The Last Watchdog

JANUARY 25, 2021

SolarWinds and Mimecast are long-established, well-respected B2B suppliers of essential business software embedded far-and-wide in company networks. Web site hosting, mobile application development, email services, incident response, firewall monitoring, the list goes on and on. Businesses are target-able entities.

Hacking 228

Hacking B2B Authentication Software 228

The Last Watchdog

AUGUST 6, 2018

Related podcast: Why identities are the new firewall. Compromised accounts came into play in data breaches of Uber, Tesla, Gemalto, Aviva, Equifax and many others. And with “digital transformation” accelerating, there are so many more weakly-secured login accounts just waiting to be maliciously manipulated.

Digital transformation 181

Digital transformation Passwords Data breaches Authentication 181

Security Affairs

OCTOBER 5, 2023

Researcher discovered that global B2B CRM provider Really Simple Systems exposed online a non-password-protected database with million records. Upon further research, records indicated that the database belonged to global B2B CRM provider Really Simple Systems.

Data breaches 107

Data breaches B2B Education Identity Theft 107

eSecurity Planet

APRIL 9, 2024

These checklists include security standards and best practices for SaaS and cloud applications, and B2B SaaS providers use them to guarantee that their solutions match customer security standards. Is data encrypted in transit and at rest? Are firewalls configured and maintained to prevent unwanted access and data breaches?

Risk 81

Risk Threat Detection Data breaches Encryption 81

eSecurity Planet

JULY 6, 2021

Like SolarWinds, both companies serve large B2B audiences, where Kaseya’s products produce hundreds of end products and services. The Ransomware-as-a-Service (RaaS) gang infiltrated Kaseya’s server, moved to client networks, and executed ransomware encryption to lock end-client networks. High-profile attacks on the rise.

Ransomware 104

Ransomware B2B Software System Administration 104

eSecurity Planet

JULY 28, 2021

Since the 1970s, Public Key Infrastructure (PKI) has offered encryption , authentication, bootstrapping, and digital signatures to secure digital communications. As encryption methods go, AES-128 and RSA-2048 are vulnerable to quantum attacks. For every digital asset – configuration, firewall rules, VM images, etc.

Cybersecurity 135

Cybersecurity Cryptocurrency Technology Energy and Utilities 135

SecureList

DECEMBER 10, 2020

Some employees are not strictly using their business accounts for work-related purposes. For example, 42% of workers say they are using personal email accounts for work and nearly half (49%) have admitted to increasing how often they do this. The cybercriminals were after login credentials for accounts on the official WHO site.

Scams 57

Scams Passwords Phishing Internet 57