2,322 articles · page 26 of 47
SearchSecurity, Thursday, September 26th, 2024
As recent events have shown, our technology systems are so connected that any interruption can cause global chaos. Organizations need robust defenses to protect their data and operations, and it starts with identity.
more →
SearchSecurity, Thursday, September 26th, 2024
To help keep your systems and applications secure, a system security plan is essential. Learn how to create a plan and keep it up to date.
more →
TrueFort, Thursday, September 26th, 2024
The National Institute of Standards and Technology (NIST) continues to identify critical cybersecurity vulnerabilities that require immediate action via reports from its National Vulnerability Database (NVD). These reports clarify the ongoing risks organizations face if vulnerabilities are not promptly addressed, including data breaches and system compromises.
more →
HelpNet Security, Tuesday, September 24th, 2024
In this Help Net Security interview, Jon France, CISO at ISC2, discusses cybersecurity workforce growth. He outlines organizations' challenges, such as budget constraints and limited entry-level opportunities. France also points to the urgent need to upskill current employees and adopt inclusive hiring practices to tackle the growing skills gap in the industry.
more →
HelpNet Security, Tuesday, September 24th, 2024
Over the past decade, ransomware has been cemented as one of the top cybersecurity threats. In 2023 alone, the FBI received 2,385 ransomware complaints, resulting in over $34 million in losses.
more → Security Intelligence, Tuesday, September 24th, 2024
The SANS Institute - a leading authority in cybersecurity research, education and certification - released its annual Top Attacks and Threats Report.
more →
Security Boulevard, Monday, September 23rd, 2024
As organizations grapple with increasingly sophisticated cyber threats, many are rethinking their approach to managing security.
more → InformationWeek, Monday, September 23rd, 2024
What makes a good hacker, and how can the ethical ones strengthen enterprise cybersecurity?
more →
Security Boulevard, Monday, September 23rd, 2024
Kubernetes today is the de facto standard for container orchestration, deployment automation, scaling, and management of containerized apps. The robustness and scalability of this open-source platform make it a valuable tool for businesses leveraging cloud-native technologies and DevOps practices.
more → Security Boulevard, Monday, September 23rd, 2024
Insider attacks are growing, whereby 60% of organizations in the past year alone have suffered employee-related data breaches. Surprised?
more → Security Boulevard, Monday, September 23rd, 2024
In today's digital landscape, social media platforms stand at the heart of a brand's identity, reputation, and customer engagement. Despite this, many organizations overlook the security of their social media accounts when considering SaaS apps.
more → Security Boulevard, Monday, September 23rd, 2024
We recently hosted a live webinar that discussed what you need to know about the FCC Schools and Libraries Cybersecurity Pilot Program. This webinar outlines an overview of the new pilot program, demonstrates how ManagedMethods products align with funding criteria, and concludes with how our products enhance K-12 districts' Google Workspace, Microsoft 365, and online browsing security posture.
more → Security Boulevard, Monday, September 23rd, 2024
Last week, the CMMC Final Rule (known as CFR 32) was released from OIRA, meaning no more changes can be made.
more → Security Boulevard, Monday, September 23rd, 2024
Organizations are generating vast volumes of data at lightning speed and need to store that data in user-accessible ways to optimize business results.
more → SC Media, Monday, September 23rd, 2024
Threat intelligence is a vital part of cybersecurity. It gives defenders the information they need to prepare for and guard against potential attackers, mitigating the risks of intrusions and data loss. Real-time feeds of threat data can even help organizations thwart zero-day threats that would otherwise slip past network and endpoint protections.
more →
Security Boulevard, Friday, September 20th, 2024
If you've spent any length of time reading about the internationally accepted security framework laid out in ISO 27001, you've likely come across the term ISMS or Information Security Management System. You may wonder, though; what is the ISMS specifically, how do you set one up, and what does it do for your business? Let's talk about it.
more → SecurityIntelligence, Friday, September 20th, 2024
In 2023, the Cybersecurity and Infrastructure Security Agency (CISA) conducted a red team operation against an FCEB (Federal Civilian Executive Branch) organization. In July 2024, CISA released a new CSA that detailed the findings of this assessment along with key findings relevant to the security of the organization's network.
more → Security Boulevard, Thursday, September 19th, 2024
The firehose of security incidents - data breaches, ransomware, and supply chain attacks - often obscures the methods that attackers use to create these incidents. One of the most common is credential stuffing, which is a type of authentication-related attack that leads to account takeovers (ATO) and ultimately theft or fraud.
more → SearchSecurity, Thursday, September 19th, 2024
DNS is a key component in any enterprise network. Auditing DNS servers and encrypting DNS traffic are just two of the steps to take to protect your organization's DNS deployment.
more → Security Boulevard, Thursday, September 19th, 2024
Over the past century, international printing machinery manufacturers like Komori have had to innovate because of the internet. As a manufacturer, they rely on the distribution chain for the overall success of their companies.
more → DARKReading, Thursday, September 19th, 2024
By enhancing threat detection, enabling real-time risk assessment, and providing predictive insights, AI is empowering organizations to build more robust defenses against cyber threats.
more →
Analytics Insight, Wednesday, September 18th, 2024
SecOps vs. DevOps: Understanding the key differences in modern IT security practices
more →
Security Boulevard, Wednesday, September 18th, 2024
You think you've nailed your third-party risk management (TPRM) strategy. You've assessed your vendors, reviewed their security postures, and your risk dashboard is looking pretty green.
more → Security Boulevard, Wednesday, September 18th, 2024
The Payment Card Industry Data Security Standard (PCI DSS) is a comprehensive set of security requirements that protect cardholder data from unauthorized access, misuse, and fraud. DMARC (Domain-based Message Authentication, Reporting, and Conformance) implementation will become mandatory for the payments industry by March 2025.
