Risk Management Archives

CONFERENCE Watch Now: Threat Detection & Incident Response (TDIR) Summit - Watch Event On-Demand

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Risk Management

Taming the Hacker Storm: Why Millions in Cybersecurity Spending Isn’t Enough

Despite massive investment, the explosion of sophisticated malware and deepfake attacks persists because organizations struggle to verify digital identities and establish fundamental trust.

Stu Sjouwerman2 days ago

Management & Strategy

Tech Giants Propose Standard For End-of-Life Security Disclosures

The OpenEoX model proposes a shared data format that can be integrated into SBOMs, security advisories, and other ecosystem tools.

Ryan NaraineApril 30, 2025

Network Security

How Do You Know If You’re Ready for a Red Team Partnership?

Before engaging in a full-scope exercise, it’s important to assess whether your program, people and processes are truly ready.

Trevin EdgeworthApril 29, 2025

Risk Management

Inside the Verizon 2025 DBIR: Five Trends That Signal a Shift in the Cyber Threat Economy

With over 12,000 breaches analyzed, this year’s DBIR reveals a landscape shaped by not just individual threats, but by entire economies of compromise.

Danelle AuApril 25, 2025

Application Security

Investors Bet on Ox Security to Guard Software Supply Chains

The funding frenzy in the software supply chain space now includes Ox Security, an early-stage Israeli startup that just raised a whopping $34 million...

Ryan NaraineSeptember 29, 2022

Management & Strategy

Report Shows How Long It Takes Ethical Hackers to Execute Attacks

A survey of more than 300 ethical hackers conducted by cybersecurity companies Bishop Fox and SANS Institute found that many could execute an end-to-end...

Eduard KovacsSeptember 28, 2022

Cybercrime

High-Profile Hacks Show Effectiveness of MFA Fatigue Attacks

What are MFA fatigue attacks and how can they be prevented?

Eduard KovacsSeptember 28, 2022

Application Security

Researchers Crowdsourcing Effort to Identify Mysterious Metador APT

Cybersecurity sleuths at SentinelLabs are calling on the wider threat hunting community to help decipher a new mysterious malware campaign hitting telcos, ISPs and...

Ryan NaraineSeptember 27, 2022

ICS/OT

NSA, CISA Explain How Threat Actors Plan and Execute Attacks on ICS/OT

US government agencies have shared a new cybersecurity resource that can help organizations defend critical control systems against threat actors.

Eduard KovacsSeptember 23, 2022

Application Security

CrowdStrike to Buy Reposify, Invests in Salt Security

Endpoint detection and response pioneer CrowdStrike is elbowing its way into new security markets with a planned acquisition of attack surface management startup Reposify...

Ryan NaraineSeptember 20, 2022

Cyber Insurance

Quantifying ROI in Cybersecurity Spend

In cybersecurity, there are too many variables on both the attack and defense sides to easily calculate ROI for specific spends

Kevin TownsendSeptember 20, 2022

Application Security

Uber Confirms Hacker Accessed Internal Tools, Bug Bounty Dashboard

Ride-hailing giant Uber is moving quickly to downplay the impact from a devastating security breach that included the theft of employee credentials, access to...

Ryan NaraineSeptember 19, 2022

Application Security

Industry Reactions to Govt Requiring Security Guarantees From Software Vendors

The White House has announced new guidance with the aim of ensuring that federal agencies only use secure software.

Eduard KovacsSeptember 16, 2022

Application Security

Rust Gets a Dedicated Security Team

The non-profit Rust Foundation has scored funding to build a dedicated security team to proactively identify and address security defects in the popular Rust...

Ryan NaraineSeptember 15, 2022

Application Security

US Government Wants Security Guarantees From Software Vendors

Eduard KovacsSeptember 15, 2022

Application Security

Dig Security Banks $34 Million for Cloud Data Security

Just four months after emerging from stealth with $11 million in seed funding, Dig Security has banked an additional $34 million in venture capital...

Ryan NaraineSeptember 14, 2022

Application Security

Microsoft Raises Alert for Under-Attack Windows Flaw

Microsoft on Tuesday warned that its security teams have detected zero-day exploitation of a critical vulnerability in its flagship Windows platform.

