Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
A new report shows that boardroom awareness and security budgets for third-party risk management have increased; but this is not necessarily translating into effective action. [Read More]
Over two dozen nations resolved Thursday to battle collectively against the global and escalating threat posed by cyber-extortionists, following a Washington-led anti-ransomware summit. [Read More]
FBI, CISA, EPA and NSA issue a joint advisory to warn organizations in the water and wastewater sector of attacks targeting IT and OT systems. [Read More]
With this extension, the company raised a total of $205 million in Series D funding, at a valuation of $1.35 billion. [Read More]
The Linux Foundation has secured a $10 million investment to expand the operations of the Open Source Security Foundation (OpenSSF). [Read More]
Tech giants Intel and VMware joined the security patch parade this week, rolling out fixes for flaws that expose users to malicious hacker attacks. [Read More]
Black Kite, a provider of third-party cyber risk rating services, has raised $22 million in a Series B funding round led by Volition Capital. [Read More]
Apple has published a 30-page threat analysis report to explain why sideloading would pose serious privacy and security risks to iPhone users. [Read More]
Full video of panel discussion from SecurityWeek's 2021 CISO Forum on navigating software bill of materials (SBOM) and supply chain security transparency. [Read More]
New guidance encourages administrators to ensure that their environments are not vulnerable to wildcard certificates and ALPACA attacks. [Read More]
- 1 of 127
- ››
FEATURES, INSIGHTS // Risk Management
While there still isn’t a clear industry-accepted answer to Vendor risk management (VRM), there has been more interest in staying on top of and learning about the latest in this space.
In addition to evaluating the core capabilities and range of intelligence monitoring, organizations must consider data source integrity, and perhaps most importantly, the level of expert analysis included with each service.
Far too many engineers in the trenches don’t take the time to lift their heads to see context, so when good (and bad) things happen, this is a great management opportunity that you should take full advantage of.
Security and intelligence teams often lack finished intelligence, which leaves them ill-equipped to combat motivated and sophisticated adversaries.
After every company goes through digital transformation, their threat model will change in response.
As we see an increasing number of recent attacks against critical infrastructure – cybersecurity and physical security can be intrinsically linked.
We are a community with grand ideas around the concept of crowdsourced threat intel (CTI), but with little history or previous successes that show CTI as a viable idea.
Executive protection teams face threats from many sources including social media, telephone, email, and event in-person physical threats.
Ineffective security approaches when integrating two separate organizations can lead to significant issues that could undercut the business value of a merger or acquisition.
While cyber due diligence has yet to become commonplace in M&A transactions, the consequences of failing to identify risks and active campaigns can have costly implications.
- 1 of 36
- ››
Get the Daily Briefing
- 'Critical Severity' Warning for Malware Embedded in Popular JavaScript Library
- REvil Ransomware Gang Hit by Law Enforcement Hack-Back Operation
- Microsoft Introduces Security Program for Non-Profits
- US Intel Warns China Could Dominate Advanced Technologies
- Organizations Can Now Try Out End-to-End Encrypted Microsoft Teams Calls
- Facebook Introduces New Tool for Finding SSRF Vulnerabilities
- After Nation-State Hackers, Cybercriminals Also Add Sliver Pentest Tool to Arsenal
- Snap's Stock Drops as iPhone Privacy Controls Pinch Ad Sales
- Critical Vulnerabilities Found in AUVESY Product Used by Major Industrial Firms
- Cookie Theft Malware Used to Hijack YouTube Accounts
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy