Security Experts:

WRITE FOR US

LATEST SECURITY NEWS HEADLINES

rss icon

US Bans Huawei, ZTE Telecoms Gear Over Security Risk
EU Parliament Website Attacked After MEPs Slam Russian 'Terrorism'
Proofpoint: Watch Out for Nighthawk Hacking Tool Abuse
Cross-Tenant AWS Vulnerability Exposed Account Resources
Facebook Parent Meta Links Influence Campaign to US Military
long dotted

NEWS & INDUSTRY UPDATES

Akeyless Raises $65 Million for Secrets Management Tech
Investors pour $65 million into an early-stage Israeli startup building technology to help businesses manage secrets like credentials, certificates and keys. [Read More]
Holiday Cybersecurity Staffing Levels a Difficult Balancing Act for Companies
The effect of reduced staffing levels over holidays and weekends doesn’t just attract more cybercriminals, it makes the outcome of attacks more severe. [Read More]
CISA Releases Decision Tree Model to Help Companies Prioritize Vulnerability Patching
CISA has published a Stakeholder-Specific Vulnerability Categorization (SSVC) guide in an effort to help organizations prioritize vulnerability patching. [Read More]
Gaping Authentication Bypass Holes in VMware Workspace One
VMware slapped a critical-severity rating on the bulletin and warned that three of the patched flaws are marked with a CVSS severity score of 9.8/10. [Read More]
Video: ESG - CISO's Guide to an Emerging Risk Cornerstone
In this video discussion, Mastercard’s Johan Gerber, EVP, Cyber and Security Products, discusses the strategies and tools needed to mitigate ESG risk on a business’s supply chain and reputation. [Read More]
Webinar Today: ESG - CISO's Guide to an Emerging Risk Cornerstone
Join Mastercard’s Johan Gerber, EVP, Cyber and Security Products, as he discusses the strategies and tools needed to mitigate ESG risk on a business’s supply chain and reputation. [Read More]
Engineering Workstations Used as Initial Access Vector in Many ICS/OT Attacks: Survey
Nozomi Networks and SANS release their 2022 OT/ICS Cybersecurity Report, which shows that engineering workstations are increasingly used as an initial access vector. [Read More]
Bearer, Notebook Labs, Protexxa Raise Millions in Seed Funding
Bearer, Notebook Labs, and Protexxa, cybersecurity startups dealing with data security, web3 identity, and enterprise cyber hygiene, received a total of over $10 million in seed funding. [Read More]
Deepfakes - Significant or Hyped Threat?
If high quality realtime deepfakes are close, the question then becomes one of defense – how can business detect and defend against such deepfakes? [Read More]
DHS Develops Baseline Cybersecurity Goals for Critical Infrastructure
The DHS has released Cybersecurity Performance Goals (CPGs) for IT and OT to help organizations prioritize investments. [Read More]

FEATURES, INSIGHTS // Risk Management

rss icon

Gordon Lawson's picture
Digesting CISA's Cross-Sector Cybersecurity Performance Goals
Gordon Lawson - Compliance
Basic cyber hygiene may seem rudimentary, but as highlighted in CISA’s four key challenges above, it is something organizations of all sizes struggle with.
Read full story
Torsten George's picture
Cyber Resilience: The New Strategy to Cope With Increased Threats
Torsten George - Network Security
When implemented properly, cyber resilience can be considered a preventive measure to counteract human error, malicious actions, and decayed, insecure software.
Read full story
Derek Manky's picture
Offense Gets the Glory, but Defense Wins the Game
Derek Manky - Incident Response
Organizations may better align their defenses to adapt and react proactively to rapidly changing attack approaches when they have a better grasp of the objectives and strategies employed by their adversaries.
Read full story
Gordon Lawson's picture
How to Prepare for New SEC Cybersecurity Disclosure Requirements
Gordon Lawson - Incident Response
The new SEC requirements are putting on paper what many companies—public and private—should have been investing in already.
Read full story
Landon Winkelvoss's picture
Leveraging Managed Services to Optimize Your Threat Intelligence Program During an Economic Downturn
Landon Winkelvoss - Risk Management
How organizations can use managed services to optimize their threat intelligence program during an economic downturn.
Read full story
Jeff Orloff's picture
Using the Defense Readiness Index to Improve Security Team Skills
Jeff Orloff - Risk Management
The Defense Readiness Index is a reliable alternative for assessing a security team’s skill level, developing a roadmap for improving cyber competencies, and reaching the optimal level of cyber security readiness.
Read full story
Gordon Lawson's picture
For Smaller Enterprises Infrastructure Security Starts With Hygiene
Gordon Lawson - Risk Management
The surge of cyber attacks in 2021 was a wake-up call for consumers, who felt the firsthand effects that can result from a breach.
Read full story
Torsten George's picture
Why Ransomware Response Matters More Than Protection
Torsten George - Incident Response
Organizations need to look beyond preventive measures when it comes to dealing with today’s ransomware threats and invest in ransomware response, which improves their ability to prepare and quickly recover endpoints from ransomware attacks.
Read full story
Landon Winkelvoss's picture
Achieving Positive Outcomes With Multi-Domain Cyber and Open Source Intelligence
Landon Winkelvoss - Incident Response
Many think open source intelligence is just another name for better googling. They are wrong. Good open source and threat intelligence are derived from three core capabilities.
Read full story
Keith Ibarguen's picture
A Sheep in Wolf's Clothing: Technology Alone is a Security Facade
Keith Ibarguen - Incident Response
Vendor agnostic technology, married with actionable, globally-sourced, and continually evolving intelligence, augmented by humans, is needed to defend our enterprises.
Read full story