Risk management, Data security, Breach, Architecture, Device Security, Mobile, Policy, Compliance, Privacy, Endpoint Security, Device Security, Endpoint Security

California breach law rises

Dan KaplanApril 28, 2009

The California State Senate has passed a law, SB-20, that would require breached organizations to provide victims with additional information. The legislation would mandate that companies tell customers what type of personal information was breached and when the breach occurred. Currently, the state's pioneering SB-1386 law requires the breached entity to only say that a compromise occurred. The new bill, introduced by state Democrat Sen. Joe Simitian, who also sponsored SB-1386, is now up for approval in the state Assembly. — DK

Dan Kaplan

Data security

Modern Threat Hunting with your SIEM on a $0 Budget – Ryan Fried – ESW #284

August 11, 2022

Security analysts can move past traditional Indicators of Compromise from threat intel like domains, hashes, URLs, and IP addresses. These indicators typically aren't valid shortly after the incidents happen. Modern threat hunting by doing things like reading recent and relevant security articles, p...

Identity and access

How orchestration can accelerate the end of passwords

Daniel ThomasAugust 15, 2022

This article explores what orchestration is and how it can accelerate the push to passwordless authentication. We’ll also explore the challenges and how to overcome them, including legacy apps that don't support passwordless, and educating those who cling to passwords as the path to least resistance.

Remote access

Volexity: Attackers exploit RCE flaw to breach Zimbra servers

SC StaffAugust 12, 2022

Threat intelligence firm Volexity discovered that attackers have been actively exploiting a remote code execution flaw tracked as CVE-2022-27925 with the help of the CVE-2022-37042 auth bypass bug as early as the end of June to compromise Zimbra Collaboration Suite email servers, which are used by over 200,000 businesses, including more than 1,000 government and financial organizations across 140 countries, Bleeping Computer reports. "Volexity believes this vulnerability was exploited in a manner consistent with what it saw with Microsoft Exchange 0-day vulnerabilities it discovered in early 2021," according to the firm's threat research team, adding the vulnerability was initially exploited "by espionage-oriented threat actors, but was later picked up by other threat actors and used in mass-exploitation attempts." Successful exploitation permits attackers to launch web shells on some locations on the compromised Zimbra servers to gain continuous access.

California breach law rises

Related

Modern Threat Hunting with your SIEM on a $0 Budget – Ryan Fried – ESW #284

How orchestration can accelerate the end of passwords

Volexity: Attackers exploit RCE flaw to breach Zimbra servers

Related Events

Supply Chain Security Snags: How to Solve Your Sourcing, SBOM & Scope Struggles

Automation’s Role in TPRM

Exploring the Results of CyberRisk Alliance’s Third-Party Risk Management Study