Risk Management
The challenges organizations face in developing cyber skills have never been more acute. Too often, security teams find themselves locked into reactive modes, continuously...
Hi, what are you looking for?
SecurityWeek
Risk Management
Learn how attackers hide in plain sight—and what you can do to stop them without slowing down your business.
Risk Management
Patch Tuesday: Adobe documents hundreds of bugs across multiple products and warns of code execution, feature bypass risks.
Risk Management
Learn why your security controls matter more than theoretical risk scores and how exposure validation helps slash massive patch lists down to the few...
Risk Management
Despite massive investment, the explosion of sophisticated malware and deepfake attacks persists because organizations struggle to verify digital identities and establish fundamental trust.
Application Security
Adobe's security response team has pushed out a massive batch of patches to cover at least 46 vulnerabilities in a wide range of enterprise-facing...
Application Security
Backup-as-a-service firm HYCU has raised $53 million in a Series B funding round that brings the total invested in the company to $140.5 million.The...
Management & Strategy
The Coalition to Reduce Cyber Risk (CR2) announced this week that it has been joined by 37 organizations across eight countries in signing a...
Application Security
Hundreds of companies are showcasing their products and services this week at the 2022 edition of the RSA Conference in San Francisco.
Management & Strategy
The US Cybersecurity and Infrastructure Security Agency (CISA) has provided clarifications on the criteria for adding vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog.
Application Security
Hundreds of companies are showcasing their products and services this week at the 2022 edition of the RSA Conference in San Francisco.
Audits
Vendor security assessment company Whistic on Tuesday announced that it has raised $35 million in Series B funding, which brings the total investment in...
Application Security
Technology giant IBM has announced plans to acquire early-stage attack surface management startup Randori in a deal that signals a major expansion of Big...
Cloud Security
Hundreds of companies are showcasing their products and services this week at the 2022 edition of the RSA Conference in San Francisco.
Cybersecurity Funding
Security awareness provider CybSafe on Monday announced that it has raised $28 million in Series B funding, which brings the total raised by the...
Application Security
Venture capital powerhouse Sequoia is leading a massive $50 million early-stage investment in Chainguard, a startup created by a team of ex-Google software engineers...
Management & Strategy
The Shadowserver Foundation warns of the security risk associated with more than 3.6 million internet-exposed MySQL servers that accept connections on port 3306/TCP.
Cybercrime
The FBI issued an alert on Thursday to inform the higher education sector about the exposure of credentials that can allow threat actors to...
Application Security
SYN Ventures, a Florida-based venture capital firm placing early-stage bets in cybersecurity startups, has closed a new $300 million fund and announced the addition...
Management & Strategy
Endpoint security company Tanium and risk management solutions provider Reciprocity have each announced free risk assessment offerings this week.
Application Security
Enterprise identity protection vendor Semperis has banked $200 million in a new round of funding. SecurityWeek has learned that the latest funding values the...
Application Security
LimaCharlie, a California company supplying tools to run an MSSP or SOC on a pay-as-you-use model, has attracted $5.45 million in seed round financing.
Malware & Threats
Microsoft has warned organizations of a new wave of brute force cyberattacks that target SQL servers and use a rather uncommon living-off-the-land binary (LOLBin).Specifically,...
Incident Response
The US Cybersecurity and Infrastructure Security Agency (CISA) has warned organizations about two actively exploited VMware product vulnerabilities, and the agency believes two other...
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
RegisterLearn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.
RegisterExpert Insights
In a rapidly changing AI environment, CISOs are worried about investing in the wrong solution or simply not investing because they can’t decide what the best option is.
(Marc Solomon)
Adopting a layered defense strategy that includes human-centric tools and updating security components.
(Stu Sjouwerman)
A strong AI deployment starts with asking the right questions, mapping your risks, and thinking like an adversary — before it’s too late.
(Matt Honea)
It’s time for enterprises to stop treating unmanaged devices as an edge case and start securing them as part of a unified Zero Trust strategy.
(Etay Maor)
Many security professionals feel pressured to pursue leadership roles, but success can also mean going deeper, not just higher.
(Joshua Goldfarb)