Plus: Salt Security receives an undisclosed amount from Falcon Fund
| Part of  Network | |
 Presented by  |
The FCC has added two Chinese companies to its national security threat list. The government agency stated that the two entities are subject to pressure and manipulation from the Chinese government. More: - The government agency has added ComNet (USA) LLC and China Unicom (Americas), two branches of the Pacific Networks Corp.
- FCC officials stated that the decision was made as a way of defending national U.S. interests and security and is based on 2019 laws that specify protection from communication networks.
- The Chinese Embassy in Washington did not comment on the decision, according to reports.
Zoom Out: - The U.S. has listed several other Chinese companies and organizations in this list. In March 2021, the FCC listed Huawei Technologies, ZTE Corp, Hytera Communications Corp, Hangzhou Hikvision Digital Technology, and Zhejiang Dahua Technology Co. as companies that posed a risk to national security.
- Recently, President Biden has stated that the U.S. will continue to protect its interests through digital and economic legislation that aims to disrupt China from gaining an advantage in critical industries such as security, semiconductors, etc.
| |
Wintermute claims it doesn't know who the responsible threat actor is for a $160M digital theft. The crypto company recently announced that hackers had managed to steal the funds at an undisclosed date. More: - According to blockchain time stamps, the threat actor transferred the stolen funds to their wallet address almost 48 hours ago.
- While details regarding the hack are scarce, it is believed that the hackers managed to breach Wintermute by exploiting a security flaw in Profanity. The latter is a private key generator that has been left in limbo by its administrator due to recently-tracked security flaws.
- The company claims it doesn't know who the threat actor responsible for the breach is, offering to get in touch with them and solve this matter as a white hat case.
- Profanity, the private key generator that has come under scrutiny recently, was also found to be exploitable by decentralized exchange 1inch Network.
| |
 A message from SECURITY COMPASS Discover an automated, scalable, developer-centric approach to threat modeling. So what differentiates a developer-centric threat modeling platform from more traditional threat modeling tools? A holistic developer-centric threat modeling platform offers a solution that covers the entire process—from analysis to implementation to measurement and reporting. It will help you release secure software faster by: - Automatically generating threat modeling diagrams
- Identifying required threat countermeasures and security controls
- Engaging key stakeholders (especially developers)
- Ensuring developers implement the required controls
- Measuring the effectiveness of the program
- Maintaining audit trails and data
- Understanding a change in risk profile
Read Developer Centric Software Threat Modeling Powered by Automation, a comprehensive guide on why developer-centric threat modeling is critical for your business. Get the guide
| |
Morgan Stanley Wealth Management, the wealth and asset management division of Morgan Stanley, has been ordered to pay $35M in damages regarding a data breach case. The payment comes as the company has settled in court. More: - Morgan Stanley Wealth Management was accused of failing to properly dispose of hard drives that contained personal customer data.
- The company hired an inexperienced moving company to transport the belongings, resulting in a data leak that goes back as far as 2015.
- This fine will be credited to the SEC, while as part of the agreement, Morgan Stanley Wealth Management will not directly claim responsibility for the event.
| |
Cybersecurity company Salt Security has received an undisclosed investment from Falcon Fund. Falcon Fund is the investment arm of CrowdStrike. More: - CrowdStrike officials stated that this investment will enable the company to become a leader in API technology, something they believe Salt Security is the best at developing.
- Salt Security has worked with companies such as Equinix, Live Oak Bank, City National Bank, Telefonica, etc.
- The company counts Y-Combinator and Sequoia among its list of investors.
| |
 A message from QUANTUM Avoid Paying a Ransom - Get the Ultimate Backup Guide Before You Need It Paying a ransom may sound like the best case scenario: get your data back, make your customers feel worth it. But actually, it can affect your business in other ways and may, in some cases, be illegal. Make sure your systems are protected across the entire data lifecycle - and never pay a ransom again. You’re able to balance cost while maximizing efficiency. No one can stop ransomware or fully prevent it from taking place - but you can make sure you’re protecting your customers and your data by ensuring that there is a fully air-gapped solution. Request A Demo
| |
SecurityPal has raised a $21M Series A. The San Francisco-based company offers a platform that makes conducting security evaluations easier for companies. More: - The funding round was led by Craft Ventures with participation from multiple angel investors.
- The company's client list includes Figma, Monday.com, Loom, Algolia, Sendoso, NetSPI, and Payscale.
| |
Quick Hits: - Spending a lot of time managing your cloud infrastructure? Free up your schedule by using intelligent technology to streamline CloudOps.*
- A cybersecurity company claims that it was able to stop a DDoS attack that peaked at 3.2 million requests per second and 25.3 billion requests total.
- Open-source data tool Redis is being exploited by hackers who are running a hacking campaign with 39,000 unauthenticated Redis services, according to a researcher.
- Popular video game company 2K has stated that hackers have managed to breach several of its helpdesk staff members, resulting in a phishing hacking campaign. The company has asked its customers not to click on links that were recently sent by company emails.
- According to a new report by a security research company, two-fifths of U.S. consumers have suffered from personal data theft. In 2021, the number of unsolved identity theft cases reached 55%, compared to 35% in 2020.
*This is sponsored content.
| |
Upcoming events at Inside: - September 22 - "Top 10 Overlooked VxWorks Features" with Brian Kuhl (Register Here) *
- September 28 - AMA with Leigh-Ann Buchanan (Founder of aīre ventures) (Register Here)
- October 05 - AMA with Ram Bartov (Chief Accounting Officer at TripActions)* (Register Here)
- October 11 - AMA with Mike Malone (Smallstep)* (Register Here)
- October 12 - AMA with Bill Glenn (Executive Chairman at Crenshaw Associates) (Register Here)
- October 19 - AMA with Zecca Lehn (Responsibly VC) (Register Here)
- October 25 - Meet Our Fund 4, an Inside.com Summit (Register Here)
*This is a sponsored listing.
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
Security Compass is on a mission to accelerate software time-to-market while managing risk. | |
With Quantum, we shift the focus from accumulating data to making it work for you. | |
| 767 Bryant St. #203, San Francisco, CA 94107
Copyright © 2022 Inside.com | |
| |
