Uber fined $1.1 million by UK and Dutch regulators over 2016 data breach

British and Dutch data protection regulators Tuesday hit the ride-sharing company Uber with a total fine of $1,170,892 1.1 million for failing to protect its customers' personal information during a 2016 cyber attack involving millions of users. Late last year, Uber unveiled that the company had...

U.S. Mid-term Elections and Akamai Enterprise Threat Protector

The last few years have witnessed seismic changes in the world's political landscape and the way elections have been conducted. As of yet, there's no conclusive evidence that the results and outcomes of a country's election process have been impacted by the cyber efforts of internal or foreign...

Small Business Benefits of Moving to the Cloud: Resource Friendly

Small businesses never seem to have enough people or funding, and the last thing they need is for their security solution to be eating up precious resources. Your people are stretched thin and don’t really have time or budget to source new hardware or push software updates. Not to mention the...

Small Business Benefits of Moving to the Cloud: Effective Security

When you’re selecting an endpoint security platform for your small business, you want it to work — and work well. However, less than one third of organizations believe that traditional AV has the power to stop the attacks that they are seeing.1 With fileless malware attacks and ransomware on the...

Small Business Benefits of Moving to the Cloud: Ease of Use

If you’re a security professional at a small business, odds are you’re looking for a solution that isn’t overly complicated and doesn’t require a huge amount of oversight. At Carbon Black, we understand that your security and IT Ops teams are understaffed and your budget is stretched thin...

What You Should Look For in a Next-Generation Security Solution

Today’s businesses face a unique set of challenges. They want security that works and is easy to implement and manage but, frequently, are working with a limited budget and resources. Many organizations know their current antivirus solution has gaps, but don’t know where to begin in the search fo...

Why Small Businesses Need Cloud-Based Endpoint Security

If you run security at a small business, you know that you aren’t immune from attacks. In fact, your intellectual property and data is often more at risk, as you are perceived to be an easier target than enterprise vendors. According to the Ponemon Institute, two thirds of SMBs have had at least...

Bring your own security (BYOS): good idea or not?

We've talked about the concept of Bring Your Own Device, or BYOD, on the blog before. BYOD is a popular policy whereby employees can bring personally-owned devices, such as laptops, tablets, or smartphones, to work and use them to access data and applications. It helps to cut costs and can increa...

Zero Trust Security Architectures - Identity Aware Proxy

By Faraz Siddiqui and Andrew Terranova This is Part 4 of a 5 part blog series. Jump to Part 1: Introduction Jump to Part 2: Network Micro-Segmentation Jump to Part 3: Software Defined Perimeter Jump to Part 5: Akamai's Approach to Zero Trust Introduction In the first part of this blog series, we...

Delivering security innovation that puts Microsoft’s experience to work for you

Cybersecurity is the central challenge of our digital age. Without it, everything from our personal email accounts and privacy to the way we do business, and all types of critical infrastructure, are under threat. As attackers evolve, staying ahead of these threats is getting harder. Microsoft ca...

DNS is a Unique (and Necessary) Security Control

Like many other security professionals, you have been reviewing your security stack, reading up on the latest security trends, and have perhaps recently attended Info-Sec, RSA, Black Hat or some other relevant conference. Along the way, you may have seen messaging for recursive DNS rDNS as a...

10 Endpoint Security Problems Solved by the Cloud – Managing Infrastructure

This week marks our final post in this series. Today we’re going to step away from last week’s topic, getting the help you need, and examine how the cloud eliminates the need to manage infrastructure. On-Prem is Complex and Costly On-premise solutions require a massive amount of resources and fun...

Protecting the protector: Hardening machine learning defenses against adversarial attacks

Harnessing the power of machine learning and artificial intelligence has enabled Windows Defender Advanced Threat Protection Windows Defender ATP next-generation protection to stop new malware attacks before they can get started often within milliseconds. These predictive technologies are central...

Oracle Hospitality Applications Hospitality Simphony Component Access Control Error Vulnerability

Oracle Hospitality Applications is a suite of business applications, servers, and storage solutions for hotel management from Oracle. Hospitality Simphony is one of the cloud-based hotel management components. An access control error vulnerability exists in the Oracle Hospitality Applications...

IBM WebSphere Cast Iron Information Disclosure Vulnerability

IBM WebSphere Cast Iron is a cloud-based software from IBM, USA. The software enables organizations to connect their hybrid public cloud, private cloud and on-premise application environments. A security vulnerability exists in IBM WebSphere Cast Iron. An attacker could exploit the vulnerability ...

Barracuda Cloud ESS 2.x - Multiple Cross Site Vulnerabilities

Document Title: =============== Barracuda Cloud ESS 2.x - Multiple Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=742 Barracuda Networks Security ID: BNSEC-671 Release Date: ============= 2018-07-23 Vulnerability Laboratory ID...

10 Endpoint Security Problems Solved by the Cloud – Slowing Down Endpoints

This week we will continue our investigation into the top 10 endpoint security problems the cloud solves. Our blog today moves on from the last dilemma we discussed, securing remote workers, and examines the issue of slowing down endpoints. Legacy AV Slows Down Endpoints Traditional AV is as...

Improper access control

Unauthenticated access to the cloud-based service maintained by TrackR Bravo is allowed for querying or sending GPS data for any Trackr device by using the tracker ID number which can be discovered as described in CVE-2016-6539. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been...

Cloud Security For The Healthcare Industry: A No-Brainer

The healthcare industry has become one of the likeliest to suffer cyber-attacks, and there’s little wonder why. Having the financial and personal information of scores of patients makes it a very appetizing target for attackers. Just over a year ago, the WannaCry ransomware attack wreaked havoc o...

Excerpts from Modern Bank Heists – Data Gathering

Carbon Black recently published a report on how to gather data to improve the security posture of your enterprise. For more information about how Cb Defense, Carbon Black's NGAV + EDR solution, helps enterprises address their endpoint security challenges, check out our weekly Cb Defense Live Demo...