IBM: U.S. Companies Pay $3.2M Per Data Breach

The China-based vendors want to promote greater transparency to create more confidence about their 5G equipment and other products and services.

The container files containing the most vulnerabilities were typically the oldest files and “appear to be abandoned or are otherwise EOL’ed (end of life)," explained Kenna's Jerry Gamblin.

Google Cloud CEO Thomas Kurian said he expects to compete the merger by this fall.

Despite touting the advanced nature of its factory and the fact that it will be “operational in early 2020,” Ericsson has not yet said where that factory will be

Joel Smith, who works with the Kubernetes Product Security Committee, described the latest bug as “high severity."

The endpoint security company, founded by former McAfee executives, sold 18 million shares priced at $34 each — above the original target range of $19 to $23.

The company says it's on track to be cashflow positive unlike some other big endpoint security vendors (:cough: CrowdStrike and Carbon Black :cough:).

The endpoint security unicorn plans to sell 18 million shares at between $19 and $23 each when it debuts on the Nasdaq exchange.

It’s unclear what impact, if any, the outcome of the legal challenge will have on Huawei's prospects.

While Google’s analytics cred is well established, Chronicle is an interesting choice because it’s such a new player in security information and event management.

Both U.S. companies and Huawei will take revenue hits as a result of the blacklisting.

CrowdStrike says revenue hit $249.8 million for fiscal 2019, and it says Amazon Web Services is running its security platform on “hundreds of thousands of AWS workstations and servers.”

China is not implicitly named in the 545-word executive order, but the action is clearly directed at Chinese-based vendors Huawei and ZTE.

Like the earlier Meltdown, Spectre, and Foreshadow processor flaws, the newly discovered ZombieLoad is a side channel attack that allows hackers to steal sensitive data and keys.

Red Balloon Security disclosed two vulnerabilities in “tens of millions” of Cisco enterprise routers, switches, and firewalls that could allow hackers to remotely attack corporate networks, steal data, and

“Why don’t we skip all the hard hacking and just, you know, ask for the money?” This is essentially the theme of this year’s report.

SecureLink expands Orange’s cybersecurity reach across Europe and the Nordics.

“Cybersecurity is a big challenge,” Joyce said. “And if you don’t have diversity, you’re going to keep coming up with the same answers.”

“Had the attackers wanted to take down the DNS portion of the internet, they could have done so,” said Talos' Craig Williams.

The products insecurely store authentication and/or session cookies, giving hackers access to a company’s virtual private network.

The new business unit leverages the carrier’s existing network infrastructure and its IoT connectivity management platform, and it will expand a collaboration with Subex, a telecom analytics provider.

This is the first PoC for the provider's newest portfolio addition, which provides SD-WAN and security on top of an OpenMSA framework.

The company issued patches for vulnerabilities found in vCloudDirector for service providers as well as VMware EXSi, Workstation, and Fusion.