Security News

Long Live SIEM !

Long Live SIEM !

Back in 2014, I remember having a conversation with the CEO of well known security technology provider about SIEM (Security Information and Event Management). Back then, there were only a handful of SIEM players in the market. He thought SIEM was dead technology but I wasn’t convinced. I thought the SIEM market would continue to grow, driven not only by... Read More
ITWC: Overcoming the People Problem in Cybersecurity

ITWC: Overcoming the People Problem in Cybersecurity

According to Gartner Inc., worldwide spending in information security — a subset of the broader cybersecurity market — will reach $93 billion in 2018. Another leading researcher and publisher predicts global spending on cybersecurity products and services will exceed $1 trillion cumulatively from 2017 to 2021. Naturally, demand for IT security professionals is sharply increasing. In 2015, Symantec predicted that demand would exceed... Read More
February 2, 2018
Threat Update: Cisco ASA VPN Feature Allows Remote Code Execution (CVE-2018-0101)

Threat Update: Cisco ASA VPN Feature Allows Remote Code Execution (CVE-2018-0101)

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vulnerability is due to an attempt to double free a region of memory when the webvpn feature is enabled on the Cisco... Read More
January 30, 2018
Security Consulting Success Story with Mogo Financial

Security Consulting Success Story with Mogo Financial

Mogo is a leading financial technology (“fintech”) company that helps consumers take control of their financial health. As a result, Mogo is committed to designing and maintaining corporate governance standards for cybersecurity. In order to ensure that they were adhering to the strict industry standards for cybersecurity, Mogo engaged Herjavec Group to perform a series of security consulting services, including... Read More
January 25, 2018
10 Tips For Building Your Cyber Resilience

10 Tips For Building Your Cyber Resilience

We live in a time of constant cyber threat, and one thing remains certain: cyber criminals are not slowing down. Organizations that can return to regular business operations quickly following a cyber attack will have a significant advantage over those that are unprepared. Unfortunately, according to the 2016 Ponemon Institute study, only 32% of IT and security professionals believed their... Read More
January 18, 2018
ITWC: How to achieve security compliance in the face of cyber threats

ITWC: How to achieve security compliance in the face of cyber threats

It was a great year for deceit in 2017 as hackers launched multiple successful attacks against corporations, organizations, governments, and individuals on an unprecedented global scale. The media cyber security darling — or demon — was the WannaCry crypto-worm, which held hostage the files of thousands of Windows users around the world until a Bitcoin ransom was paid. In all, WannaCry took... Read More
PR Newswire: Robert Herjavec’s official cybersecurity blog launches at CybersecurityCEO.com

PR Newswire: Robert Herjavec’s official cybersecurity blog launches at CybersecurityCEO.com

Cybersecurity expert dispenses advice on how C-suite executives should engage in combating cybercrime SAUSALITO, Calif., Jan. 17, 2018 /PRNewswire/ -- Cybercrime is the greatest threat to every company in the world, and one of the biggest problems with mankind. The impact on society is reflected in a report predicting cybercrime will cost the world $6 trillion annually by 2021, up from $3 trillion in 2015. Cybercrime... Read More
January 17, 2018
Cybersecurity CEO: When Your Company Gets Hacked, Will You Be Prepared?

Cybersecurity CEO: When Your Company Gets Hacked, Will You Be Prepared?

New report indicates cyber complacency is a growing problem in corporate boardrooms globally Los Angeles, Calif. – Jan. 16, 2017 “Every company will be hacked”, according to Roger Grimes, in a recent story he wrote for CSO. It’s a scary statement to make but Grimes, a 30-year tech industry road warrior who spent the past 11 years as Principal Security Architect at... Read More
January 16, 2018
Oracle WebLogic Vulnerability Being Exploited by Bitcoin Miners

Oracle WebLogic Vulnerability Being Exploited by Bitcoin Miners

In October 2017, Oracle disclosed CVE-2017-10271—a critical vulnerability in WebLogic's 'WLS Security' component which utilizes Java. A patch was released to address the issue. It's been widely reported that Bitcoin miners have been exploiting this vulnerability to gain access to and compromise systems.  Actors have been targeting a high number of WebLogic servers being hosted on public cloud servers. Scanned ports by... Read More
January 12, 2018