more → Security Boulevard, Tuesday, September 17th, 2024
The cybersecurity landscape is undergoing a significant shift. Traditionally, security operations centers (SOCs) relied on a complex ecosystem of disparate tools from various vendors.
more → HelpNet Security, Tuesday, September 17th, 2024
In this Help Net Security interview, Robert Ramsey, CEO at Rain Technology, discusses the growing threat of visual hacking, how it bypasses traditional cybersecurity measures, and the importance of physical barriers like switchable privacy screens.
more → Security Boulevard, Tuesday, September 17th, 2024
For decades, companies have struggled to modernize their legacy authorization systems, hindering security and user experience. These outdated approaches often lack the security features to protect sensitive data in today's digital world.
more → devops.com, Tuesday, September 17th, 2024
Over a decade ago, development and security were separate worlds. Dev teams would build features at breakneck speed, while security was an afterthought - a final hurdle before release. It was inefficient, frustrating, and - as it turned out - extremely risky.
more →
ITProToday, Monday, September 16th, 2024
IT security is vital for protecting systems, data, and networks. Explore strategies, critical domains, and career opportunities in protecting information assets.
more →
Security Boulevard, Monday, September 16th, 2024
The digital deception game is on track to becoming more intense. We're talking about artificial intelligence (AI) that mimics your boss's voice so well that it'll make you do a double-take; a deepfake that sends the stock market on a roller coaster, or a fake speech made by a world leader that misleads voters or instigates conflict between nations.
more → DataCenter Knowledge, Monday, September 16th, 2024
Tina D'Agostin, CEO of Alcatraz AI, shares essential practices for securing your data center in 2024.
more →
Analytics Insight, Friday, September 13th, 2024
Are you confident your vulnerability management is doing its job, or do you sometimes feel like it's falling short?
more → DARKReading, Friday, September 13th, 2024
In today's digital age, cybersecurity compliance is no longer just a legal necessity or a defensive measure; it has become a catalyst for innovation and growth.
more → HelpNet Security, Thursday, September 12th, 2024
In this Help Net Security, Erica Banks, VP and a leader in Booz Allen's civilian services business, discusses the Federal Cybersecurity Strategy's role in safeguarding national assets.
more → Security Boulevard, Thursday, September 12th, 2024
Over the past year, the world's critical infrastructure (CI) - including energy, healthcare, finance, communications, manufacturing, and transport - has suffered a constant barrage of attacks.
more → Security Boulevard, Wednesday, September 11th, 2024
In today's digital landscape, organizations face a multitude of cybersecurity threats, one of which is the often-overlooked issue of namespace collision.
more → HelpNet Security, Wednesday, September 11th, 2024
In this Help Net Security interview, John Hernandez, President and General Manager at Quest Software, shares practical advice for enhancing cybersecurity resilience against advanced threats. He underscores the need to focus on on-premises and cloud environments, adapt to new regulations, and address supply chain vulnerabilities.
more → Security Boulevard, Wednesday, September 11th, 2024
We get a lot of questions from our customers around the topic of artificial intelligence in combination with SAST (Static Application Security Testing). Everybody is looking for the next level of efficiency around DevSecOps.
more → DARKReading, Tuesday, September 10th, 2024
For modern applications built on Kubernetes and microservices, platform engineering is not just about building functional systems but also about embedding security into the fabric of those systems.
more → Security Boulevard, Tuesday, September 10th, 2024
Introduction Following the 2024 ThreatLabz Phishing Report, Zscaler ThreatLabz has been closely tracking domains associated with typosquatting and brand impersonation - common techniques used by threat actors to proliferate phishing campaigns.
more → HelpNet Security, Tuesday, September 10th, 2024
In this Help Net Security interview, Shane Cox, Director, Cyber Fusion Center at MorganFranklin Consulting, discusses the evolving methodologies and strategies in threat hunting and explains how human-led approaches complement each other to form a robust defense.
more → Security Boulevard, Tuesday, September 10th, 2024
Do you really know how exposed your organization is?
more → Security Boulevard, Monday, September 9th, 2024
A new, sophisticated Linux malware named 'sedexp' has been discovered, quietly evading detection since 2022.
more → Security Boulevard, Monday, September 9th, 2024
Cyber threats are becoming more frequent, sophisticated, and damaging in today's rapidly evolving digital landscape.
more → Security Boulevard, Monday, September 9th, 2024
When Google decided to stop trusting new TLS certificates from Entrust, it didn't just create a technical challenge-it unleashed an operational crisis for many organizations.
more → Security Boulevard, Monday, September 9th, 2024
Let's talk about the cybersecurity life you lead. I bet you often find yourself trapped in a cycle of superficial solutions and temporary fixes.
more → SearchSecq, Friday, September 6th, 2024
Identity threat detection and response (ITDR) is a collection of tools and best practices aimed at defending against cyberattacks that specifically target user identities or identity and access management (IAM) infrastructure.
more → Security Boulevard, Friday, September 6th, 2024
NIST has released Version 2.0 of its widely used Cybersecurity Framework (CSF), a guidance document for mitigating cybersecurity risks. This update is not just a revision but a transformative approach to secure digital assets and infrastructures.
more → Security Boulevard, Monday, September 2nd, 2024
Signature-based threat detection has been a central figure in cybersecurity from the start. However, its history in endpoint and network security reveals that the inherent limitations of signature-based approaches have often driven practitioners and vendors to shift toward behavioral methods.
more → techradar.pro, Friday, September 6th, 2024
Understanding the cybercrime ecosystem has never been more important than in 2024. Ransomware attacks and data breaches continue to proliferate, and it's imperative that executives understand what's driving the increase and more importantly how to prevent oneself from becoming a victim.
more →