A SaaS Security Challenge: Getting Permissions All in One Place https://firewall.firm.in/wp-content/uploads/2024/05/as.png Permissions in SaaS platforms like Salesforce, Workday, and Microsoft 365 are remarkably precise. They spell out exactly which users have access to which data sets. The terminology differs between apps, but each user’s base permission is determined by their role, while additional permissions may be granted based on tasks ...
Read More »Author Archives: firewallfirmadmin
Cisco unveils integrations with Splunk to bolster enterprise security – ET CISO
Cisco unveils integrations with Splunk to bolster enterprise security – ET CISO https://etimg.etb2bimg.com/thumb/msid-109938575,imgsize-78710,width-1200,height=765,overlay-etciso/corporate/cisco-unveils-integrations-with-splunk-to-bolster-enterprise-security.jpg Cisco is integrating the technology of Splunk with the Cisco Extended Detection & Response (XDR) service, among other initiatives, in a bid to bolster enterprise Security Operations Center (SOC). Cisco said its combination with Splunk “is the most comprehensive solution” for threat prevention, detection, investigation and response ...
Read More »Digiyatra CEO denies storing passenger data, IT Security News, ET CISO
Digiyatra CEO denies storing passenger data, IT Security News, ET CISO Digiyatra, the government-promoted app which aims to provide a paperless check-in at airports through facial recognition, has been hit by a controversy. One of its vendors, Dataevolve Solutions has been accused by Andhra Pradesh police of defrauding them of traffic e-challan payments. In fact, last year, the Enforcement Directorate ...
Read More »APT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud Data
APT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud Data https://firewall.firm.in/wp-content/uploads/2024/05/ad.png The Iranian state-backed hacking outfit called APT42 is making use of enhanced social engineering schemes to infiltrate target networks and cloud environments. Targets of the attack include Western and Middle Eastern NGOs, media organizations, academia, legal services and activists, Google Cloud subsidiary Mandiant said in a report ...
Read More »Dirty stream attack on Android phones – ET CISO
Dirty stream attack on Android phones – ET CISO https://etimg.etb2bimg.com/thumb/msid-109906514,imgsize-61812,width-1200,height=765,overlay-etciso/cybercrime-fraud/dirty-stream-attack-on-android-phones.jpg The “Dirty Stream” attack is a recent security vulnerability discovered by Microsoft that specifically targets Android smartphones. It exploits a flaw in the way apps share data with each other, potentially putting your device and information at risk. Here’s all you need to know: What it is: Imagine an app ...
Read More »Microsoft-OpenAI deal set to dodge formal EU merger probe, IT Security News, ET CISO
Microsoft-OpenAI deal set to dodge formal EU merger probe, IT Security News, ET CISO EU antitrust regulators have concluded that Microsoft’s $13 billion investment into OpenAI is not an acquisition, sources familiar with the matter said on Wednesday, signaling the deal will avoid a formal European probe that could have led to onerous remedies for the U.S. tech giant. EU ...
Read More »Russian Operator of BTC-e Crypto Exchange Pleads Guilty to Money Laundering
Russian Operator of BTC-e Crypto Exchange Pleads Guilty to Money Laundering https://firewall.firm.in/wp-content/uploads/2024/05/btc.png May 07, 2024NewsroomCryptocurrency / Cybercrime A Russian operator of a now-dismantled BTC-e cryptocurrency exchange has pleaded guilty to money laundering charges from 2011 to 2017. Alexander Vinnik, 44, was charged in January 2017 and taken into custody in Greece in July 2017. He was subsequently extradited to the ...
Read More »UK military personnel’s data accessed in hack – ET CISO
UK military personnel’s data accessed in hack – ET CISO https://etimg.etb2bimg.com/thumb/msid-109906573,imgsize-7882,width-1200,height=765,overlay-etciso/cybercrime-fraud/uk-military-personnels-data-accessed-in-hack.jpg Some personal information in a payroll system used by Britain’s defence department has been accessed in a data breach, the BBC reported on Monday. The system was managed by an external contractor and no operational Ministry of Defence data was obtained, the broadcaster said, adding that the department took ...
Read More »Google to use Gemini AI to tackle advanced cyber threats, IT Security News, ET CISO
Google to use Gemini AI to tackle advanced cyber threats, IT Security News, ET CISO In a bid to better protect enterprises from cyber incidents, Google on Tuesday launched a new threat intelligence solution that is powered by its Gemini AI. The ‘Google Threat Intelligence’ AI-driven Gemini provides conversational search across its vast repository of threat intelligence, enabling customers to ...
Read More »China-Linked Hackers Suspected in ArcaneDoor Cyberattacks Targeting Network Devices
China-Linked Hackers Suspected in ArcaneDoor Cyberattacks Targeting Network Devices https://firewall.firm.in/wp-content/uploads/2024/05/chinese.jpg May 06, 2024NewsroomNetwork Security / Malware The recently uncovered cyber espionage campaign targeting perimeter network devices from several vendors, including Cisco, may have been the work of China-linked actors, according to new findings from attack surface management firm Censys. Dubbed ArcaneDoor, the activity is said to have commenced around July ...
Read More »