Tag Archive for: enable

‘The Internet’s On Fire;’ Software Vulnerability May Enable Worldwide Hack Attacks – CBS San Francisco

/in


BOSTON (AP) — A critical vulnerability in a widely used software tool — one quickly exploited in the online game Minecraft — is rapidly emerging as a major threat to organizations around the world.

“The internet’s on fire right now,” said Adam Meyers, senior vice president of intelligence at the cybersecurity firm Crowdstrike. “People are scrambling to patch,” he said, “and all kinds of people scrambling to exploit it.” He said Friday morning that in the 12 hours since the bug’s existence was disclosed that it had been “fully weaponized,” meaning malefactors had developed and distributed tools to exploit it.

The flaw may be the worst computer vulnerability discovered in years. It was uncovered in a utility that’s ubiquitous in cloud servers and enterprise software used across industry and government. Unless it is fixed, it grants criminals, spies and programming novices alike easy access to internal networks where they can loot valuable data, plant malware, erase crucial information and much more.

“I’d be hard-pressed to think of a company that’s not at risk,” said Joe Sullivan, chief security officer for Cloudflare, whose online infrastructure protects websites from malicious actors. Untold millions of servers have it installed, and experts said the fallout would not be known for several days.

Amit Yoran, CEO of the cybersecurity firm Tenable, called it “the single biggest, most critical vulnerability of the last decade” — and possibly the biggest in the history of modern computing.

The vulnerability, dubbed “Log4Shell,” was rated 10 on a scale of one to 10 the Apache Software Foundation, which oversees development of the software. Anyone with the exploit can obtain full access to an unpatched computer that uses the software,

Experts said the extreme ease with which the vulnerability lets an attacker access a web server — no password required — is what makes it so dangerous.

New Zealand’s computer emergency response team was among the first to report that the flaw was being “actively exploited in the wild” just hours after it was publicly reported Thursday and a patch released.

The vulnerability, located in open-source…

Source…

How to Enable 2FA in Facebook | Avast

/in


How to Enable 2FA in Facebook | Avast

Angela McNamara, a Facebook user in Canada, got three bad surprises in a row. First, her Facebook profile was hacked and taken over. Second, the attackers activated Facebook’s two-factor authentication (2FA), using the extra security feature to double-down on keeping Angela out of her own account. And third, try as she might, she got no recovery help from Facebook. 

*** This is a Security Bloggers Network syndicated blog from blog.avast.com EN authored by Avast Blog. Read the original post at: https://blog.avast.com/how-to-enable-2fa-in-facebook-avast

Source…

Macquarie University: US-Australia Research Partnership To Enable AI Bot And Human Teamwork Again Cyber Threats – India Education | Latest Education News | Global Educational News

/in


Macquarie University: US-Australia Research Partnership To Enable AI Bot And Human Teamwork Again Cyber Threats – India Education | Latest Education News | Global Educational News | Recent Educational News

Source…

Element Announces Element Unify Integration with AWS IoT SiteWise to Enable Condition-based Monitoring for Industrial Customers | Business

/in


SAN FRANCISCO–(BUSINESS WIRE)–Jun 9, 2021–

Element, a leading software provider in IT/OT data management for industrial companies, today announced a new offering featuring an API integration between its Element Unify product and AWS IoT SiteWise, a managed service from Amazon Web Services, Inc. (AWS), that makes it easy to collect, store, organize, and monitor data from industrial equipment at scale. The API integration is designed to give customers the ability to centralize plant data model integration and metadata management, enabling data to be ingested into AWS services, including AWS IoT SiteWise and Amazon Simple Storage Service (S3) industrial data lake.

Available in AWS Marketplace, the Element Unify AWS IoT Sitewise API integration is designed to allow engineers and operators to monitor operations across facilities, quickly compute performance metrics, create applications that analyze industrial equipment data to prevent costly equipment issues, and reduce gaps in production.

“We are looking forward to bridging the on-premises data models we’ve built for systems like OSIsoft PI to AWS for equipment data monitoring using Element Unify,” said Philipp Frenzel, Head of Competence Center Digital Services at Covestro.

Element also announced its ISO 27001 certification proving both the security controls protect customer data and the Information Security Management System (ISMS) provide governance, risk management, and controls required for modern SaaS applications. Element Unify also supports AWS PrivateLink to provide an additional level of network security and control for customers.

“Our customers are looking for solutions that can help them improve equipment uptime, avoid revenue loss, cut O&M costs, and improve safety,” said Prabal Acharyya, Global Head of IoT Partners for Energy at AWS. “Now, the Industrial Machine Connectivity (IMC) on AWS initiative, along with Element Unify, makes possible a seamless API integration of both real-time and asset context OT data from multiple systems into an industrial data lake on AWS.”

Industrial customers need the ability to digitally transform to maximize productivity and asset availability,…

Source…