Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
China is apparently not happy that South Korea has joined NATO’s Cooperative Cyber Defence Centre of Excellence (CCDCOE). [Read More]
By the end of 2023, GitHub will mandate that all code contributors secure their computers with at least one form of two-factor authentication (2FA) account protection. [Read More]
The U.S. government is barreling ahead with plans to mitigate future threats from quantum computing with a new White House memo directing federal agencies to jumpstart an all-hands-on-deck approach to migrating to quantum-resistant technologies. [Read More]
Idaho needs to be better prepared to defend against inevitable cyberattacks that could harm individuals, businesses and critical infrastructure, the Governor’s Cybersecurity Task Force said in a report. [Read More]
Cisco has issued another warning over the use of counterfeit switches, advising customers to update the software on devices before they are onboarded. [Read More]
Mandiant warns that a new threat actor is using backdoors to remain undetected for "an order of magnitude longer than the average dwell time of 21 days in 2021." [Read More]
Traceable AI, a startup building technology to reduce attack surfaces in APIs, has banked a new $60 million funding round that values the company at $450 million. [Read More]
Researchers at Microsoft find a way to exploit for a pair of privilege escalation flaws to plant a root backdoor on Linux systems. [Read More]
Strider closes a $45 million Series B funding round led by Valor Equity Partners. [Read More]
German wind turbine giant Deutsche Windtechnik discloses disruptive ransomware compromise. [Read More]
- 1 of 143
- ››
FEATURES, INSIGHTS // Risk Management
The surge of cyber attacks in 2021 was a wake-up call for consumers, who felt the firsthand effects that can result from a breach.
Organizations need to look beyond preventive measures when it comes to dealing with today’s ransomware threats and invest in ransomware response, which improves their ability to prepare and quickly recover endpoints from ransomware attacks.
Many think open source intelligence is just another name for better googling. They are wrong. Good open source and threat intelligence are derived from three core capabilities.
Vendor agnostic technology, married with actionable, globally-sourced, and continually evolving intelligence, augmented by humans, is needed to defend our enterprises.
There are areas where governments can learn from the private sector and vice-versa, which will help both sides adapt more quickly and effectively to a continuously evolving threat environment.
Schools should take measures to identify and secure sensitive data, keep devices up-to-date, and ensure that their endpoint security controls are working.
The rise of social engineering tactics as well as risks associated with embedded vulnerabilities in contractor networks makes keeping this technology confidential and out of the hands of adversaries increasingly difficult.
Cyber resiliency measures (i.e., architectural design, technologies, operational practices) assume that today’s threat actors can achieve a foothold in an organization’s infrastructure and in turn post-exploit activities must be contained and eliminated.
The security industry must commit to a risk-based approach that understands the specific attacks and actors targeting their industry and profile.
It is a good idea to assume that your network has already been breached, even if no overtly malicious notifications have surfaced.
- 1 of 37
- ››
Get the Daily Briefing
- Cybersecurity M&A Roundup for May 1-15, 2022
- Researchers Devise New Type of Bluetooth LE Relay Attacks
- Ransomware Gang Threatens to Overthrow Costa Rica Government
- Hackers Can Abuse Low-Power Mode to Run Malware on Powered-Off iPhones
- US, EU to Ramp Up Chip Making and Raise Pressure on Russia
- Defending the Healthcare Security Landscape in the Age of Connected Devices
- 'Sysrv' Botnet Targeting Recent Spring Cloud Gateway Vulnerability
- SonicWall Patches Unauthorized Access Vulnerability in SMA Appliances
- CISA Removes Windows Vulnerability From 'Must-Patch' List Due to Buggy Update
- Zyxel Firewall Vulnerability Exploitation Attempts Seen One Day After Disclosure
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy