Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Apple's security response team has pushed out software fixes for at least 39 software vulnerabilities haunting the macOS Catalina, iOS and iPadOS platforms. [Read More]
British startup Push Security has banked $4 million in early-stage funding to help secure SaaS app deployments. [Read More]
MDR platform provider Huntress has shelled out $22 million to acquire Curricula, a startup in the growing security awareness business. [Read More]
Prominent cybersecurity executive Katie Moussouris is calling on the U.S. government to resist the urge to match China’s reported mandates around early vulnerability disclosure directly to the government. [Read More]
Microsoft's Patch Tuesday rollout included fixes for multiple high-severity vulnerabilities in Azure Site Recovery. [Read More]
Microsoft issues an urgent Patch Tuesday bulletin to warn of in-the-wild zero-day exploitation of a privilege escalation flaw in the Windows operating system. [Read More]
Adobe rolls out a major security update for its flagship Acrobat and Reader products to fix at least 22 documented security vulnerabilities. [Read More]
Aerospace and defense giant Aerojet Rocketdyne has agreed to pay $9 million to settle allegations that it failed to comply with government cybersecurity requirements. [Read More]
The open source group rates this a "high-severity" issue and urged users to upgrade to OpenSSL 3.0.5. [Read More]
Apple plans to add a new ‘Lockdown Mode’ that significantly reduces attack surface and adds technical roadblocks to limit sophisticated software exploits. [Read More]
FEATURES, INSIGHTS // Compliance
Jalal Bouhdada, Founder and Principal ICS Security Consultant at Applied Risk, discusses the implications of the new EU Directive on Security of Network and Information Systems (NIS)
Why do we seem to need layer upon layer of regulation and guidance to try to ensure a more secure business world? Is it working?
Reducing the amount of personal data subject to GDPR is a critical step towards minimizing the amount of risk that GDPR will expose.
The PCI DSS 3.2 should greatly help companies reduce third party vendor risk, and is starting to shift from just a check-the-compliance-box activity to a more continuous compliance model.
To understand why return on Access Governance is lower versus other security technologies, we first need to understand why Access Governance is implemented in the first place.
To achieve continuous compliance and monitoring, organizations are forced to automate many otherwise manual, labor-intensive tasks.
The NIST Cybersecurity Framework is an important building block, but still just the first step towards implementing operationalized defenses against cyber security risks.
U.S tech giants are playing a game of high-stakes global brinksmanship around who has rights to control their data, which impacts their European growth prospects, business models, and ultimately stock valuations.
The oversight for the protection of healthcare information is only getting tighter, and it is incumbent upon the security teams to ensure healthcare professionals have all the tools necessary to improve patient outcomes, while we worry about keeping the bad guys away.
With the release of PCI-DSS 3.0, organizations have a framework for payment security as part of their business-as-usual activities by introducing more flexibility, and an increased focus on education, awareness and security as a shared responsibility.
Get the Daily Briefing
- Adobe Patch Tuesday: Code Execution Flaws in Acrobat, Reader
- Privya Emerges From Stealth With Data Privacy Code Scanning Platform
- Microsoft Publishes Office Symbols to Improve Bug Hunting
- ICS Patch Tuesday: Siemens, Schneider Electric Fix Only 11 Vulnerabilities
- Black Hat 2022: Ten Presentations Worth Your Time and Attention
- IBM Patches High-Severity Vulnerabilities in Cloud, Voice, Security Products
- US Sanctions Crypto 'Laundering' Service Tornado
- Open Redirect Flaws in American Express and Snapchat Exploited in Phishing Attacks
- Twilio Hacked After Employees Tricked Into Giving Up Login Credentials
- 7-Eleven Closes Stores in Denmark After Hacker Attack
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy