2,322 articles · page 28 of 47
CSO Online, Monday, August 12th, 2024
The industry's biggest annual get together offers CISOs a chance to chart industry trends. From cloud security to AI, here's what's notable about this year's 'hacker summer camp.'
more →
Search Security, Monday, August 12th, 2024
Cutting through an EDR tool's marketing hype is difficult. Ask vendors questions, and conduct testing before buying a tool to determine if it solves your organization's pain points.
more →
Search Security, Monday, August 12th, 2024
Traditional MFA provides benefits but tests users' patience. Explore how invisible MFA can make it easier to access resources and reduce MFA fatigue.
more → TechCrunch, Monday, August 12th, 2024
Thousands of hackers, researchers and security professionals descended on the Black Hat and Def Con security conferences in Las Vega, an annual pilgrimage aimed at sharing the latest research, hacks and knowledge across the security community.
more →
Security Boulevard, Friday, August 9th, 2024
In the Identity Defined Security Alliance's (IDSA) 2024 Trends in Identity Security report, granting privileged access in line with the principle of least privilege came second, only behind multi-factor authentication, as the security outcome that surveyed leaders are most engaged in.
more →
Security Boulevard, Thursday, August 8th, 2024
Information disseminated online is increasingly created with the help of artificial intelligence, but such tools are far from perfect. Earlier in 2024, Google Chrome users reported the search engine's AI overview provided them with misleading information -- such as telling them to use glue to keep cheese from sliding off pizza and eat one rock per day. This is known as an AI hallucination. In today's digital age, cybersecurity is a central pillar of Governance, Risk, and Compliance (GRC).
more → Cyber Defense Magazine, Wednesday, August 7th, 2024
I have now had the privilege of attending RSA for over 20 years, yet this conference never grows old! My RSA 2024 started on Sunday, speaking with a group of Cybersecurity executives on translating cybersecurity risks for a Board of Directors.
more →
Techstrong.ai, Wednesday, August 7th, 2024
The cybersecurity industry's obsession with generative AI continued for a second year in a row at Black Hat 2024, where security experts are trying to figure out if the revolutionary technology is friend or foe.
more →
Security Boulevard, Tuesday, August 6th, 2024
Active Directory (AD) lies at the heart of your organization's Windows network, silently orchestrating user access, authentication, and security. But do you truly understand its workings? This blog peels back the layers of AD, revealing its core components and how they empower centralized control. Explore how AD streamlines administration, enhances security, and ensures seamless network operations.
more → Virtualization Review, Tuesday, August 6th, 2024
The top cybersecurity threat in the cloudscape has changed from a couple years ago says a new report from the Cloud Security Alliance (CSA), which provided handy mitigation strategies and suggested AI can help.
more →
Security Boulevard, Tuesday, August 6th, 2024
Managing hundreds or thousands of endpoints is hard enough when they're all located in the same office or campus. But when you have endpoints scattered across the world - as many global businesses do - you face an extra set of challenges when it comes to managing and patching them.
more → Analytics Insight, Saturday, August 3rd, 2024
Essential Approach for Data Privacy and Security in the year 2024
more →
Search Security, Friday, August 2nd, 2024
Endpoint security is the protection of endpoint devices against cybersecurity threats.
more → DARK Reading, Friday, August 2nd, 2024
Having a robust identity continuity plan is not just beneficial but essential for avoiding financially costly and potentially brand-damaging outages.
more →
Security Boulevard, Thursday, August 1st, 2024
The ever-changing digital terrain has rendered the formerly dependable castle-and-moat strategy for cybersecurity-which relied solely on firewalls-obviously insufficient. A more all-encompassing security approach is required due to the increase in sophisticated cyberattacks that come from both inside and outside of enterprises.
more → HelpNet Security, Thursday, August 1st, 2024
In this Help Net Security interview, Christos Tulumba, CISO at Veritas Technologies, discusses the key factors contributing to increased personal liability risks for CISOs. These risks are driven by heightened cybersecurity threats, evolving regulations, and increased public awareness of security breaches.
