Ixia Releases 2018 Security Report, Highlighting Cybersecurity Risk To Enterprise Cloud Operations

Ixia, a network testing, visibility and security vendor and a Keysight Business, has released the Ixia 2018 Security Report, highlighting the company’s biggest security findings over the past year from its Application and Threat Intelligence (ATI) Research Center.  The report analyzes the growing exposure to cybersecurity risks as enterprises operate more of their workloads in the cloud.

Critical Oracle WebLogic Server Flaw Still Not Patched

One of the many issues that should have been addressed by Oracle’s Critical Patch Update for April 2018 was a fix for a flaw affecting versions 10.3.6.0, 12.1.3.0, 12.2.1.2 and 12.2.1.3 of the Oracle WebLogic Server (WLS) Java Enterprise Edition (EE) application server. This vulnerability, which has been assigned CVE-2018-2628 (CVSS Base Score: 9.8), is a critical issue that can be exploited by an attacker with network access via the T3 protocol. The T3 protocol is used to transport information between WebLogic servers and other types of Java programs. However, the patch was unsuccessful and this issue can still be exploited.

So You Think Threat Intelligence Isn’t for You?

Key Takeaways

  • You don’t have to have a dedicated threat intelligence team to get valuable and consumable insights.
  • It’s important to embrace the differences between threat analysts and cybersecurity specialists.
  • You should understand what constitutes the right threat intelligence for the right security functions.

Among all of the enthusiasm for threat intelligence and the potential it has to help in moving organizations to truly proactive security, we sometimes hear a few nagging doubts among information security professionals. Because beyond the “thought leadership” and the strategic conversations are dedicated teams who need to be sure that any initiative they invest in is going to bring real security benefits as well as significant increases in efficiency.

IDG Contributor Network: Why mid-market companies face a tougher road with the GDPR

While much has been written about GDPR’s rules, sanctions and fines, it appears GDPR is often treated as if its effect is equal to any company regardless of size. On paper, it seems that any company that violates the new data privacy regulation will suffer the same international sanctions. GDPR, however, will not have the same effect on every size company. For smaller companies, the smallest fine could be like a death penalty.

Report: Pervasive cyberstress is more than just another cyberthreat

Recently, while I was helping a family member handle the app updates, OS patches, cybersecurity, decluttering, and file backup he needed for his business laptop, he groused that he’d rather go back to pencil and paper. He accepted the superior ability of his computer for some tasks, but he never signed up for staying on top of cyberthreats. And even though I almost believed he’d do it, we had The Talk then and there.

Watch Facebook’s F8 keynote live right here

Facebook is hosting its F8 developer conference in San Jose this week. The event comes at an interesting time for the company. In response to the Cambridge Analytica scandal, it made a couple of sudden changes to how developers can access some data on its platform. We expect Facebook co-founder and CEO Mark Zuckerberg to address these questions head-on at the outset of the keynote, which is scheduled to start at 10am PT/1pm ET/19:00 CET.

SiliVaccine: A Special Report Into North Korea’s Anti-Virus

Revealed: In an exclusive piece of research, Check Point Researchers have carried out a revealing investigation into North Korea’s home-grown anti-virus software, SiliVaccine.          One of several interesting factors is that a key component of SiliVaccine’s code is a 10-year-old copy of one of Trend Micro’s, a Japanese company, software components.

IDG Contributor Network: GDPR: one size does not fit all

While much has been written about GDPR’s rules, sanctions, and fines, it appears GDPR is often treated as if its effect is equal to any company regardless of size. On paper, it seems that any company that violates the new data privacy regulation will suffer the same international sanctions. GDPR, however, will not have the same effect on every size company.  For smaller companies, the smallest fine could likely be like a death penalty.