Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
LastPass says it has concluded its investigation into the August 2022 compromise of the LastPass development environment. [Read More]
Uber said Thursday, Sept. 15, that it reached out to law enforcement after a hacker apparently breached its network. A security engineer said the intruder provided evidence of obtaining access to crucial systems at the ride-hailing service. [Read More]
The non-profit foundation is building a team to proactively identify and address security defects in the popular Rust programming language. [Read More]
Dig Security’s latest financing comes as venture capital investors rush to place bets on startups jostling for space in the cloud data security space. [Read More]
Microsoft says its security teams have detected zero-day exploitation of a critical vulnerability in its flagship Windows platform. [Read More]
The new sanctions designate Iran’s Ministry of Intelligence and Security (MOIS) and its Minister of Intelligence for engaging in cyber-enabled activities against the United States and its allies. [Read More]
Microsoft security teams share details on ransomware attacks linked to DEV-0270, a subgroup of Iran-linked Phosphorus. [Read More]
Microsoft has identified four Iranian hacking groups that participated in a July 2022 cyberattack targeting the Albanian government. [Read More]
The U.S. government's CISA, NSA, and ODNI have released the first part of a three-part joint guidance series on securing the software supply chain. [Read More]
The latest funding was led by CIBC Innovation Banking and brings the total raised by the Maryland start-up to $100 million. [Read More]
- 1 of 194
- ››
FEATURES, INSIGHTS // Incident Response
Cyberattacks and data breaches continue to rise year-over-year and another so-called silver bullet technology isn’t going to stop that trend.
Nothing can ever prepare an organization for every ransomware scenario. However, if you train for multiple situations, your team will be able to make decisions more quickly, and react appropriately when an unforeseen incident occurs.
The goal of security automation is to accelerate detection and response, but you’ll waste a lot of time if you try to eat the elephant all at once.
With an approach that is data-driven and flexible, you can get as simple or as advanced as the detection and response demands.
Organizations can strengthen their security posture by getting detailed information on current attack techniques and keeping their employees’ cyber hygiene training up to date.
As automation continues to evolve, a new approach to accelerate detection and response is emerging based on data and business logic to automatically trigger simple actions that can be standalone or be chained together.
Organizations need to look beyond preventive measures when it comes to dealing with today’s ransomware threats and invest in ransomware response, which improves their ability to prepare and quickly recover endpoints from ransomware attacks.
As threat actors continue to evolve their TTPs to take advantage of crises and outbreaks, the intelligence sources and information sharing mechanisms available to help will become even more important.
Many think open source intelligence is just another name for better googling. They are wrong. Good open source and threat intelligence are derived from three core capabilities.
Vendor agnostic technology, married with actionable, globally-sourced, and continually evolving intelligence, augmented by humans, is needed to defend our enterprises.
- 1 of 30
- ››
Get the Daily Briefing
- Russia Gives Citizenship to Ex-NSA Contractor Edward Snowden
- Ukraine Says Russia Planning 'Massive Cyberattacks' on Critical Infrastructure
- Hackers Leak French Hospital Patient Data in Ransom Fight
- Australia Mulls Tougher Cybersecurity Laws After Data Breach
- Breached American Airlines Email Accounts Abused for Phishing
- UK Teen Arrested Over Rockstar Games, Uber Hacks
- Ukraine Cracks Down on Group Selling Hacked Accounts to Pro-Russia Propagandists
- Microsoft Dismantles Spam Campaign Abusing OAuth Applications
- Hacktivist Attacks Show Ease of Hacking Industrial Control Systems
- Sophos Firewall Zero-Day Exploited in Attacks on South Asian Organizations
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy