Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
In this Q&A from the SecurityWeek CISO Forum, venture capital investors discuss the state of cybersecurity investments, business strategies in a confusing economic climate, predictions on hot and not-so-hot product categories, and what happens with all those cybersecurity unicorns. [Read More]
A total of 267 ethical hackers participated in the HackerOne-hosted challenge, including 139 new to the DoD VDP. [Read More]
Microsoft has confirmed that it’s aware of two Exchange Server zero-day vulnerabilities being exploited in targeted attacks. [Read More]
Part of the Cicada group, Witchetty has been observed progressively updating its toolset in recent attacks against Middle Eastern and African targets. [Read More]
Cisco has announced patches for 12 vulnerabilities in its IOS and IOS XE software, including 10 rated ‘high severity’. [Read More]
Researchers report seeing new Microsoft Exchange zero-day being exploited in the wild, but it may just be a variation of the old ProxyShell exploit. [Read More]
Microsoft intercepts a Lazarus sub-group rigging popular open source software utilities to plant dangerous malware implants. [Read More]
The funding frenzy in the software supply chain space now includes Ox Security, an Israeli startup that just raised a whopping $34 million in seed funding. [Read More]
Schneider Electric has released patches for its EcoStruxure platform and Modicon PLCs to address a critical vulnerability that was disclosed more than a year ago. [Read More]
Updates announced for Drupal core address a severe vulnerability in Twig that could lead to the leakage of sensitive information. [Read More]
- 1 of 912
- ››
FEATURES, INSIGHTS // Virus & Threats
Unfortunately, there is no such thing as 100 percent protection. Therefore, we cannot solely focus on “Left of Boom” processes, but also have to talk about the “Right of Boom”.
Even though things have changed—from SOAR to XDR to CSMA—they have also stayed the same. These new categories are not solutions but really architectures.
Nothing can ever prepare an organization for every ransomware scenario. However, if you train for multiple situations, your team will be able to make decisions more quickly, and react appropriately when an unforeseen incident occurs.
Between the excitement and the comfort of working from home, it can be easy to overlook the risks associated with summer travel, but it’s important to remain careful and vigilant.
When establishing visibility and security controls across endpoints, security practitioners need to understand that each endpoint bears some or all responsibility for its own security.
Digital experience monitoring technology goes beyond the monitoring of resources and applications, allowing for automated remediation and uncompromised user productivity.
As email security is an ever-changing landscape, focusing on the most relevant issues in the threat landscape is where organizations need to start.
Most organizations want to adopt DevSecOps practices, but their current practices are closer to traditional waterfall methodologies than the agile practices described in this DevSecOps manifesto.
XDR architecture must be broad and deep so that organizations can get the most value out of their existing best-of-breed security solutions, including their free, open-source tools.
Armed with the right cyber defense strategy, tools, and security controls, organizations can defend themselves against ransomware attacks.
- 1 of 29
- ››
Get the Daily Briefing
- Supply Chain Attack Targets Customer Engagement Firm Comm100
- Optus Says ID Numbers of 2.1 Million Compromised in Data Breach
- CISA Warns of Attacks Exploiting Recent Atlassian Bitbucket Vulnerability
- North Korean Hackers Exploit Dell Driver Vulnerability to Disable Windows Security
- Microsoft Links Exploitation of Exchange Zero-Days to State-Sponsored Hacker Group
- Shangri-La Hotels Customer Database Hacked
- Hack Puts Latin American Security Agencies on Edge
- Canon Medical Product Vulnerabilities Expose Patient Information
- What's Going on With Cybersecurity VC Investments?
- CISA Issues Guidance on Transitioning to TLP 2.0
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy