Is Your AWS Data Secure and Compliant? Cloud Database Visibility in Minutes

Internal and external attackers are after your data. Regardless of where the data resides, cloud, or on-premises, you need to protect it. In some cases that data needs to be put under compliance controls. Data protection principles hold for data hosted in the cloud database as a service DBaaS. Fo...

ImageMagick: memory leak in ReadPCDImage function in coders/pcd.c

A memory leak vulnerability has been discovered in ImageMagick in the ReadPCDImage function of coders/pcd.c file. An attacker could use this flaw to cause a denial of service via a crafted file...

Security Advisory - Double Free Memory Vulnerability in Huawei Products

Products Switches Routers WLAN Storage See All Solutions Cloud Data Center Enterprise Networking Intelligent Computing Solutions by Industry See All Services Training and Certification Industry Cloud Enablement Service Improvement Service Customer Support Service See All Partner Find a Partner...

Security Advisory - Input Validation Vulnerability in Huawei Products

Products Switches Routers WLAN Storage See All Solutions Cloud Data Center Enterprise Networking Intelligent Computing Solutions by Industry See All Services Training and Certification Industry Cloud Enablement Service Improvement Service Customer Support Service See All Partner Find a Partner...

110 Nursing Homes Cut Off from Health Records in Ransomware Attack

A ransomware outbreak has besieged a Wisconsin based IT company that provides cloud data hosting, security and access management to more than 100 nursing homes across the United States. The ongoing attack is preventing these care centers from accessing crucial patient medical records, and the IT...

5 Places Where Hackers Are Stealthily Stealing Your Data In 2019

Skyrocketing data breaches bring incalculable losses to organizations and can cost cybersecurity executives their jobs. Here we examine the top five places in 2019 where cybercriminals are stealing corporate and government data without ever getting noticed and then learn how to avoid falling vict...

Security Advisory - Improper Authentication Vulnerability in Some Huawei CloudEngine Products

Products Switches Routers WLAN Storage See All Solutions Cloud Data Center Enterprise Networking Intelligent Computing Solutions by Industry See All Services Training and Certification Industry Cloud Enablement Service Improvement Service Customer Support Service See All Partner Find a Partner...

TGI Fridays Delivers Customer Indigestion Over Data Exposure

Customers of TGI Fridays Australia were “strongly recommended” to change their MyFridays membership rewards program passwords. According to an email sent to customers this week, the company had inadvertently left sensitive loyalty program data exposed on the internet. News of the leaky server...

Logic flaw vulnerability in cms system of Wave Group Ltd.

i.e. Wave Group, which owns four listed companies, namely Wave Information, Wave Software, Wave International and Huaguang Optoelectronics, with business covering four industry clusters, namely cloud data center, cloud service big data, smart city and smart enterprise, provides IT products and...

Casino Goes All In and Wins Big with Imperva Security

There’s no good time to be hit by ransom-seeking DDoS attackers. For one casino-entertainment provider, the timing was particularly bad — right before one of its largest online poker events in 2016. The casino, which generates multiple billions in revenue per year, leveraged Imperva’s emergency...

How Our Threat Analytics Multi-Region Data Lake on AWS Stores More, Slashes Costs

Data is the lifeblood of digital businesses, and a key competitive advantage. The question is: how can you store your data cost-efficiently, access it quickly, while abiding by privacy laws? At Imperva, we wanted to store our data for long-term access. Databases would’ve cost too much in disk and...

Learn How XDR Can Take Breach Protection Beyond Endpoint Security

How do you know whether an attacker has infiltrated your network? Can you really rely on an Endpoint Detection and Response EDR solution to be your go-to technology for identifying security breaches? Endpoint detection and response EDR platform has been an important technology to detect...

Universal Password Login Vulnerability in the User Management Platform of Beijing Yiwei Cloud Data Technology Co.

Beijing Yiwei Cloud Data Technology Co., Ltd. is an innovative enterprise focusing on providing Internet basic data services and data operation for small and medium-sized enterprises. There is a universal password login vulnerability in the user management platform of Beijing Yiwei Cloud Data...

CVE-2018-1593

IBM Multi-Cloud Data Encryption MDE 2.1 could allow an unauthorized user to manipulate data due to missing file checksums. IBM X-Force ID: 143568...

CVE-2018-1593

IBM Multi-Cloud Data Encryption MDE 2.1 could allow an unauthorized user to manipulate data due to missing file checksums. IBM X-Force ID: 143568...

P = NP: Cloud data protection in vulnerable non-production environments

Data is the holy grail of your cloud workloads for attackers. Data breaches are the kind of breaches that make the news. With the recent European Union General Data Protection Regulations GDPR, they will make even bigger headlines. From an enterprise point of view, the most challenging aspect of...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is using components with Known Vulnerabilities

Summary Multi-Cloud Data Encryption MDE has addressed the following vulnerability: Using components with known vulnerabilities Vulnerability Details CVEID: CVE-2017-5637 DESCRIPTION: Apache Zookeeper is vulnerable to a denial of service, caused by the improper handling of the wchp command. By...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is affected by an Information Exposure vulnerability

Summary Multi-Cloud Data Encryption MDE has addressed the following information exposure vulnerability. Vulnerability Details CVEID: CVE-2018-1592 DESCRIPTION: PEN-TEST: Query Parameter in SSL Request CVSS Base Score: 6.5 CVSS Temporal Score: See Not Applicable for the current score CVSS...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is affected by a missing checksum vulnerability

Summary Security Bulletin: Multi-Cloud Data Encryption MDE has addressed a missing checksum vulnerability Vulnerability Details CVEID: CVE-2018-1593 DESCRIPTION: IBM Multi-Cloud Data Encryption MDE could allow an unauthorized user to manipulate data due to missing file checksums. CVSS Base Score:...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is affected by an application error.

Summary Security Bulletin: Multi-Cloud Data Encryption MDE has addressed the following application error vulnerability. Vulnerability Details CVEID: CVE-2018-1591 DESCRIPTION: IBM Multi-Cloud Data Encryption MDE generates an error message that includes sensitive information about its environment,...