more →
AiTHORITY, Thursday, August 1st, 2024
Even seemingly minor vulnerabilities can have catastrophic consequences if left unaddressed. Failing to accurately represent an organization's security stance can lead to expensive legal disputes and significant reputational damage if vulnerabilities are exploited by adversaries.
more →
Security Boulevard, Wednesday, July 31st, 2024
Application detection and response (ADR) is an emerging cybersecurity category that focuses on application visibility, protection, and remediation. ADR is a comprehensive and proactive approach to application security that incorporates automation, prioritization, contextual analysis, and allows security and development teams to facilitate enhanced threat detection and incident response.
more → Security Boulevard, Wednesday, July 31st, 2024
As tens of thousands of cybersecurity professionals, executives and policymakers converge on the Las Vegas strip for 'Hacker Summer Camp'- the annual Black Hat, DEF CON and B-Sides conferences - the stakes couldn't be higher.
more → Security Boulevard, Wednesday, July 31st, 2024
An analysis published today by Cribl, a data management platform provider, suggests that the amount of data being processed and analyzed by cybersecurity teams is increasing exponentially.
more → HelpNet Security, Tuesday, July 30th, 2024
In this Help Net Security interview, Grant Geyer, Chief Strategy Officer at Claroty, discusses the prevalent vulnerabilities in Windows-based engineering workstations (EWS) and human-machine interfaces (HMI) within OT environments. Geyer also addresses the challenges and solutions for securing remote access to critical OT assets.
more → ITPro, Tuesday, July 30th, 2024
CISOs still cite remote work as one of their major security sticking points four years on from the widespread shift at the beginning of COVID
more →
Security Boulevard, Friday, July 26th, 2024
Distributed Denial of Service (DDoS) attacks have become increasingly sophisticated, posing significant threats to businesses worldwide. Protecting assets and ensuring continuous availability of services is crucial for any organization. This blog walks into the wide road of why DDoS stress testing is essential for effective DDoS protection.
more → readwrite, Friday, July 26th, 2024
Not having a password manager and reusing passwords is like using the same key for your front door, back door, windows, cars, shed, safe, and anything and everything else that requires a key to use or access
more →
Security Boulevard, Friday, July 26th, 2024
A surge in deepfake attacks and identity fraud has led organizations to develop more effective response strategies, with 60% of IT and security professionals implementing defenses against AI-generated deepfakes.
more → theCUBEresearch, Friday, July 26th, 2024
In this episode of the SecurityANGLE, our conversation centers on the cybersecurity risks posed by enterprise collaboration tools and how to combat them. I'm joined by frequent cohost, fellow analyst, engineer, and member of theCUBE Collective community of independent analysts, Jo Peterson.
more →
Security Boulevard, Thursday, July 25th, 2024
'Shadow IT' is more than a buzzword and isn't just about employees going rogue; shadow IT also points to unmet employee tech needs and perceived bottlenecks in corporate protocols.
more → HelpNet Security, Thursday, July 25th, 2024
Somewhere, right now, a CISO is in a boardroom making their best case for stronger identity threat detection and response (ITDR) initiatives to lower the risk of intrusion.
more → Security Boulevard, Thursday, July 25th, 2024
The accountability for security failures or breaches typically falls on security teams or specific IT leaders rather than higher-level executives or the board.
more → techradar.pro, Thursday, July 25th, 2024
Despite being the first line of defense against cyber-attacks, many employees claim they have never received any form of cybersecurity training from their employers.
more →
DARKReading, Wednesday, July 24th, 2024
With every new third-party provider and partner, an organization's attack surface grows. How, then, do enterprises use threat intelligence to enhance their third-party risk management efforts?
more → Security Boulevard, Wednesday, July 24th, 2024
The shift to the cloud and the accelerated adoption of critical software as a service (SaaS) data applications has proven to be a security challenge for many chief information officers (CIOs) and chief information security officers (CISOs).
