Security Boulevard, Monday, September 9th, 2024
Sedexp Malware: The Stealthy Linux Threat Evading Detection
A new, sophisticated Linux malware named 'sedexp' has been discovered, quietly evading detection since 2022.
more →
2,380 articles · page 28 of 48
Security Boulevard, Monday, September 9th, 2024
A new, sophisticated Linux malware named 'sedexp' has been discovered, quietly evading detection since 2022.
more →
Security Boulevard, Monday, September 9th, 2024
Cyber threats are becoming more frequent, sophisticated, and damaging in today's rapidly evolving digital landscape.
more →
Security Boulevard, Monday, September 9th, 2024
When Google decided to stop trusting new TLS certificates from Entrust, it didn't just create a technical challenge-it unleashed an operational crisis for many organizations.
more →
Security Boulevard, Monday, September 9th, 2024
Let's talk about the cybersecurity life you lead. I bet you often find yourself trapped in a cycle of superficial solutions and temporary fixes.
more →
SearchSecq, Friday, September 6th, 2024
Identity threat detection and response (ITDR) is a collection of tools and best practices aimed at defending against cyberattacks that specifically target user identities or identity and access management (IAM) infrastructure.
more →
Security Boulevard, Friday, September 6th, 2024
NIST has released Version 2.0 of its widely used Cybersecurity Framework (CSF), a guidance document for mitigating cybersecurity risks. This update is not just a revision but a transformative approach to secure digital assets and infrastructures.
more →
Security Boulevard, Monday, September 2nd, 2024
Signature-based threat detection has been a central figure in cybersecurity from the start. However, its history in endpoint and network security reveals that the inherent limitations of signature-based approaches have often driven practitioners and vendors to shift toward behavioral methods.
more →
techradar.pro, Friday, September 6th, 2024
Understanding the cybercrime ecosystem has never been more important than in 2024. Ransomware attacks and data breaches continue to proliferate, and it's imperative that executives understand what's driving the increase and more importantly how to prevent oneself from becoming a victim.
more →
Security Boulevard, Thursday, September 5th, 2024
Today, protecting sensitive data has become more critical than ever. Businesses need to follow data protection laws to avoid penalties and reduce the risk of data breaches, especially concerning the processing of personal data. One way to achieve this is through Data Protection Officer outsourcing (DPO outsourcing).
more →
Cloudtech, Thursday, September 5th, 2024
High-profile, wide-ranging cybersecurity breaches-the SolarWinds supply chain attack, the Colonial Pipeline ransomware incident, Russian hacking of Microsoft-have brutally exposed the consequences of having inadequate identity security controls.
more →
Security Boulevard, Thursday, September 5th, 2024
As businesses digitally transform faster than ever, cyber threats are evolving equally rapidly.
more →
Security Boulevard, Thursday, September 5th, 2024
Trackers are everywhere and come in many different forms. Some tracking methods are more invasive than others; this post aims to explain what 'trackers' are, how they work, and give examples of the data they collect.
more →
HelpNet Security, Friday, September 6th, 2024
With cyber threats becoming increasingly sophisticated and targeting critical infrastructure, in this Help Net Security interview, David Ferbrache, managing director of Beyond Blue, discusses the current state of cybersecurity readiness and resilience.
more →
Security Boulevard, Wednesday, September 4th, 2024
In today's digital age, the threat of cyberattacks is growing at an alarming rate. The frequency and impact of these attacks are escalating, prompting governments and industry bodies to introduce a slew of regulations designed to protect sensitive data.
more →
Security Boulevard, Tuesday, September 3rd, 2024
Reflecting on the more than 500 companies we serve and several recent meetings with IT and security teams, I am surprised that so many organizations are ill-prepared to counter the growing threat of cybersecurity attacks and breaches.
more →
HelpNet Security, Tuesday, September 3rd, 2024
In this Help Net Security interview, Tim West, Director of Threat Intelligence and Outreach at WithSecure, discusses Ransomware-as-a-Service (RaaS) with a focus on how these cybercriminal operations are adapting to increased competition, shifting structures, and a fragmented ecosystem.
