Few infosec leaders report to C-suite, study shows
Few infosec leaders have a direct voice to the C-suite, says a new study, which it argues,…
Editor of ITWorldCanada.com and Computing Canada, covering all aspects of enterprise computing, telecommunications, network infrastructure and government IT issues. An IT journalist since 1997, I've written for several of ITWC's sister publications.
Use of TLS to protect malware communications has doubled, says Sophos
A common cryptographic protocol used to protect the majority of website communications and some virtual private networks is also increasingly being used by threat actors to protect their attacks, according to a new report.
Internet security company Cloudflare opens first Canadian office, hires sales exec
If it weren’t for the pandemic, Michaell Zatlyn would be in Toronto to celebrate the opening of internet security and performance provider Cloudlfare’s first Canadian office.
Canadian enterprise password manager adds secrets management
A Toronto enterprise password management provider is expanding into the field of machine secrets management with the launch of a new product and an acquisition.
Softchoice and Herjavec offer RangeForce’s new mid-priced cybersecurity training bundles
An online provider of cybersecurity training programs has added new bundles of lower-priced offerings to make it easier for smaller firms, individuals and students to access.
Microsoft investigates possible leak by security partner that enabled hackers to exploit Exchange
Microsoft is investigating whether a hacker got hold of confidential research on the recently-discovered Exchange Server vulnerabilities through at least one of its security partners.
Exchange Server vulnerabilities being exploited with ransomware, says Microsoft
Threat actors are exploiting the Microsoft Exchange Server vulnerabilities by installing a new ransomware strain on unprotected servers.
Over 100,000 Exchange Servers still vulnerable, including thousands in Canada
The potential for email hacking caused by vulnerabilities in on-premise installations of Microsoft’s Exchange Server continues to grow. Palo Alto Networks is estimating over 125,000 servers remain unpatched seven days after the first alert was issued.
Microsoft discovers more malware used by SolarWinds attacker while FireEye finds new backdoor
New reports from FireEye and Microsoft add more depth to the ongoing investigation into the compromise by a threat actor of the SolarWinds Orion security update system and intrusions into Orion customers
Microsoft urges admins to patch on-prem Exchange Server installations immediately
Microsoft Exchange Server administrators are being urged to update their on-premise installations immediately following the discovery of serious four zero-day vulnerabilities.
Ransomware the top attack type in Canada last year: IBM report
Ransomware accounted for nearly 60 per cent of attacks on Canadian IBM customers last year, according to an analysis by the tech giant.
Cloud developers still tripped up by misconfigurations, says vendor report
Cloud services offer several security advantages for organizations. Yet, despite years of warnings, cloud app developers are still making the same mistakes and opening organizations to serious risks, according to a vendor report.
Our systems weren’t the entry point for SolarWinds attackers, says Microsoft
Microsoft says its systems weren’t used to compromise other firms when it comes to the SolarWinds Solorigate/Sunburst supply chain hack and related incidents.
SonicWall confirms ‘critical’ vulnerabilty in SMA 100 devices
A week after warning IT departments of a possible problem with its SMA 100 devices, SonicWall has…
Another supply chain attack: Infected IObit promotion installs ransomware
A number of cybersecurity experts predicted at the end of the year that hackers will quickly learn lessons from the SolarWinds Orion supply chain hack to distribute malware. It seems they already have.