Futurum Research Senior Analyst Steven Dickens provides his analysis of the most recent supply chain ransomware attack that has affected thousands of businesses globally over the July 4th weekend.
HPE’s Project Aurora Launches, a New Zero-Trust Offering to Help Address Security Concerns
Futurum Senior Analyst Steven Dickens provides his take on news coming out of HPE’s Discover event around the latest zero-trust solution, Project Aurora. As the cybersecurity landscape evolves, new approaches are required to combat the emerging threats. HPE’s zero-trust approach is designed to deliver robust attestation and verification derived through a root-of-trust model at the silicon layer.
EU to Introduce Digital Wallet Initiative Ahead of US, Sets First Major Milestone for 2022
The EU will introduce a digital wallet initiative ahead of the US, setting a first major milestone for 2022. Futurum’s Olivier Blanchard covers the many nuances of that initiative, including Qualcomm’s prescient 2019 updates to its Snapdragon 855 Mobile Platform and subsequent security clearance, what’s likely ahead there, as well as whether the EC will back down at all in its crusade against major US tech companies, whose assistance will no doubt be needed here.
AWS Nitro Enclaves: The AWS Answer for Trusted Execution Environments
We believe that with AWS entering the Confidential Computing space, the bigger message here is that Big Tech is increasingly addressing data security in novel and important ways by addressing the entire data chain to ensure that organizations are able to pass on that security to their customers. We expect big things ahead in the Confidential Computing space and AWS, as always, is on the forefront.
China-linked Hackers use Pulse Connect Secure VPN Flaw to Target Federal Agencies
In this quick vignette from the Futurum Tech Webcast Cybersecurity Shorts series, Futurum analysts Shelly Kramer and Fred McClimans discuss the China-linked hack of the Pulse Connect VPN and the targeting of a multitude of federal civilian agencies and financial institutions.
SAP Cyberattack Currently Underway Exploits Known Security Vulnerabilities
In this article about the SAP cyberattack that is currently underway and actively exploiting known security vulnerabilities, Futurum’s Shelly Kramer provides details on the attack, those most at risk, and provides guidance for CISOs and their teams (and business leaders) to protect their organizations right now from these active cyberattacks on mission-critical SAP applications.
Bipartisan Lawmakers Work Toward Disclosure Bill for Cybersecurity Breaches
As a result of recent cybersecurity breaches, a group of bipartisan lawmakers has been announced. Rep. Michael McCaul (R-Texas) and Sen. Jim Langevin (D-R.I.) are working on legislation that will require companies to notify the federal government in the event of a security breach. Futurum’s Shelly Kramer explores the need for the bill, especially in light of the SolarWinds and Microsoft Exchange Server hacks, the extent of the damage from which will remain unknown for some time. This proposed legislation makes sense — hopefully, this time around it will make it into law.
More Security Woes for Microsoft’s Exchange Servers as Threat Actors Get Busy — Patching is Urgent
Microsoft’s security woes as it relates to the Exchange Server hack and other, subsequent hacking campaigns that have been launched make it a tough time and what I’m sure are a lot of sleepless nights for both the company, as well as CISOs and their security teams the world over. Futurum’s Shelly Kramer takes a look at where we are now, the new threats that are appearing and multiplying at a rapid pace, and rumors of a potential insider leak that may have been malicious and/or part of a separate security breach.
REvil Ransomware Breach Targets Jack Daniel’s Parent Brown-Forman — Steals 1 TB of Data
The REvil ransomware cyber gang claims to have attacked Brown-Forman, the owner of Jack Daniel’s and other popular liquor brands. The sophisticated ransomware gang claims to be holding 1TB of Brown-Forman corporate data for ransom, including employee information, pledging to leak the data in batches if the company does not respond to its demands. Brown-Forman has released few details about the attack, and claims “There are no active negotiations.”
What the Massive Twitter Hack Means for CISOs and Security Vendors
The massive Twitter hack this past week was a wake-up call for many of the vulnerabilities our collective reliance on social media channels presents. Here is a short overview of the specifics that have been uncovered as a result of investigation by the FBI, lawmakers, cybersecurity experts and Twitter itself, as well as what the impact of a hack of this nature means for CISOs and their security vendor partners.