Security Experts:

WRITE FOR US

LATEST SECURITY NEWS HEADLINES

rss icon

SAP Releases 10 Security Notes on July 2020 Patch Day
Microsoft Patches 123 Vulnerabilities With July 2020 Security Updates
Researchers Find More Malware Delivered via Chinese Tax Software
Adobe Patches Critical Vulnerabilities in Media Encoder, Download Manager
UK to Exclude Huawei From Role in High-Speed Phone Network
long dotted

NEWS & INDUSTRY UPDATES

Hackers Find Way to Bypass Mitigation for Exploited BIG-IP Vulnerability
Researchers warned that one of the mitigations proposed by F5 for the actively exploited BIG-IP vulnerability can be bypassed, but malicious hackers leveraged the bypass before public disclosure. [Read More]
Britain Set to Axe Huawei 5G Involvement: Report
China's ambassador to Britain on Monday warned that London faced a risk to its international reputation if it blocked Huawei from the nation's 5G network. [Read More]
China Urges 'Fair' Treatment After France Restricts Huawei
China urged France Monday to guarantee a "fair and just" environment for its companies after Paris decided to restrict licenses for telecom operators using 5G technology from Huawei. [Read More]
NSA Publishes Recommendations on Securing IPsec VPNs
The NSA has published a series of recommendations on how to properly configure IP Security (IPsec) VPNs. [Read More]
Huawei Not Totally Banned From France, Says Watchdog: Report
China's Huawei is not totally banned from France's next-generation 5G wireless market, but French operators using them will only get limited licences. [Read More]
CISA Warns Enterprises of Risks Associated With Tor
In an alert published this week, CISA and the FBI warned enterprises about the use of Tor in cyberattacks. [Read More]
Attack Surface Growing for Healthcare Industry
The necessary and dramatic migration to cloud-based tele-health services will undoubtedly leave the industry more exposed in the future. [Read More]
Chinese Companies Huawei and ZTE Declared National Security Threats by FCC
Chinese telecommunication solutions providers Huawei and ZTE have been declared national security threats by the FCC. [Read More]
US Cyber Command: Foreign APTs Likely to Exploit New Palo Alto Networks Flaw
Palo Alto Networks has patched a critical authentication bypass vulnerability in PAN-OS and US Cyber Command believes foreign APTs will likely attempt to exploit it soon. [Read More]
After Deadly Clash, India Bans 59 Chinese Mobile Apps Over 'Security'
India has banned 59 Chinese mobile apps, including the wildly popular TikTok and WeChat, over national security and privacy concerns two weeks after a deadly Himalayan border clash between the nuclear-armed neighbours. [Read More]

FEATURES, INSIGHTS // Risk Management

rss icon

Idan Aharoni's picture
Finding the Right Threat Intelligence Vendors
Idan Aharoni - Risk Management
The threat intelligence space is filled with great vendors who can provide organizations with a lot of value in helping them protect their brand, employees and customers.
Read full story
Jim Ducharme's picture
Now That Everyone's Working From Home, How's Your Helpdesk Holding Up?
Jim Ducharme - Incident Response
Heightened anxiety is a normal consequence of drastic change, and it’s natural for the entire organization to be stressed by the shift to a fully remote work environment.
Read full story
Laurence Pitt's picture
Coming to a Conference Room Near You: Deepfakes
Laurence Pitt - Risk Management
What can we do in order to prevent the spread of fake content or reduce the risk of a targeted use of Deepfakes that could cause damage to our organization?
Read full story
Joshua Goldfarb's picture
Leveraging Gap Analysis to Drive Security Metrics
Joshua Goldfarb - Risk Management
Gap analysis can serve as a wonderful driver for improving security metrics if the security team understands how to seize the opportunity it presents.
Read full story
AJ Nash's picture
Graduation Day: From Cyber Threat Intelligence to Intelligence
AJ Nash - Risk Management
Once we shed the shackles of “cyber” and “threat,” we free our teams to consider a full spectrum of intelligence, including support to physical security, insider threats, procurement, mergers and acquisitions, and executive decision-making.
Read full story
Fred Kneip's picture
It's Time for the C Suite and Boards to Truly Engage in Third-Party Cyber Risk Management
Fred Kneip - Risk Management
While some forward-thinking companies have created c-suite positions for IT and security personnel such as CTOs and CISOs, these are, overall, still relatively rare.
Read full story
Josh Lefkowitz's picture
Don't Overlook the Importance of Feedback in an Intelligence Operation
Josh Lefkowitz - Risk Management
The successful execution of each step of the intelligence cycle relies on the successful execution of the step that came before it.
Read full story
Fred Kneip's picture
Most Companies Don't Properly Manage Third-Party Cyber Risk
Fred Kneip - Risk Management
Third party cyber risk management programs need to go beyond an initial scan and evaluate your third party’s security from the inside out.
Read full story
Josh Lefkowitz's picture
Don't Let Annual Predictions Overshadow the Need for Iterative Security
Josh Lefkowitz - Risk Management
It’s crucial to recognize that annual security predictions generally only include that which can be feasibly predicted by the final months of the prior year.
Read full story
Marie Hattar's picture
Clean Up Your Act with Better Cyber Hygiene
Marie Hattar - Risk Management
The solution: every week, devote at least two hours to basic cyber hygiene. Four best practices will help your team build habit from repetition.
Read full story