Updated Aug. 4 with comment from Amazon  A new report today from cloud incident response company Mitiga Security Inc. details a new potential post-exploitation technique involving Amazon Web Services Inc.’s System Manager agent. The exploit involves the potential for the SSM agent to be used as a remote access trojan or RAT virus on both Linux ...

Content delivery network and cloud services provider Akamai Technologies Inc. today announced a new application programming interface security solution designed to combat increasing API attacks and identify business logic abuse within APIs. API Security uses technology gained by Akamai from its purchase of API detection and response platform provider Neosec Inc. earlier this year. API Security works with any ...

Networking giant Cisco Systems Inc. today announced that it has added ransomware detection and recovery support to its extended detection and response solution, bringing near real-time recovery for business operations after a ransomware attack. Cisco announced its XDR service in April, introducing deep telemetry and visibility across network and endpoints. The addition of ransomware protection is centered ...

Shares in Commvault Systems Inc. fell by nearly 6% in regular trading today despite the data protection provider reporting earnings and revenue beats in its latest quarter. For its fiscal first quarter that ended June 30, Commvault reported earnings before certain costs of $32.5 million, or 72 cents per diluted share, up from 64 cents per ...

Cybersecurity posture startup Balbix Inc. today announced a new Center for Internet Security Benchmark automation tool that allows compliance teams to obtain updated CIS Benchmark reports, identify their most vulnerable assets and reduce security risks. The new service has been designed to tackle the issue wherein businesses often undertake CIS Benchmarking once a year and don’t understand how ...

Enterprise network-as-a-service startup Nile Global Inc. today announced that it has raised $175 million in new funding. The company’s goal is to eliminate the operational complexities plaguing enterprise networks in their ability to support cloud enterprise information technology solutions without compromising zero-trust security. That’s the notion that no user or device on a computer network can be ...

A new report released today by industrial cybersecurity firm Nozomi Networks Inc. has warned that there is an alarming surge in malware activity in operational technology and internet of things environments. The Nozomi Networks Labs OT & IoT Security Report: Unpacking the Threat Landscape with Unique Telemetry Data was put together based on telemetry data from OT and IoT ...

Identity access and management startup Abbey Labs Inc. announced today that it has raised $5.25 million in new funding to accelerate its go-to-market opportunities, hiring and developer awareness. Point72 Ventures LP led the seed round, with Haystack Partners LLC, Essence Ventures LLC and several individual investors also participating. Founded in 2022 by Arvil Nagpal and Jeff Chao, former ...

Researchers at cloud forensics and incident response platform startup Cado Security Ltd. today detailed a recently discovered malware campaign aimed at Redis data store deployments. Redis is an open-source in-memory data structure store used as a database, cache and message broker that supports various data structures such as strings, hashes, lists and sets. The malware, dubbed “P2Pinfect,” ...

Government services provider Maximus Inc. is the latest victim of the Clop ransomware gang’s targeting of a critical vulnerability in Progress Software Corp.’s MOVEit file transfer software, as data belonging to as many as 11 million people was stolen. Maximus, which provides services for Medicaid, Medicare, health care reform, welfare-to-work and student loan servicing, disclosed it had ...