New Kaspersky Security for Virtualization has achieved VMware® Ready™ for Networking and Security status and is now certified for use with VMware NSX. Kaspersky Lab has released a new version of its virtualisation security solution, Kaspersky Security for Virtualization Agentless. Designed to provide protection within software-defined data centers built on VMware vSphere® and VMware NSX®, the solution now delivers advanced security capabilities for each virtual machine and virtual network with nearly no impact on the virtualised platform’s resources.. By leveraging VMware NSX and the new Kaspersky Security for Virtualization Agentless solution, customers are able to find the right balance of…
ISBuzz Team
Research has found an unpatched injection vulnearbiltity that could allow hackers to take over enterprise networking products from Ubiquiti networks. IT security experts from FireMon and Tenable Network Security commented below. Paul Calatayud, CTO at FireMon: “Most organisations are not affected by this due to the fact that this vendor is not usually associated as an enterprise system. That’s said, it’s a solid product known for being strong, in fact this is a product I have used in my past for home internet. Since these types of devices are often the first line of defense, most organisations can only protect or mitigate this…
New research highlights privacy concerns as FBI and CIA come under increasing pressure for crackdown on data encryption London. Over 50% of UK and US citizens feel that online data privacy is less secure since President Trump was elected according to new research from Artmotion, the Swiss-based data centre provider. These findings come following FBI Director James Comey’s declaration last week that “there is no such thing as absolute privacy in America”. With the CIA also under pressure following the latest revelations regarding its efforts to circumvent online encryption methods, this new research suggests that citizens are rapidly, and perhaps rightly,…
The Dutch voting aid website Kieskompas appeared to be the victim of a DDoS attack yesterday as hackers attempted to take the website offline. The Stemwijzer website was also experiencing problems due to DDOS attacks. Meanwhile, tweets with the hashtag #Naziholland were spread by hundreds of Twitter accounts on Wednesday, including those of the European parliament and singer Caro Emerald. Stephen Gates, Chief Research Intelligence Analyst at NSFOCUS IB commented below. Stephen Gates, Chief Research Intelligence Analyst at NSFOCUS IB: “From notoriety, extortion, and protest to business advantage and nation-state hacking, it appears a new motivation for DDoS attacks has surfaced. Using DDoS as…
Following the news about Yahoo Cyber Indictment Jeremiah Grossman, Chief of Security Strategy at SentinelOne commented below. Jeremiah Grossman, Chief of Security Strategy at SentinelOne: “As I look at the way this story is unfolding, there are strong parallels between this and the Google Aurora attacks in 2010. Nation-state sparring continues playing out on private systems like Yahoo’s because they can provide a valuable source of intelligence on your opponent’s or other people of interest. Also, if you are a nation-state and want to determine if any of your spies have been burned, you put taps on Google, Yahoo, Microsoft etc — not…
Users are encouraged to install the latest security updates or block the flawed module manually to safeguard enterprise and home use of the OS London (UK). Positive Technologies expert, Alexander Popov, has found and fixed a vulnerability (CVE-2017-2636) in the Linux kernel that allowed local users to gain privilege escalation or cause a denial of service. This issue affects the majority of popular Linux distributions including RHEL 6/7, Fedora, SUSE, Debian, and Ubuntu. The researcher found a race condition in the n_hdlc driver that leads to double-freeing of kernel memory, which can be exploited for privilege escalation in the operating system. The bug was evaluated as dangerous with…
New research finds worrisome security issues for anyone who uses the Uber app. Late last year, Uber launched a major update to its app. One surprising new feature: the ability to track users even when they’re not using the app. Uber claims that the feature is essential to providing a better ride-sharing experience. Maybe so. But excessive location tracking and data sharing potentially comes with a number of unwanted accompaniments, like spear phishing and watering hole attacks and physical security exposure. In fact, the latest research from Appthority shows that Uber’s new third-party ecosystem enables information sharing with hundreds of…
Emma Watson, the actress, is taking legal action after private photographs of her were stolen in a suspected hacking attack. IT security experts from ESET, AlienVault and Comparitech.com commented below. Mark James, Security Specialist at ESET: “The news is quite sketchy currently regarding this new batch of leaked material. These photos could have come from anywhere – it may be a direct hack against one of the many cloud storage services we subscribe and upload to or it may simply be another case of password re-use obtained from the sheer volume of our private data being leaked, stolen and posted online. Many of…
Political tensions between Turkey and the Netherlands spilled over onto Twitter earlier today as a number of high-profile accounts were hacked, apparently through the third-party app Twitter Counter. IT security experts from Proofpoint, Positive Technologies , NuData Security, DomainTools, Tripwire, AlienVault and ESET commented below. Dan Nadir, Vice President Digital Risk Products at Proofpoint: “Today’s widespread Twitter compromises shine a light on the complexity of securing third-party apps attached to corporate and personal social media accounts. For example, not only do busy media accounts have multiple dozens of admins on both Twitter accounts and Facebook pages, they also connect and authorize multiple…
Following the news that security experts have discovered a vulnerability in WhatsApp that could have allowed hackers to take over “hundreds of millions” of users’ accounts and access everything in them, IT security experts from Positive Technologies, Lastline, ESET, AlienVault and Imperva commented below on how users can avoid vulnerabilities like this affecting them and WhatsApp’s approach to fixing this issue. Alex Mathews, Lead Security Evangelist at Positive Technologies: “One billion people now use Whatsapp and 100m Telegram. Given the fact such services are deeply ingrained in a massive portion of the world’s daily lives, they are going to be an emerging target for attacks of all kinds. When you…
