Month: March 2023

Welcome to Startups Weekly, a nuanced take on this week’s startup news and trends by Senior Reporter and Equity co-host Natasha Mascarenhas. To get this in your inbox, subscribe here. It’s hard to be proactive after the tide has already shifted. However, that’s what we’re seeing happen in the solo GP world, where investors, hearing
In the aftermath of TikTok CEO Shou Zi Chew’s brutal five hour Congressional hearing on Thursday, TikToker and disinformation researcher Abbie Richards summed up what so many creators were thinking: “It’s actually remarkable how much less Congress knows about social media than the average person,” Richards told TechCrunch. Across TikTok, users mocked congresspeople for misunderstanding
The US Cybersecurity and Infrastructure Security Agency (CISA) and the Joint Cyber Defense Collaborative (JCDC) have unveiled a new effort to aid organizations in quickly fixing vulnerabilities targeted by ransomware actors. The Pre-Ransomware Notification Initiative provides businesses with early warnings, enabling them to potentially evict threat actors before they can encrypt data and systems for
What is three-factor authentication (3FA)? Three-factor authentication (3FA) is the use of identity-confirming credentials from three separate categories of authentication factors — typically, the knowledge, possession and inherence categories. This type of multifactor authentication (MFA) improves security over single- or two-factor authentication (2FA), as it’s unlikely that an attacker could fake or steal all three
Why your organization should consider an MDR solution and five key things to look for in a service offering The threat landscape is evolving at breakneck speed and corporate cyberattack surfaces expand, with many trends and developments kicked into overdrive as a result of the surge in digital transformation investments during and after the COVID-19
Beam, a five-month-old startup out to more easily help general contractors pay subcontractors and get paid themselves, has raised $4 million in a seed funding round led by Accel. Both the startup’s founder and lead investor previously spent years working at payments giant Stripe. Before starting Beam in October of 2022, Adam Eagle had spent
What is FIDO (Fast Identity Online)? FIDO (Fast Identity Online) is a set of technology-agnostic security specifications for strong authentication. FIDO is developed by the FIDO Alliance, a nonprofit organization that seeks to standardize authentication at the client and protocol layers. FIDO specifications support multifactor authentication (MFA) and public key cryptography. Unlike password databases, FIDO
The UK government has published a new strategy designed to boost cyber-resilience in the health and social care sector by 2030, claiming it is key to building a sustainable, patient-centric NHS. The goal is to help the sector’s disparate organizations improve cyber-risk management, data protection and incident response and recovery – driving trust in digital so that new technologies can
Mar 23, 2023Ravie LakshmananMobile Security / Banking An emerging Android banking trojan dubbed Nexus has already been adopted by several threat actors to target 450 financial applications and conduct fraud. “Nexus appears to be in its early stages of development,” Italian cybersecurity firm Cleafy said in a report published this week. “Nexus provides all the
Security experts have warned of the growing threat from business email compromise (BEC) attacks spoofing victims’ vendors and suppliers, after revealing an audacious attempt to steal tens of millions of dollars. The email in question was sent to an escrow officer at an insurance company, cc’ing in the presumed client, an enterprise in commercial real
Mar 22, 2023Ravie LakshmananICS/SCADA Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released eight Industrial Control Systems (ICS) advisories on Tuesday, warning of critical flaws affecting equipment from Delta Electronics and Rockwell Automation. This includes 13 security vulnerabilities in Delta Electronics’ InfraSuite Device Master, a real-time device monitoring software. All versions prior to
Twitter’s ditching of free text-message authentication doesn’t mean that you should forgo using 2FA. Instead, switch to another – and, indeed, better – 2FA option. Starting today, Twitter is disabling SMS-based two-factor authentication (2FA) for all but paying users following a decision that, not unlike other recent moves by the social media giant, has been
API use and capabilities have grown significantly over the past decade to improve application development; interaction with services and app features; and integration with applications, services and components of all types. Nowhere is this truer than in the cloud, where API availability and use are the norm rather than the exception. APIs have also become
The UK’s leading cybersecurity agency has launched two new services designed to help the nation’s small businesses to more effectively enhance their cyber-risk management. The National Cyber Security Agency (NCSC) today announced a Cyber Action Plan – a questionnaire for small organizations and individuals/families, which delivers a free personalized security to-do list depending on the answers