Forcepoint|News

A severe privacy flaw dubbed ‘acropalypse’ has been found to affect the Windows 11 Snipping Tool, allowing people to partially recover content that was edited out of an image. This flaw poses a significant privacy concern as if a user shares a picture, such as a credit card with a redacted number or revealing photos […]

Zero Trust CDR – A modern approach The first problem is that not all malware is executable code. Applications are invariably so complex that they contain flaws, mostly in the way they handle unusual or malformed data – anything more obvious tends to get fixed. With carefully crafted data, the applications can be persuaded to

This is particularly a problem with old systems that should’ve been upgraded years ago. It’s why technical debt is real for many organizations. Take Windows 7, for example. The OS is well past its sell-by date, but for many systems it works well enough and is costly to upgrade. the older operating systems, and the applications

But this means they have to understand the container file format and handle its structures—it’s no longer treating all the data as a simple pile of bytes. But if the malware is inside some container file, such as a Zip archive, its distinct signature might get encoded in some way, like being compressed, that hides

The Biden administration released a national cybersecurity strategy that advocates for more tech regulation and software liability reform, including imposing minimum security standards for critical infrastructure and shifting responsibility for maintaining cybersecurity from consumers and small businesses to larger software makers. The new approach marks a shift away from the government’s emphasis on information sharing

AI chatbots, such as ChatGPT from OpenAI, can be used to help facilitate malicious cyber activities, even though the terms of service of these AI-driven tools ban cybercrime activities. Cybercriminals can use ChatGPT to create more efficient and compelling phishing emails, and AI tools can create fake but legitimate-looking online profiles, which is time-consuming for

Data within organizations tends to literally multiply through duplicates, duplicates of duplicates, etc.  This is a problem often referred to as redundant data.  Data also can no longer be valid.  Version control, where multiple variations of documents exist, quickly becomes an issue. In other cases, data may have been time bound and expired in some

Enabling DLP at greater scale We also recently extended the capabilities of Risk-Adaptive Protection, helping customers utilize this powerful monitoring tool to increase the impact of their Zero Trust programs.  Here’s a quick overview of some of the capabilities we released to customers today: Forcepoint DLP 10.0 brings our fingerprinting to another level. Customers are

PayPal is notifying thousands of users that their accounts were accessed through a large-scale credential stuffing attack that exposed some personal data. The attack occurred between December 6 and December 8, 2022. PayPal reportedly detected and mitigated it at the time. According to the company, 34,942 users were impacted by the incident. Hackers had access