Application Security
Salt Security emerged from stealth mode on Tuesday with a solution designed to identify and prevent API attacks, and $10 million in funding.
Hi, what are you looking for?
SecurityWeek
Security Architecture
While the Security Posture Management buzz is real, its long-term viability depends on whether it can deliver measurable outcomes without adding more complexity.
Security Architecture
Which Security Testing Approach is Right for You: BAS, Automated Penetration Testing, or Both?
Security Architecture
A new GAO report assesses that the Coast Guard needs to improve Maritime Transportation System (MTS) cybersecurity.
Security Architecture
Google’s adoption of memory safe programming languages now includes the deployment of Rust in legacy low-level firmware codebases.
Cloud Security
Amazon Web Services (AWS) on Wednesday announced the launch of Amazon WorkLink, a service that enables organizations to provide employees easy and secure access...
Audits
The Payment Card Industry Security Standards Council (PCI SSC) this week announced new security standards for the design, development and maintenance of payment software.
Incident Response
The failure of President Donald Trump and the Democratic Party to reach an agreement over funding for the controversial Mexico border wall has led...
Risk Management
A recently published report from the United States Department of Defense (DoD) Inspector General shows that, while the Department has improved its security posture,...
Audits
A team of researchers, including experts involved in the discovery of the Meltdown and Spectre vulnerabilities, have disclosed a new type of side-channel attack...
Artificial Intelligence
The Cybersecurity Industry Doesn't Have Artificial Intelligence Right Yet, But it is Promising Technology
Security Architecture
Technical Information of U.S. Ballistic Missile Defense System is Improperly Protected, Audit FindsSecurity controls and processes necessary to protect ballistic missile defense system (BMDS) technical information...
Application Security
Amazon Web Services on Wednesday announced the launch of AWS Security Hub, a service designed to aggregate and prioritize alerts from AWS and third-party...
ICS/OT
While the Common Vulnerability Scoring System (CVSS) can be useful for rating vulnerabilities, the scores assigned to flaws affecting industrial control systems (ICS) may...
Audits
The U.S. Office of Personnel Management (OPM) has improved its security posture since the data breaches disclosed in 2015, but many issues are still...
Identity & Access
Google on Monday announced the launch of reCAPTCHA v3, which aims to improve user experience by removing the need for challenges.
Application Security
IBM Security on Monday unveiled a new cloud-based platform that combines the company's own capabilities with data, applications and tools from more than a...
Incident Response
The outcome of an intelligence operation depends largely on the data that fuels it. Even the most sophisticated operation will fail to produce intelligence...
Network Security
Mozilla this week announced that the distrust of older Symantec certificates, initially planned for
Cyberwarfare
The U.S. Senate Committee on Homeland Security and Governmental Affairs on Wednesday voted to approve several cybersecurity bills, including ones related to incident response,...
Application Security
Rapid7 announced on Thursday that its Insight Platform now features automation and orchestration capabilities through a new tool called InsightConnect.
Security Architecture
Depending on the study you consult, 74 percent to 90 percent of organizations believe they are vulnerable to insider thre
Cybersecurity Funding
Verodin, a Virginia-based company that helps organizations assess the effectiveness of their cybersecurity controls, on Tuesday announced that it has raised $21 million in...
Application Security
GitHub announced on Thursday that developers will be warned if the Python packages used by their applications are affected by known vulnerabilities.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
RegisterLearn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.
RegisterExpert Insights
In a rapidly changing AI environment, CISOs are worried about investing in the wrong solution or simply not investing because they can’t decide what the best option is.
(Marc Solomon)
Adopting a layered defense strategy that includes human-centric tools and updating security components.
(Stu Sjouwerman)
A strong AI deployment starts with asking the right questions, mapping your risks, and thinking like an adversary — before it’s too late.
(Matt Honea)
It’s time for enterprises to stop treating unmanaged devices as an edge case and start securing them as part of a unified Zero Trust strategy.
(Etay Maor)
Many security professionals feel pressured to pursue leadership roles, but success can also mean going deeper, not just higher.
(Joshua Goldfarb)