more → Security Boulevard, Tuesday, July 23rd, 2024
Security experts and government bodies have strongly advocated for companies adopting multifactor authentication (MFA) in recent years. But despite the increased adoption of MFA, security defenses don't seem to be bolstered against rampant ransomware actors. In fact, recent findings suggest an increase in ransomware losses.
more → Search Security, Monday, July 22nd, 2024
Exposure management is a cybersecurity approach to protecting exploitable IT assets. It involves identifying, monitoring, preventing and remediating risks and vulnerabilities on exposed assets, such as endpoints, servers, applications and cloud-based resources.
more → SiliconANGLE , Monday, July 22nd, 2024
The world is still taking stock after a faulty software update from CrowdStrike Holdings Inc. caused one of the largest-ever information technology outages
more →
Whatis, Monday, July 22nd, 2024
A CrowdStrike update caused a massive IT outage, crashing millions of Windows systems. Critical services and business operations were disrupted, revealing tech reliance risks.
more → Search Security, Monday, July 22nd, 2024
Cloud detection and response is the latest detection and response tool. Explore how it differs from endpoint, network and extended detection and response tools.
more → Security Boulevard, Monday, July 22nd, 2024
Your organization might have many cybersecurity defenses in place, but defenses alone are not enough to protect you from today's multi-faceted cyberattacks.
more → Security Boulevard, Friday, July 19th, 2024
This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our next Threat Horizons Report that we just released.
more → Security Boulevard, Friday, July 19th, 2024
A vulnerability assessment involves identifying, classifying, and prioritizing security vulnerabilities within an IT infrastructure. This comprehensive evaluation determines if an IT system is susceptible to known vulnerabilities. It also assigns severity levels to these vulnerabilities and recommends mitigation steps as necessary.
more → CybetSaint, Friday, July 19th, 2024
Cyber risk management has taken center stage for managing and assessing cybersecurity. Security professionals who have taken a risk-first approach to replacing legacy GRC tools have done so for several reasons.
more →
Security Boulevard, Friday, July 19th, 2024
Cybersecurity stands as a pivotal element within any organization's infrastructure. Given the rising frequency of cyber threats, a strong framework is indispensable for defending against these risks. One notable solution is the NIST Cybersecurity Framework. But what is it, and how can it benefit your organization?
more → Security Boulevard, Thursday, July 18th, 2024
Integrating hybrid cloud has become a cornerstone for the DevOps team in today's rapidly evolving digital landscape. With the combination of public, on-premises and private cloud environments, DevOps teams have maximum flexibility, allowing them to deploy applications and microservices across all clouds.
more → Security Boulevard, Thursday, July 18th, 2024
In the cyber security arena, the decision to mitigate or remediate a vulnerability can be pivotal. Choosing the right action-whether to reduce the risk with temporary measures or eliminate the threat altogether-depends on a deep understanding of your current security controls, their effectiveness, and availability.
more → DARK Reading, Wednesday, July 17th, 2024
The tactic is not new, but there has been a steady increase in its use as of this spring.
more → Security Boulevard, Wednesday, July 17th, 2024
Prevent Cyber Breaches with Cyber Threat Intelligence!
more → Security Boulevard, Tuesday, July 16th, 2024
As we move into new business strategies or transition to new enterprise deployment models CISOs must constantly look to update the risk register and security program controls.
more → Search Security, Tuesday, July 16th, 2024
An intrusion detection system monitors (IDS) network traffic for suspicious activity and sends alerts when such activity is discovered.
more → Cloud Native Now, Tuesday, July 16th, 2024
When we think of digital identity, it is usually in terms of human beings - personal logins, usernames, passwords, and the like that enable us to access apps and services. However, a major part of digital identity is being ignored within organizations - machine identities.
more →
HelpNet Security, Tuesday, July 16th, 2024
This article provides an overview of the major data breaches we covered in 2024 so far, highlighting incidents involving Trello, AnyDesk, France Travail, Nissan, MITRE, Dropbox, BBC Pension Scheme, TeamViewer, Advance Auto Parts, and AT&T.
more →