Risk Management Archives

SECURITYWEEK NETWORK:

Security Experts:

Hi, what are you looking for?

Risk Management

CISA Provides Resources for Securing K-12 Education System

CISA has published a report detailing the cybersecurity risks to the K-12 education system and recommendations on how to secure it.

Ionut Arghire3 days ago

Cybersecurity’s Rising Business Importance and Why CISOs Make Great Board Members

CISO Strategy

Why CISOs Make Great Board Members

Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make...

Galina Antova4 days ago

Risk Management

A Change in Mindset: From a Threat-based to Risk-based Approach to Security

A threat-based approach to security often focuses on a checklist to meet industry requirements but overlooked the key component of security: reducing risk.

Marie HattarJanuary 20, 2023

Risk Management

Hack the Pentagon 3.0 Bug Bounty Program to Focus on Facility Control Systems

The Department of Defense is launching the third installment of its ‘Hack the Pentagon’ bug bounty program, which will focus on the Facility Related...

Ionut ArghireJanuary 16, 2023

Endpoint Security

Windows 7 Extended Security Updates, Windows 8.1 Reach End of Support

Today, on January 10, 2023, Windows 7 Extended Security Updates (ESU) and Windows 8.1 have reached their end of support dates.

Eduard KovacsJanuary 10, 2023

ICS/OT

NIST Finalizes Cybersecurity Guidance for Ground Segment of Space Operations

The National Institute of Standards and Technology (NIST) has published the final version of its guidance on applying the Cybersecurity Framework to the ground...

Eduard KovacsJanuary 4, 2023

Application Security

Patch Tuesday: Microsoft Plugs Windows Hole Exploited in Ransomware Attacks

Microsoft on Tuesday pushed a major Windows update to address a security feature bypass already exploited in global ransomware attacks.The operating system update, released...

Ryan NaraineDecember 13, 2022

Application Security

NSA Outs Chinese Hackers Exploiting Citrix Zero-Day

Virtualization technology giant Citrix on Tuesday scrambled out an emergency patch to cover a zero-day flaw in its networking product line and warned that...

Ryan NaraineDecember 13, 2022

Application Security

Fortinet Ships Emergency Patch for Already-Exploited VPN Flaw

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Ryan NaraineDecember 12, 2022

Funding/M&A

Over 4,000 Vulnerable Pulse Connect Secure Hosts Exposed to Internet

More than 4,000 internet-accessible Pulse Connect Secure hosts are impacted by at least one known vulnerability, attack surface management firm Censys warns.

Ionut ArghireDecember 9, 2022

Cloud Security

Apple Scraps CSAM Detection Tool for iCloud Photos

Apple has scrapped plans to ship a controversial child pornography protection tool for iCloud Photos, a concession to privacy rights advocates who warned it...

Ryan NaraineDecember 8, 2022

Compliance

TikTok Hit by US Lawsuits Over Child Safety, Security Fears

TikTok was hit Wednesday with a pair of lawsuits from the US state of Indiana, which accused it of making false claims about the...

AFPDecember 8, 2022

Application Security

Big Tech Vendors Object to US Gov SBOM Mandate

The U.S. government’s mandates around the creation and delivery of SBOMs (software bill of materials) to help mitigate supply chain attacks has run into...

Ryan NaraineDecember 7, 2022

ICS/OT

US Agencies Told to Assess IoT/OT Security Risks to Boost Critical Infrastructure Protection

The US Government Accountability Office (GAO) has urged several federal agencies to conduct cybersecurity-related assessments in an effort to improve the protection of certain...

Eduard KovacsDecember 5, 2022

Cyber Insurance

Cybersecurity M&A Roundup: 35 Deals Announced in November 2022

Eduard KovacsDecember 5, 2022

Cybercrime

Report: California Gun Data Breach Was Unintentional

California’s Department of Justice mistakenly posted the names, addresses and birthdays of nearly 200,000 gun owners on the internet because officials didn’t follow policies...

Associated PressDecember 2, 2022

Application Security

Investors Double Down on Pangea Cyber API Security Bet

Pangea Cyber, an early stage startup working on technology in the API security services space, has banked $26 million in a new funding round...

Ryan NaraineDecember 1, 2022

Application Security

One Year Later: Log4Shell Remediation Slow, Painful Slog

Almost exactly a year after the Log4Shell security crisis sent defenders scrambling to reduce attack surfaces, new data shows that remediation has been a...

Ryan NaraineNovember 30, 2022

Page 2 of 161‹ Previous 123 4 5 6 Next ›Last »

SECURITYWEEK NETWORK:

Security Experts:

Risk Management

CISA Provides Resources for Securing K-12 Education System

CISO Strategy

Why CISOs Make Great Board Members

Risk Management

A Change in Mindset: From a Threat-based to Risk-based Approach to Security

Risk Management

Hack the Pentagon 3.0 Bug Bounty Program to Focus on Facility Control Systems

Endpoint Security

Windows 7 Extended Security Updates, Windows 8.1 Reach End of Support

ICS/OT

NIST Finalizes Cybersecurity Guidance for Ground Segment of Space Operations

Application Security

Patch Tuesday: Microsoft Plugs Windows Hole Exploited in Ransomware Attacks

Application Security

NSA Outs Chinese Hackers Exploiting Citrix Zero-Day

Application Security

Fortinet Ships Emergency Patch for Already-Exploited VPN Flaw

Funding/M&A

Over 4,000 Vulnerable Pulse Connect Secure Hosts Exposed to Internet

Cloud Security

Apple Scraps CSAM Detection Tool for iCloud Photos

Compliance

TikTok Hit by US Lawsuits Over Child Safety, Security Fears

Application Security

Big Tech Vendors Object to US Gov SBOM Mandate

ICS/OT

US Agencies Told to Assess IoT/OT Security Risks to Boost Critical Infrastructure Protection

Cyber Insurance

Cybersecurity M&A Roundup: 35 Deals Announced in November 2022

Cybercrime

Report: California Gun Data Breach Was Unintentional

Application Security

Investors Double Down on Pangea Cyber API Security Bet

Application Security

One Year Later: Log4Shell Remediation Slow, Painful Slog

Featured

Management & Strategy

Industry Reactions to Hive Ransomware Takedown: Feedback Friday

Ransomware

Hive Ransomware Operation Shut Down by Law Enforcement

Management & Strategy

Dozens of Cybersecurity Companies Announced Layoffs in Past Year

Cybercrime

Malicious Prompt Engineering With ChatGPT

Nation-State

North Korean APT Expands Its Attack Repertoire

Data Breaches

GoTo Says Hackers Stole Encrypted Backups, MFA Settings

Nation-State

FBI Confirms North Korean Hackers Behind $100 Million Horizon Bridge Heist

Latest News

IoT Security

Critical Vulnerability Impacts Over 120 Lexmark Printers

Vulnerabilities

BIND Updates Patch High-Severity, Remotely Exploitable DoS Flaws

Email Security

Microsoft Urges Customers to Patch Exchange Servers

Cyberwarfare

Iranian APT Leaks Data From Saudi Arabia Government Under New Persona

Ransomware

US Reiterates $10 Million Reward Offer After Disruption of Hive Ransomware

Cyberwarfare

Cyberattacks Target Websites of German Airports, Admin

Cybercrime

US Infiltrates Big Ransomware Gang: ‘We Hacked the Hackers’