Back Again - I keep leaving this format because of time constraints, but if I don't do it I fall behind on the news and on professional reading.
According to the report, 91% of IT professionals say API security should be considered a priority in the next two years, especially as over 70% of enterprise firms are estimated to use over 50 APIs.
The main aspects of API security respondents consider priority is access control, cited by 63% of those surveyed; regular testing (53%), and anomaly detection and prevention (43%). In total, eight out of 10 IT admins want more control over their organization's APIs.
CNN - What's keeping America's top economists up at night -
Inflation concerns have been in the spotlight thanks to anxiety on Wall Street. Investors, fearful that a rush to eat out at restaurants and hop on planes later this year could trigger a spike in prices, have sold US government bonds in recent weeks. Inflation, not coronavirus, is now the top risk cited by portfolio managers recently polled by Bank of America.
The big worry is that a burst of inflation could force the Fed to raise interest rates or taper bond purchases sooner than expected in order to cool off the economy. Almost half of NABE respondents think the central bank could roll back some stimulus measures by the end of 2022, while 40% don't think that will happen until at least 2023.
Data Breach Today - Microsoft Exchange Flaw: Attacks Surge After Code Published -
A new report by security firm F-Secure says that since proof-of-concept code for exploiting the ProxyLogon flaw was first released on March 13, it has been increasingly exploited globally by criminal gangs, state-backed threat actors and script kiddies.
Malicious activity tied to such attacks includes the "Downloader.Gen" Trojan web shell, F-Secure says, noting that detections of the tool surged following the release of the proof-of-concept exploit. F-Secure says it saw increases especially in Italy, Germany, France, the United Kingdom, the United States, Belgium, Kuwait, Sweden, the Netherlands and Taiwan.
Cyberscoop - US racing to address Microsoft vulnerabilities, especially for small businesses -
Overall, the number of vulnerable systems systems fell 45% last week, the National Security Council (NSC) spokesperson said in a statement, and there are now fewer than 10,000 vulnerable systems in the U.S., compared to the more than 120,000 entities that were vulnerable when the software bugs were first uncovered.
The key to that apparent decrease is the fact that entities are taking advantage of a new tool Microsoft released to the public last week in an attempt to protect protect smaller organizations against hackers seeking to exploit the Exchange Server flaws, according to the NSC spokesperson. Microsoft developed the tool, the Exchange On-Premises Mitigation tool — which works in an automated way, scanning for compromises and remediating issues — in coordination with Anne Neuberger, the deputy national security adviser for cyber and emerging technology, the NSC spokesperson said.
Reuters - U.S. Supreme Court rebuffs Facebook appeal in user tracking lawsuit -
The U.S. Supreme Court on Monday turned away Facebook Inc’s bid to pare back a $15 billion class action lawsuit accusing the company of illegally tracking the activities of internet users even when they are logged out of the social media platform.
Axios - Inside the Democrats' strategy to bombard Big Tech -
In an interview with Axios on Sunday, Rep. David Cicilline (D-R.I.) said he didn't want to give the major technology companies and their armies of lobbyists the easy target of a massive antitrust bill.
Instead, in his role running the House Judiciary Committee's antitrust panel, he plans to craft a series of smaller bills — perhaps 10 or more — that will be ready in May.
No comments:
Post a Comment