-
Learn More
Cybersecurity Tips to Avoid Fouls During March Madness
News Article from Sectigo
News Article Mar 21, 2024As the March Madness NCAA basketball tournament captivates fans across the country, cybercriminals are gearing up with their own game plan—to capitalize on this period of heightened online activity and distraction. Between checking scores, streaming games, participating in office pools, and inevitably some placing of bets, users will be presenting an abundance of new openings for threat actors to attack.
-
Learn More
Digital certificate revolution! with Nick France, Sectigo
News Article from Sectigo
News Article Mar 21, 2024A 'Digital Certificate' proves the authenticity of a device, server, or user as they communicate with each other - they quietly enforce safety and security in our digital world. However, like in most industries, there is disruption on the horizon in the world of digital certs, and that affects all of us.
This week Dave, Sjoukje & Rob talk to Nick France, CTO of SSL, Sectigo about what certificates do to keep us safe, the impact if a certificate is compromised, what the coming changes are, how they impact organisations and what they should do about it. We also talk about the big Cyber trends for 2024.
-
Learn More
How businesses should prepare for shorter SSL/TLS validity periods
Blog Post from Sectigo
Blog Post Mar 20, 2024SSL/TLS certs are crucial for web security. Expect shorter validity periods. Automated CLM tools ease renewal process risks.
-
Learn More
Google Firebase may have exposed 125M records from misconfigurations
News Article from Sectigo
News Article Mar 20, 2024More than 900 misconfigured Google Firebase websites could have leaked nearly 125 million user records, according to a recent post by a trio of security researchers who go by the online handles "mrbuh," "xyzeva" and "logykk."
-
Learn More
A newly uncovered phishing campaign that spreads remote access trojans
News Article from Sectigo
News Article Mar 19, 2024A discovery by FortiGuard Labs has revealed a phishing campaign that spreads VCURMS and STRRAT remote access trojans. By encouraging targets to download a malicious Java downloader, threat actors are able to deliver malware. Malicious actors store the malware on public services and utilize emails to direct the campaign.
-
Learn More
Fake Google Docs on Google Sites launch AZORult infostealer campaign
News Article from Sectigo
News Article Mar 19, 2024An AZORult infostealer campaign has been observed in the wild in which the attackers create fake Google Docs pages on Google Sites to use HTML smuggling to download malicious malware payloads.
-
Watch Now
60 minutes
Webinar Mar 19, 2024Q1 2024 Pulse
Join us for our Sectigo Pulse webinar, where we cover the latest product and compliance news and how these events might impact you and your business.
-
Listen Now
EPISODE 370
Broadcast Date:
March 19, 202428 minutes
Podcast Mar 19, 2024Root Causes 370: Drama on Bugzilla
An evolving incident on Bugzilla has garnered a lot of attention and touches several important issues in the WebPKI ecosystem.
-
Learn More
Don't Let Cybercriminals Bust Your March Madness Bracket
News Article from Sectigo
News Article Mar 18, 2024March Madness starts with Selection Sunday this weekend and the official beginning of the NCAA tournament takes place next Tuesday, March 19.
March Madness is one of the largest, most watched, and anticipated, sporting events every year here in the US. What makes it most intriguing is that it's the only major sporting event in the US that traditionally falls during our business day and those who participate in viewing, and playing in their "office pools", are susceptible to a variety of security threats.
-
Learn More
Women in Tech Interview Series – Jennifer Binet
News Article from Sectigo
News Article Mar 16, 2024Jennifer Binet is SVP of Enterprise Sales at Sectigo, a company that manages certificates for online security. She shares with us her 10+ years of channel experience, from her early days in the tech industry, highlighting the importance of finding her voice and the meaningful impact she made in her role. Julian and Jennifer emphasized the importance of mentorship and continuous learning in the evolving tech industry. They also discussed the trust dynamics in business, shedding light on the surprising preference for women in terms of trust and the profitability of women-run companies.
-
Learn More
Akamai offers POC and Open Policy Agent to block Kubernetes bug
News Article from Sectigo
News Article Mar 15, 2024Akamai has offered security teams a proof-of-concept YAML file and Open Policy Agent rule for blocking a high-severity vulnerability in Kubernetes that was originally patched late last year.
Akamai researcher Tomer Peled said in a March 13 blog post that the vulnerability — CVE-2023-5528 — allows remote code execution with System privileges on all Windows endpoints within a Kubernetes cluster. Peled said to exploit this flaw, the attacker needs to apply malicious YAML files on the Kubernetes cluster — a move that can lead to full takeover on all Windows nodes in a cluster.
-
Listen Now
EPISODE 369
Broadcast Date:
March 15, 202415 minutes
Podcast Mar 15, 2024Root Causes 369: IMessage to Be PQC Enabled
Apple has announced that iMessage will employ post-quantum cryptography (PQC). We explain the implications of this announcement.