more →
Security Boulevard, Tuesday, September 3rd, 2024
Data breach costs keep rising-it's a perennial occurrence at this point to see these types of statements. But it doesn't necessarily need to be the default for this trend to continue. In fact, you could argue that frequent reports, warnings and advisories should help drive costs down. So, what's going on with ever-increasing data breach costs? And what can you do about it?
more →
Security Boulevard, Monday, September 2nd, 2024
The evolution of Identity and Access Management (IAM) has been a fascinating journey, shaped by technological advancements, security challenges, and evolving business needs.
more →
Security Boulevard, Monday, September 2nd, 2024
Sophisticated attackers will stop at nothing to steal sensitive data, personal information, and business secrets. Unfortunately, as technology evolves, so do the methods used by hacking groups and individuals looking to prey on vulnerable online entities.
more →
Security Boulevard, Monday, September 2nd, 2024
This month has been a challenging month for organizations worldwide as several high-profile data breaches occur and become headlines.
more →
HelpNet Security, Monday, September 2nd, 2024
Version 4.0.1 of the Payment Card Industry Data Security Standard (PCI DSS), which came into effect back in April, incorporates a few important changes to make it fit for the modern digital world, addressing how technologies, the threat landscape and payment processes have changed.
more →
DARKReading, Friday, August 30th, 2024
Identity management sits with IT for good reason, but now that identity is the common denominator in every attack, it's time identity security was owned by a leader with a security background, like the CISO.
more →
Security Boulevard, Friday, August 30th, 2024
In this report, we believe Gartner helps leaders in security build and implement SecOps strategy.
more →
Security Boulevard, Friday, August 30th, 2024
While it was not called ASM, the concept of managing attack surface management began with basic asset management practices in the late 1990s and early 2000s.
more →
techradar, Wednesday, August 28th, 2024
Improving cyber hygiene to prevent catastrophic technology outages
more →
Security Boulevard, Wednesday, August 28th, 2024
A pivotal part of meeting security, privacy and compliance challenges in increasingly complex IT environments is having a secure access control method.
more →
Security Boulevard, Wednesday, August 28th, 2024
As a database administrator, you don't just maintain systems-you protect your organization's most sensitive data. With the rise of AI, big data, and ever-tightening regulations, the challenge isn't just in securing data; it's in making sure that data remains accessible and usable.
more →
Security Boulevard, Wednesday, August 28th, 2024
Earlier this month, a group of our intrepid pen testers from our Readiness & Resilience team at CISO Global ventured into the heart of the hacking world at DEFCON 32 in Las Vegas. This annual pilgrimage to the mecca of cybersecurity (and more importantly, hacking) is more than just a conference - it's a hands-on deep dive into the cutting edge of hacking techniques and defensive strategies.
more →
TechNative, Monday, August 26th, 2024
It should be central to the role of the CISO to build a vision and a product strategy, and drive the decluttering of cybersecurity landscapes
more →
Security Boulevard, Monday, August 26th, 2024
With the March 2025 deadline for PCI DSS 4.0 compliance rapidly approaching, organizations are under increasing pressure to meet the new requirements, particularly the eSkimming (client-side security) requirements found under 6.4.3 and 11.6.1.
more →
Security Boulevard, Monday, August 26th, 2024
At Axiad, we said a year ago that FIDO passkeys would likely become the gold standard in enterprise authentication. We were right then, and we're right now.
more →
HelpNet Security, Sunday, August 25th, 2024
Here's an overview of some of last week's most interesting news, articles, interviews and videos:
more →
Security Boulevard, Saturday, August 24th, 2024
In today's digital landscape, the threat of data breaches and cyber attacks looms large over organizations of all sizes. As a result, privileged access management (PAM) has become a critical component of cybersecurity strategies.
