoveIt flaw disclosed in May include the government of Nova Scotia, the BBC and HR software firm Zellis.
-
08 Jun 2023
Sysdig CNAPP runtime threat detection wins over BigCommerce
By Beth PariseauSysdig's fast, comprehensive data collection, now part of a larger CNAPP product, sealed the deal with the e-commerce company. Next, it might replace vulnerability management tools.
-
08 Jun 2023
Vulnerability exploitation volumes up over 50% in 2022
By Alex ScroxtonData from Palo Alto Networks’ Unit 42 threat intel specialists reveals insight into the scale of vulnerability exploitation in the wild
-
08 Jun 2023
UK gets new rules to regulate crypto sector
By Alex ScroxtonThe Financial Conduct Authority is introducing new rules to regulate the cryptoasset sector, after being handed a government remit to oversee crypto promotions
-
08 Jun 2023
Clop may have been sitting on MOVEit vulnerability for two years
By Alex ScroxtonThe Clop cyber extortion gang may have been keeping the MOVEit SQL injection vulnerability they used to penetrate the systems of multiple victims secret for two years
-
08 Jun 2023
Bishop Fox’s Vinnie Liu talks offensive security skills
By Peter Ray AllisonThere is growing demand for offensive security testing, but it needs a multi-layered skillset that can be hard to quantify. Bishop Fox’s CEO and co-founder explains why and some potential mitigation strategies
-
07 Jun 2023
UKtech50 2023 winner: Michelle Donelan/Chloe Smith, secretary of state, DSIT
By Lis EvenstadComputer Weekly looks at the achievements and successes of the Department for Science, Innovation and Technology, as its secretary of state is recognised as the most influential person in UK technology for 2023
-
07 Jun 2023
U.S.-China relations hinge on shifting reactionary mindset
By Makenzie HollandRep. Andy Kim said the U.S. needs to become more proactive in its relationship with China amid growing tensions between the two countries.
-
07 Jun 2023
What generative AI's rise means for the cybersecurity industry
By Alexander CulafiChatGPT's moment in cybersecurity is significant for both technological and marketing reasons. Security analysts and experts have their own reasons why.
-
07 Jun 2023
Abacus looks for growth while Imperva increases MSSP support
By Simon QuickeManaged security service provider Abacus hires CFO to drive growth, as elsewhere in the market Imperva enhances partner programme
-
07 Jun 2023
Clop cyber gang claims MOVEit attack and starts harassing victims
By Alex ScroxtonThe Clop cyber extortion and ransomware operation is demanding organisations pay a ransom to avoid data stolen via an exploited vulnerability in a file transfer product being leaked
-
07 Jun 2023
Payments regulator makes APP fraud reimbursement mandatory
By Karl FlindersUK payments regulator confirms changes to rules around repaying customers who lose money to authorised push payment fraudsters
-
06 Jun 2023
Google launches hacker-backed SME security training scheme
By Alex ScroxtonCiting research that shows almost half of SMEs are struggling to recruit cyber security specialists, Google is launching a programme designed to upskill more people to fill thousands of vacant roles
-
06 Jun 2023
Free Atlassian Jira DevSecOps tab opens doors to expansion
By Beth PariseauVulnerability management data from Atlassian partners surfaces in a new Security in Jira tab for cloud customers, setting the stage for a potential DevSecOps expansion.
-
06 Jun 2023
Ransomware takes down multiple municipalities in May
By Arielle WaldmanCity and local governments experienced severe disruptions to public services due to ransomware attacks in May, particularly from the Royal ransomware group.
-
06 Jun 2023
Victims of MOVEit SQL injection zero-day mount up
By Alex ScroxtonThe BBC, Boots, and British Airways are among the victims of cyber incidents arising from a recently disclosed vulnerability in the MOVEit file transfer, exploitation of which is spreading fast
-
06 Jun 2023
Wib continues channel momentum with Kite signing
By Simon QuickeSecurity player lands first UK&I distribution partner as it looks to increase its channel reach
-
06 Jun 2023
Cyber spotlight falls on boardroom ‘privilege’ as incidents soar
Three quarters of data breaches now involve a significant human element, and the higher up they get in an organisation, the more risks people seem to take, according to Verizon’s annual Data Breach Investigations Report
-
06 Jun 2023
Verizon 2023 DBIR: Ransomware remains steady but complicated
By Alexander CulafiChris Novak, managing director of cybersecurity consulting at Verizon Business, said 2023 was a "retooling year" for ransomware threat actors adapted to improved defenses.
-
05 Jun 2023
Atlassian cloud preps threat tool as security boss departs
By Beth PariseauAtlassian Beacon shores up cloud security as it adds transparency around security issues, but the chief trust officer role at the company is also changing hands.
-
05 Jun 2023
Experts doubt U.S. retaliation following China's Micron ban
By Makenzie HollandThe Biden administration likely won't retaliate for China's Micron Technology ban but will continue to play the long game garnering independence from China in semiconductor chips.
-
05 Jun 2023
Ransomware actors exploiting MoveIt Transfer vulnerability
By Rob WrightMicrosoft said the recently disclosed zero-day flaw in Progress Software's managed file transfer product is being exploited by threat actors connected to the Clop ransomware gang.
-
05 Jun 2023
Bank of International Settlement sets up channel secure from quantum breach
By Karl FlindersThe Bank of International Settlement has worked with two of Europe's central banks to explore preventing the security risks posed by quantum computers
-
01 Jun 2023
A look at 'risk of extinction from AI' statement
By Esther AjaoThe statement equates the potential risk of human eradication from AI to that of nuclear war. However, some argue society should instead mitigate the existing risk of AI bias.
-
01 Jun 2023
Zyxel vulnerability under 'widespread exploitation'
By Alexis ZacharakosResearchers warn that threat actors are widely exploiting an unauthenticated command injection vulnerability to target multiple Zyxel network devices.
-
01 Jun 2023
Zero-day vulnerability in MoveIt Transfer under attack
By Rob WrightRapid7 observed exploitation of a SQL injection vulnerability in Progress Software's managed file transfer product, which was disclosed this week but has not been patched.
-
01 Jun 2023
Met Police director of intelligence defends facial recognition
By Sebastian Klovig SkeltonThe Met Police’s director of intelligence has appeared before MPs to make the case for its continuing use of facial-recognition technology, following announcements from the force and the Home Office that they intend to press on with its adoption
-
01 Jun 2023
Mitiga warns free Google Drive license lacks logging visibility
By Arielle WaldmanThe ability to view logs is critical for enterprises to detect and attribute malicious activity. Mitiga said the Google Drive issue allows data exfiltration without a trace.
-
01 Jun 2023
HSBC explores quantum computing for finance sector
By Karl FlindersUK banking giant works with quantum computing specialist to explore the technology’s potential in the finance sector
-
31 May 2023
Barracuda zero-day bug exploited months prior to discovery
By Alexander CulafiBarracuda said a zero-day flaw used to target its email security gateway appliance customers is a remote command injection vulnerability exploited since at least October 2022.
-
31 May 2023
Lloyds Bank calls on tech companies to control social media ‘wild west’
By Karl FlindersLloyds Banking Group is calling on tech giants to step forward in the fight against online fraud, which emanates in the social media ‘wild west’
-
31 May 2023
Many Gigabyte PC models affected by major supply chain issue
By Alexander CulafiEclypsium researchers say the insecure implementation of PC hardware manufacturer Gigabyte's App Center could potentially result in supply chain attacks.
-
30 May 2023
Downstream breaches of Capita customers spreading
By Alex ScroxtonAs many as 90 organisations that used Capita services have now reported data breaches arising from various security incidents at the outsourcer
-
26 May 2023
Cisco joins growing Manchester cyber security hub
By Alex ScroxtonNetworking kingpin signs up to Greater Manchester Digital Security Hub to support centre’s work on security resilience and skills
-
26 May 2023
Bumbling IT security analyst convicted of blackmail offences
By Alex ScroxtonA Hertfordshire man has been convicted of blackmail and other offences after piggybacking on an in-progress ransomware attack to try to defraud his employer, but failing to cover his tracks in any meaningful way
-
25 May 2023
Chinese hackers targeting U.S. critical infrastructure
By Arielle WaldmanMicrosoft uncovered a Chinese nation-state threat group that is compromising Fortinet FortiGuard devices to gain access to critical infrastructure entities in the U.S. and Guam.
-
25 May 2023
Users dish on ransomware protection, recovery at VeeamON
By Paul CrocettiTo help protect against and recover from ransomware attacks, IT professionals at VeeamON 2023 recommended planning, testing and other key security measures.
-
25 May 2023
Cabinet Office publishes response to data sharing for digital ID consultation
By Lis EvenstadThe majority of respondents to government’s consultation on data sharing for digital identity are critical to the plans and concerned about data privacy, but Whitehall’s response says many of the responses ‘were driven by anti-digital commentaries’
-
25 May 2023
Alert over Chinese cyber campaign targeting critical networks
By Alex ScroxtonA Chinese threat actor known as Volt Typhoon has been observed infiltrating CNI networks in a cyber espionage campaign, according to intelligence
-
24 May 2023
Updated 'StopRansomware Guide' warns of shifting tactics
By Arielle WaldmanCISA's updates to the 'StopRansomware Guide' address shifts in the threat landscape as more threat actors skip the encryption step and focus on data theft and extortion.
-
24 May 2023
Barracuda discloses zero-day flaw affecting ESG appliances
By Alexander CulafiBarracuda Networks said threat actors exploited the zero-day to gain 'unauthorized access to a subset of email gateway appliances,' though it did not say how many.
-
24 May 2023
Westcon-Comstor underlines benefits of security and networking focus
By Simon QuickeDistributor shares financial results that show the benefits of operating in resilient areas that are continuing to grow
-
24 May 2023
Almost all ransomware attacks target backups, says Veeam
By Antony AdsheadSome 93% of ransomware attacks go for backups and most succeed, with 60% of those attacked paying the ransom, according to a Veeam survey
-
24 May 2023
Kuwait bank introduces biometric payments card
By Karl FlindersMiddle East bank launches payment cards with fingerprint sensor technology embedded
-
24 May 2023
Two-thirds of all 2022 breaches resulted from spear phishing
By Sebastian Klovig SkeltonResearch by Barracuda Networks has found that, despite the low volume of spear-phishing attempts, the attacks are highly successful and have major consequences
-
23 May 2023
Veeam ransomware protection highlighted in Kasten, detection
By Paul CrocettiVeeam unveiled security updates to its Kubernetes backup product at VeeamON. In addition, IDrive released an object storage appliance for users of Veeam and other backup vendors.
-
23 May 2023
Meta fine highlights EU, US data sharing challenges
By Makenzie HollandUntil the new EU-U.S. Data Privacy Framework is established, Meta's $1.2 billion euro fine should serve as a warning to U.S. businesses handling EU personal data.
-
23 May 2023
Threat actors leverage kernel drivers in new attacks
By Alexander CulafiFortinet detailed a campaign using a malicious driver in attacks against organizations in the Middle East, and Trend Micro detailed a driver-based attack by BlackCat ransomware.
-
23 May 2023
Cohesity Turing aims AI tools at backup and ransomware
By Antony AdsheadBackup supplier continues to enrich its ecosystem with more artificial intelligence for backup and ransomware, with chat-like reporting functions and new security partners in its alliance