News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Companies are targets of cloud malware attacks
Companies are targets of cloud malware attacks Image: MS - KI

A recent report shows that European companies receive more malware from the cloud than other markets – despite using fewer cloud applications on average. Multi-stage malware families like Guloader are most prevalent in Europe as threat actors seek to exploit popular cloud services. Microsoft's popularity draws attackers' attention: Europe shows a strong preference for Microsoft apps. Here, Microsoft OneDrive (52%), SharePoint (33%), Teams (24%) and Outlook (20%) are the four most frequently used cloud apps on a daily basis. Attackers have recognized this popularity, so OneDrive and…

Read more

Cloud provider: Customers attacked with Frostbite malware
B2B Cyber ​​Security ShortNews

According to experts, many customers of the cloud provider Snowflake are currently being targeted. To do this, the attackers are using the FROSTBITE malware - a new infostealer, according to the Google subsidiary Mandiant. Mandiant published new research results that show that a financially motivated threat actor identified as UNC5537 is targeting Snowflake customers by using previously stolen credentials - mainly via infostealer malware - to access customer databases. According to several sources, one known victim appears to be the event organizer Ticketmaster, which has lost a lot of customer data. So far, however, Mandiant has...

Read more

BSI and Zero Day Initiative warn of critical Azure vulnerability  
B2B Cyber ​​Security ShortNews

The Zero Day Initiative (ZDI) collects and verifies reported vulnerabilities. Now there is probably a critical vulnerability in Azure with the highest CVSS value of 10.0. The BSI also warns about the vulnerability - but there still doesn't seem to be a patch for it. The details of the critical vulnerability in Azure with CVSS value 10.0 are only briefly described: “This vulnerability allows remote attackers to bypass authentication with Microsoft Azure. No authentication is required to exploit this vulnerability.” Azure at risk – no patch to be found A further explanation can be found…

Read more

Fluent Bit: Attacking cloud services via logging endpoints
B2B Cyber ​​Security ShortNews

Tenable Research has discovered a critical vulnerability called “Linguistic Lumberjack” in Fluent Bit, a core component of the monitoring infrastructure of many cloud services, which could allow denial-of-service attacks, information disclosure, or remote code execution. Fluent Bit is a lightweight, open-source data collector and processor that can process large amounts of log data from various sources. It is designed to be highly scalable and easy to use, making it an ideal choice for log collection and processing in cloud-based environments. The project boasts over 2022 billion downloads by 3 and will continue to be…

Read more

BSI is suing Microsoft for the release of information
B2B Cyber ​​Security ShortNews

The BSI has now had enough: The BSI had asked Microsoft several times how the hack on the email accounts hosted by Microsoft could happen and how Chinese hackers were able to penetrate Microsoft to such an extent. The answers were so sparse that the BSI is now taking legal action and is suing for the information. The BSI had patience with Microsoft for a long time, but this has now been exhausted. The BSI made several inquiries to Microsoft and wanted to find out more about the hacks on Microsoft's many email accounts. But Microsoft announced, according to the…

Read more

For businesses: Browsers with identity-based protection
For businesses: Browsers with identity-based protection MS - AI

Now it's available: The CyberArk Secure Browser for companies. It is the first browser to offer greater security and privacy with identity-based protection, combining both with a familiar, productive user experience. The CyberArk Secure Browser relies on intelligent permission controls and can be easily deployed on a variety of devices. It was developed specifically for a cloud-first world and enables secure access to on-premises resources and SaaS applications. The browser provides security teams with unparalleled visibility, control and governance, helping to prevent the misuse of compromised identities, devices and credentials...

Read more

Protect dynamic attack surfaces in the cloud
Protecting dynamic attack surfaces in the cloud - MS - AI

More and more companies are moving digital assets to the cloud. As a result, the IT attack surface is expanding and, intensified by the multi-cloud, is becoming increasingly complex. Cloud Security Posture Management, or CSPM for short, checks cloud environments and notifies the responsible specialists about configuration vulnerabilities. Attack surfaces are dynamic and their number is continually increasing. Due to digital transformation and hybrid, locally flexible working, an enormously growing number of devices, web applications, software-as-a-service platforms (SaaS) and other third-party services require connection to the corporate network. Team: Cloud Security Posture Management At the same time, shift…

Read more

Cyber ​​threats: another record high in 2023
Cyber ​​threats: another record high in 2023

The number of cyber threats reached a record high in 2023. This is what Trend Micro’s Annual Cybersecurity Report shows. Trend Micro security systems detected and blocked malicious activity more than 161 billion times. The development of the past few years continues: since 2019, the number of threats has almost tripled to around 54 billion. The study also shows that cybercriminals are attacking more specifically, evolving their ransomware tactics and becoming more sophisticated. Companies should also urgently keep an eye on their cloud environments. Because the two most common cyber risks that Trend Micros Attack Surface Risk Management…

Read more

Cloud Security Solutions for Managed Service Providers
Cloud Security Solutions for Managed Service Providers - AI - Bing

Bitdefender has introduced GravityZone Cloud MSP Security Solutions, a new offering for managed service providers (MSP). It provides leading endpoint protection and managed detection and response (MDR) services to detect and remediate cyber threats in any environment and strengthen overall cyber resilience. Bitdefender GravityZone Cloud MSP Security Solutions are based on GravityZone, Bitdefender's unified security and risk analytics platform that provides advanced Endpoint Detection and Response (EDR), Extended Detection and Response (XDR) and cloud security for physical, virtual and multi- cloud environments. The platform provides in-depth information in the context of identified threats. User…

Read more

Security Cloud Enterprise Edition as a managed service

“Cyber ​​Resilience as a Service” enables companies of all sizes to obtain Rubrik’s portfolio for more data security from the MSP SVA. Rubrik Security Cloud Enterprise Edition includes features for increasing cyber resilience as well as proactive threat detection and risk mitigation. Rubrik, the Zero Trust Data Security company and the IT service provider SVA System Vertriebs Alexander GmbH are deepening their partnership. As the first Managed Services Provider (MSP) in Germany, SVA now offers customers the Security Cloud (RSC) Enterprise Edition as a managed service. With this offer, the partners help…

Read more