more →
Security Boulevard, Friday, August 23rd, 2024
EOL operating systems no longer receive critical security updates, leaving them highly vulnerable to evolving cybersecurity threats. End-of-life OSs often struggle to run modern software and hardware, resulting in compatibility issues, reduced performance, and lower productivity.
more →
Security Boulevard, Thursday, August 22nd, 2024
Application Security Posture Management (ASPM) is a strategy designed to unify and improve the security of your applications.
more →
Security Boulevard, Thursday, August 22nd, 2024
The domain of Identity and Access Management (IAM) has undergone a remarkable surge, underpinned by a myriad of factors spanning technology, regulatory dynamics, and security imperatives.
more →
CIO, Thursday, August 22nd, 2024
What does a "security team" look like, exactly? We talked to CISOs to find out. Our discovery process yielded some interesting findings about the number of teams at each organization, their focus, how new teams are created, and reporting structure.
more →
Security Boulevard, Thursday, August 22nd, 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding a newly discovered vulnerability in SolarWinds' Web Help Desk solution, which has already been exploited in active attacks.
more →
InformationWeek, Thursday, August 22nd, 2024
Recent, high-profile breaches underscore that service providers expand enterprises' attack surface. It is time to address the vendor threat.
more →
Security Boulevard, Thursday, August 22nd, 2024
The relentless evolution of digital landscapes, and the growth of the hybrid workforce, coupled with increasingly sophisticated threat actors, presents unprecedented challenges for organizations worldwide. To maintain a robust defense posture, it's imperative to try and anticipate the trajectory of cyber threats.
more →
Analytics Insight, Tuesday, August 20th, 2024
In modern business, cybersecurity is not merely a technical concern but a crucial financial safeguard. With cyber threats growing in sophistication and frequency, the financial implications of neglecting cybersecurity training are severe and multifaceted.
more →
Security Boulevard, Tuesday, August 20th, 2024
The annual pilgrimage to Las Vegas for Black Hat USA 2024 has concluded, and as always, it did not disappoint. From August 3 to August 8, the Mandalay Bay Convention Center was abuzz with the latest in cybersecurity trends, research, and discussions that are sure to influence the industry in the coming year.
more →
Security Boulevard, Monday, August 19th, 2024
In today's fast-paced digital era, enterprises face an ever-growing landscape of cyber threats. As organizations increasingly rely on Software as a Service (SaaS) applications, managing identity risks has become crucial.
more →
Search Security, Monday, August 19th, 2024
In today's digital world, where data is constantly swirling in that mystical cloud, securing your company's data is more than just a good idea, it's absolutely essential.
more →
Security Boulevard, Monday, August 19th, 2024
In a time where cyber threats are as complex as the infrastructures they target, one overlooked misconfiguration can mean the difference between security and vulnerability.
more →
Search Security, Monday, August 19th, 2024
Data is one of the most important assets in any organization. To truly protect it, you need a DDR strategy. Here's what you need to know, with tips on buying DDR tools.
more →
Gigaom, Monday, August 19th, 2024
Passwords are the keys to your digital assets: it's how we access applications and data, as well as infrastructure and systems. Often they are characters we type in as part of a logon prompt, but they can also be hidden in code, as an application makes a call to other resources to carry out its tasks.
more →
Tripwire, Monday, August 19th, 2024
Authentication is the process of verifying the identity of a user or system. It is a critical component of security, ensuring that only authorized individuals or entities can access sensitive information or systems.
more →
SC Media, Friday, August 16th, 2024
We're familiar with attacks that try to compromise your usernames and passwords. Weak passwords can be cracked. Reused passwords are vulnerable to credential-stuffing and password-spraying attacks. Phishing scams try to steal usernames and passwords outright.
more →
Security Boulevard, Friday, August 16th, 2024
As we move through 2024, the Wallarm Research Team continues to monitor the evolving API vulnerability and threat landscape. Our latest Q2 ThreatStats Report reveals critical trends and developments that are reshaping the security environment.
more →