Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Amazon has shut down the Alexa ranking service and, while it may not be immediately obvious, the decision does have some impact on the cybersecurity industry. [Read More]
By the end of 2023, GitHub will mandate that all code contributors secure their computers with at least one form of two-factor authentication (2FA) account protection. [Read More]
The U.S. government is barreling ahead with plans to mitigate future threats from quantum computing with a new White House memo directing federal agencies to jumpstart an all-hands-on-deck approach to migrating to quantum-resistant technologies. [Read More]
Threat hunters at Kaspersky find a malicious campaign that abuses Windows event logs to store fileless last stage Trojans and keep them hidden in the file system. [Read More]
Mandiant warns that a new threat actor is using backdoors to remain undetected for "an order of magnitude longer than the average dwell time of 21 days in 2021." [Read More]
Traceable AI, a startup building technology to reduce attack surfaces in APIs, has banked a new $60 million funding round that values the company at $450 million. [Read More]
The attackers used stolen OAuth tokens to access GitHub accounts, but cloned only specific private repositories. [Read More]
German wind turbine giant Deutsche Windtechnik discloses disruptive ransomware compromise. [Read More]
Federal investigators say a cyber attack on Adaptive Health Integrations affected more than a half-million customers. [Read More]
CISA has added former DNC and Yahoo CISO Bob Lord to its stable of technical advisors. [Read More]
- 1 of 186
- ››
FEATURES, INSIGHTS // Incident Response
Organizations need to look beyond preventive measures when it comes to dealing with today’s ransomware threats and invest in ransomware response, which improves their ability to prepare and quickly recover endpoints from ransomware attacks.
As threat actors continue to evolve their TTPs to take advantage of crises and outbreaks, the intelligence sources and information sharing mechanisms available to help will become even more important.
Many think open source intelligence is just another name for better googling. They are wrong. Good open source and threat intelligence are derived from three core capabilities.
Vendor agnostic technology, married with actionable, globally-sourced, and continually evolving intelligence, augmented by humans, is needed to defend our enterprises.
There are areas where governments can learn from the private sector and vice-versa, which will help both sides adapt more quickly and effectively to a continuously evolving threat environment.
I foresee a convergence of the tooling for telemetry aggregation, threat detection, managed services and remediation as a key milestone in the evolution of the modern SOC.
When automation is consciously balanced between humans and machines, we can ensure security teams always have the best tool for the job.
An open integration architecture provides the greatest access to data from technologies, threat feeds and other third-party sources, and the ability to drive action back to those technologies once a decision is made.
You risk limiting the value you can derive from your next security investment without first thinking about your top use cases and the capabilities needed to address them.
Conducting scaled and cost-effective attack surface and digital threat monitoring gives organizations of all sizes the best chance of identifying and defeating their adversaries.
- 1 of 29
- ››
Get the Daily Briefing
- Nikkei Says Customer Data Likely Impacted in Ransomware Attack
- New Brute Force Attacks Against SQL Servers Use PowerShell Wrapper
- DoJ Will No Longer Use CFAA to Charge Ethical Hackers
- Pro-Russian Hackers Spread Hoaxes to Divide Ukraine, Allies
- Researchers Spot Supply Chain Attack Targeting GitLab CI Pipelines
- Phishers Add Chatbot to the Phishing Lure
- QuSecure Lauches Quantum-Resilient Encryption Platform
- Cloud Data Security Firm Dig Emerges From Stealth With $11 Million in Funding
- US Recovers $15 Million From Ad Fraud Group
- Enterprise Data Protection Company Seclore Raises $27 Million
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy