Security Experts:

WRITE FOR US

IT Security News Headlines

rss icon

Fortinet Patches 6 High-Severity Vulnerabilities
US Charges 8 People Over Cybercrime, Tax Fraud Scheme
Religious Minority Persecuted in Iran Targeted With Sophisticated Android Spyware
US Electric Cooperatives Awarded $15 Million to Expand ICS Security Capabilities
CISA Urges Organizations to Implement Phishing-Resistant MFA
long dotted

More Security Headlines

Hackers Stole Source Code, Personal Data From Dropbox Following Phishing Attack
Dropbox has suffered a data breach after employees fell for a phishing attack. The hackers gained access to source code and personal data. [Read More]
Microsoft Patches Azure Cosmos DB Flaw Leading to Remote Code Execution
A missing authentication check vulnerability in Azure Cosmos DB could have allowed an attacker to execute arbitrary code remotely. [Read More]
Anxiously Awaited OpenSSL Vulnerability's Severity Downgraded From Critical to High
CVE-2022-3602 was announced to be the first critical OpenSSL vulnerability found since 2016, but its severity has been downgraded to ‘high’. [Read More]
FTC Orders Chegg to Improve Security Following Multiple Data Breaches
The FTC has reached an agreement with education technology provider Chegg over the company’s cybersecurity mishaps that led to several data breaches. [Read More]
Bed Bath & Beyond Investigating Data Breach After Employee Falls for Phishing Attack
Bed Bath & Beyond has suffered a data breach after an employee fell victim to a phishing attack. [Read More]
US Gov Issues Supply Chain Security Guidance for Software Suppliers
CISA, NSA, and ODNI have released a set of recommendations on how software suppliers can help secure the software supply chain. [Read More]
Engineering Workstations Used as Initial Access Vector in Many ICS/OT Attacks: Survey
Nozomi Networks and SANS release their 2022 OT/ICS Cybersecurity Report, which shows that engineering workstations are increasingly used as an initial access vector. [Read More]
Musk Now Gets Chance to Defeat Twitter's Many Fake Accounts
Twitter’s unending fight against spam accounts is now a problem for new owner Elon Musk, who pledged in April to defeat the bot scourge or “die trying!” [Read More]
Bearer, Notebook Labs, Protexxa Raise Millions in Seed Funding
Bearer, Notebook Labs, and Protexxa, cybersecurity startups dealing with data security, web3 identity, and enterprise cyber hygiene, received a total of over $10 million in seed funding. [Read More]
US Agencies Issue Guidance on Responding to DDoS Attacks
CISA, the FBI, and MS-ISAC have issued a joint guide to help federal agencies reduce the likelihood and impact of DDoS attacks. [Read More]

SecurityWeek Experts

rss icon

Jeff Orloff's picture
Tailoring Security Training to Specific Kinds of Threats
Jeff Orloff - Training & Certification
By focusing on attack tactics and techniques that pose clear and present danger to the business, a company can achieve the greatest return on its training initiatives.
Read full story
Gordon Lawson's picture
How to Prepare for New SEC Cybersecurity Disclosure Requirements
Gordon Lawson - Incident Response
The new SEC requirements are putting on paper what many companies—public and private—should have been investing in already.
Read full story
Landon Winkelvoss's picture
Leveraging Managed Services to Optimize Your Threat Intelligence Program During an Economic Downturn
Landon Winkelvoss - Risk Management
How organizations can use managed services to optimize their threat intelligence program during an economic downturn.
Read full story
Torsten George's picture
Cybersecurity Awareness Month: 5 Actionable Tips
Torsten George - Network Security
Here are five best practices for defeating against most attacks, hopefully making the need for future Cybersecurity Awareness Months obsolete.
Read full story
Marc Solomon's picture
Anticipation and Action: What's Next in SOC Modernization
Marc Solomon - Network Security
Within the context of security operations, anticipation teams use internal and external threat and event data across their security infrastructure for context and analytics and to become more proactive.
Read full story
Marie Hattar's picture
Automotive Security Threats Are More Critical Than Ever
Marie Hattar - ICS/OT
Cybersecurity within the automotive industry has a long way to go to catch up to traditional enterprise cybersecurity standards and best practices.
Read full story
Gordon Lawson's picture
The Zero Day Dilemma
Gordon Lawson - Endpoint Security
Why are zero day exploits so effective, and so highly prized by bad actors? The reason has to do with the way cyber security defenses work.
Read full story
John Maddison's picture
Multi-Cloud Networks Require Cloud-Native Protection
John Maddison - Cloud Security
By integrating with native security services on major cloud platforms, a CNP solution can effectively correlate security findings to pinpoint risks and recommend effective mitigation.
Read full story
Torsten George's picture
"Left and Right of Boom" - Having a Winning Strategy
Torsten George - Endpoint Security
Unfortunately, there is no such thing as 100 percent protection. Therefore, we cannot solely focus on “Left of Boom” processes, but also have to talk about the “Right of Boom”.
Read full story
Marc Solomon's picture
How Organizational Structure, Personalities and Politics Can Get in the Way of Security
Marc Solomon - Incident Response
Cyberattacks and data breaches continue to rise year-over-year and another so-called silver bullet technology isn’t going to stop that trend.
Read full story