Evaluating GRC tools – Help Net Security
According to Gartner, the broad range of pricing for government, risk, and compliance (GRC) tools requires enterprise risk management (ERM) leaders to be well-versed in…
Month: November 2024
Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites
Nov 18, 2024Ravie LakshmananVulnerability / Website Security A critical authentication bypass vulnerability has been disclosed in the Really Simple Security (formerly Really Simple SSL) plugin…
ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps
ScubaGear is an open-source tool the Cybersecurity and Infrastructure Security Agency (CISA) created to automatically evaluate Microsoft 365 (M365) configurations for potential security gaps. ScubaGear…
Coles Group is making big strides with its advanced analytics – Strategy – Software
Coles Group has significantly progressed in its efforts to become more operationally driven by data and advanced analytics, with evidence on show across its supply…
ACCC takes aim at the size of the ‘broadband tax’ – Telco/ISP
Australia’s competition watchdog is weighing changes to the ‘‘broadband tax’ that would prevent the scheme from being used by NBN Co to recover “historical losses”…
Dept of Veterans’ Affairs to move finance to TechnologyOne – Finance
The Department of Veterans’ Affairs (DVA) is to implement a new cloud-based financial management system as part of a multi-faceted uplift program. The department intends…
New Nvidia AI chips overheating in servers – Hardware
Nvidia’s new Blackwell AI chips, which have already faced delays, have encountered problems with accompanying servers that overheat, causing some customers to worry they will…
T-Mobile hacked in massive Chinese breach of telecom networks – Security
T-Mobile’s network was among the systems hacked in a damaging Chinese cyber-espionage operation that gained entry into multiple US and international telecommunications companies, The Wall…
Security plugin flaw in millions of WordPress sites gives admin access
A critical authentication bypass vulnerability has been discovered impacting the WordPress plugin ‘Really Simple Security’ (formerly ‘Really Simple SSL’), including both free and Pro versions. Really…
Phishing emails increasingly use SVG attachments to evade detection
Threat actors increasingly use Scalable Vector Graphics (SVG) attachments to display phishing forms or deploy malware while evading detection. Most images on the web are…
How Ransomware Jeopardizes Healthcare Organizations
Security challenges in the healthcare sector continue to grow as connected assets and attack surfaces expand. Organizations in any sector face financial ramifications in the…
Financial sector faces pressure to meet FSCA Cyber Resilience Standards
The FSCA’s Joint Standard on Cybersecurity and Cyber Resilience is set to commence in June 2025, putting pressure on South African financial institutions to align…