Ryan NaraineSeptember 13, 2022

Application Security

Microsoft Dives Into Iranian Ransomware APT Attacks

Microsoft has published an analysis of the ransomware attacks associated with a subgroup of the Iran-linked advanced persistent threat (APT) actor Phosphorus.

Ionut ArghireSeptember 9, 2022

Application Security

Huntress Scores $40M Funding, Plans International Expansion

Managed detection and response (MDR) platform provider Huntress on Thursday announced the closing of a $40 million debt financing round to speed up global...

Ryan NaraineSeptember 8, 2022

Application Security

Cybersecurity M&A Roundup: 41 Deals Announced in August 2022

Forty-one cybersecurity-related M&A deals were announced in August 2022.

Eduard KovacsSeptember 8, 2022

Application Security

Zyxel Patches Critical Vulnerability in NAS Firmware

Networking solutions provider Zyxel has released patches for a critical-severity vulnerability impacting the firmware of multiple network attached storage (NAS) device models.

Ionut ArghireSeptember 7, 2022

Application Security

Academics Devise Open Source Tool For Hunting Node.js Security Flaws

A group of academic researchers have designed an open source Node.js bug hunting tool that has already identified 180 security vulnerabilities.

Ionut ArghireAugust 30, 2022

Application Security

Atlassian Ships Urgent Patch for Critical Bitbucket Vulnerability

Atlassian’s security response team has issued an urgent advisory to warn of a critical command injection flaw in its Bitbucket Server and Data Center...

Ryan NaraineAugust 26, 2022

Application Security

LastPass Says Source Code Stolen in Data Breach

Password management software firm LastPass has suffered a data breach that led to the theft of source code and proprietary technical information.

Ryan NaraineAugust 25, 2022

Page 7 of 100« First ‹ Previous 3 4 5 678 9 10 11 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Risk Management

Taming the Hacker Storm: Why Millions in Cybersecurity Spending Isn’t Enough

Management & Strategy

Tech Giants Propose Standard For End-of-Life Security Disclosures

Network Security

How Do You Know If You’re Ready for a Red Team Partnership?

Risk Management

Inside the Verizon 2025 DBIR: Five Trends That Signal a Shift in the Cyber Threat Economy

Application Security

Investors Bet on Ox Security to Guard Software Supply Chains

Management & Strategy

Report Shows How Long It Takes Ethical Hackers to Execute Attacks

Cybercrime

High-Profile Hacks Show Effectiveness of MFA Fatigue Attacks

Application Security

Researchers Crowdsourcing Effort to Identify Mysterious Metador APT

ICS/OT

NSA, CISA Explain How Threat Actors Plan and Execute Attacks on ICS/OT

Application Security

CrowdStrike to Buy Reposify, Invests in Salt Security

Cyber Insurance

Quantifying ROI in Cybersecurity Spend

Application Security

Uber Confirms Hacker Accessed Internal Tools, Bug Bounty Dashboard

Application Security

Industry Reactions to Govt Requiring Security Guarantees From Software Vendors

Application Security

Rust Gets a Dedicated Security Team

Application Security

US Government Wants Security Guarantees From Software Vendors

Application Security

Dig Security Banks $34 Million for Cloud Data Security

Application Security

Microsoft Raises Alert for Under-Attack Windows Flaw

Application Security

Microsoft Dives Into Iranian Ransomware APT Attacks

Application Security

Huntress Scores $40M Funding, Plans International Expansion

Application Security

Cybersecurity M&A Roundup: 41 Deals Announced in August 2022

Application Security

Zyxel Patches Critical Vulnerability in NAS Firmware

Application Security

Academics Devise Open Source Tool For Hunting Node.js Security Flaws

Application Security

Atlassian Ships Urgent Patch for Critical Bitbucket Vulnerability

Application Security

LastPass Says Source Code Stolen in Data Breach

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

Security Theater or Real Defense? The KPIs That Tell the Truth

Taming the Hacker Storm: Why Millions in Cybersecurity Spending Isn’t Enough

Is AI Use in the Workplace Out of Control?

Sharing Intelligence Beyond CTI Teams, Across Wider Functions and Departments

Rising Tides: Kelley Misata on Bringing Cybersecurity to Nonprofits

Daily Briefing Newsletter