ZDNet, Tuesday, September 12,2023
6 Simple Cybersecurity Rules To Live By
How do you train others to avoid being victims of online crime? It's all about human behavior.
more →
Back Issues This Week → Popular →
All issues › Archive
Security — Archive
2,322 articles · page 38 of 47
CXOtoday.com, Monday, September 11,2023
Security Challenges With 5G Networks
India's telecom regulators aren't allocating spectrum directly to enterprises for building private 5G networks, but they can lease it from private operators. Once the process starts-off, CTOs may have to be ready to face some challenges when they shift over from legacy systems to private 5G networks.
more →
Fortra, Monday, September 11,2023
10 Mistakes In Cybersecurity And How To Avoid Them
It's easy to rest on our laurels. Prevent a few breaches - or go long enough without one - and you start to feel invincible. While our efforts are certainly laudable, we can't get too comfortable.
more →
Blackfog, Saturday, September 9,2023
What Types Of Data Breaches Do You Need To Know About In 2023?
What Types of Data Breaches do you Need to Know About in 2023? By now, all firms should be aware that cybersecurity threats are among the leading risks any business faces. Within this, those that directly compromise sensitive data have the potential to be especially damaging.
more →
Security Boulevard, Friday, September 8,2023
Zero-Trust: 5 Steps To Transition From Hype To Reality
The paradigm shift toward zero-trust has been years in the making for some organizations, while others still regard it as an aspiration. Although many organizations have touted their success in implementing the key principles, the journey toward full implementation is expected to be gradual.
more →
SiliconANGLE , Friday, September 8,2023
Lessons From A Ransomware Attack: How One Healthcare CIO Helped Her Company Recover
In the early-morning hours of Feb. 25, 2021, Terri Ripley got the call every chief information officer dreads: Her company, OrthoVirginia Inc., had been hit by a massive attack of the Ryuk ransomware that had shut down its entire computing fabric.
more →
FutureCISO, Thursday, September 7,2023
PodChats for FutureCISO: Incorporating enterprise-wide GenAI strategies
Gartner says the mass availability of generative AI has become a top concern for enterprise risk executives in the second quarter of 2023. It was mentioned by 66% of 249 senior risk executives, just one point behind third-party viability and ahead of financial planning uncertainty.
more →
ComputerWeekly, Thursday, September 7,2023
AI-Powered Cloud Siem: Real-Time Threat Intel Boosts Defences
Thanks to their advanced data analysis and predictive capabilities, AI and ML will be valuable protective tools going forward. Learn about the potential of AI-backed cloud SIEM technology
more →
Search Security, Wednesday, September 6,2023
How To Prevent Ransomware In 6 Steps
Ransomware can cost companies billions in damage. Incorporate these ransomware prevention best practices, from defense in depth to patch management, to keep attackers out.
more →
Search Security, Wednesday, September 6,2023
Cut Through Cybersecurity Vendor Hype With These 6 Tips
Cybersecurity vendor hype can make purchasing decisions difficult. When considering a new product or service, think critically about whether it would truly add business value.
more →
Solutions Review, Wednesday, September 6,2023
17 Customer Identity And Access Management (CIAM) Best Practices Enterprises Should Consider
Customer Identity and Access Management (CIAM) is a comprehensive framework and set of technologies designed to manage and secure the digital identities of an organization's customers.
more →
Security Boulevard, Tuesday, September 5,2023
The Future Of Work Is Remote: How To Prepare For The Security Challenges
The fourth industrial revolution is here and is changing the way people work in ways that are still hard to believe. On the one hand, organizations are shifting to permanent or hybrid remote work setups since they provide opportunities to trim operating costs and weather an uncertain economic future.
more → Data Center Knowledge, Friday, September 1,2023
The Data Center Ransomware Attack That Costs You Everything
What happens when a data center ransomware attack costs you everything? Lesson from the CloudNordic and Azero ransomware attacks.
more →
VentureBeat, Thursday, August 31,2023
5 Ways CISOs Can Prepare For Generative AI's Security Challenges And Opportunities
With generative AI tools like ChatGPT proliferating across enterprises, CISOs have to strike a very difficult balance: Performance gains versus unknown risks. Gen AI is delivering greater precision to cybersecurity but also being weaponized into new attack tools such as FraudGPT that advertise their ease of use for the next generation of attackers.
more →
Medium, Thursday, August 31,2023
Threat-Informed Defense Is Hard, So We Are Still Not Doing It!
If you wake up an average security professional at 3AM and ask them 'hey, what is security about?', a large majority would say 'it is about the threats.' Ultimately, security (whether 'cyber' or 'information') is unthinkable without the threats. Security professionals are meant to defend against threats from criminals, insiders, and nation-states.
more →
Security Boulevard, Tuesday, August 29,2023
Empowering Cybersecurity Resilience: Exploring The Nist Cybersecurity Framework 2.0
There are many cybersecurity regulations and frameworks that security leaders use to establish a baseline for security posture inside their organization. Some are driven by sector-specific requirements, such as the Health Insurance Portability & Accountability Act (HIPAA) or the Payment Card Industry Data Security Standard (PCI DSS).
more → DARKReading, Tuesday, August 29,2023
Addressing Cybersecurity's Talent Shortage & Its Impact On Cisos
CISOs need to educate all arms of the business on security best practices so it becomes part of the business culture, thus expanding who's keeping watch. Automating routine tasks will help scale security.
more →
BlackFog, Monday, August 28,2023
Beyond Cybersecurity Compliance: Adhering To Regulation Is Not Enough
Security leaders can't guarantee positive outcomes by simply checking compliance boxes
more → Keseya, Thursday, August 24,2023
Why Network Penetration Testing Is An Essential Cybersecurity Practice
Will your cybersecurity setup prove resilient even in the face of a damaging cyberattack like ransomware? Network penetration testing can give you the answer. It's a stress test of sorts in which cybersecurity experts simulate cyberattacks in a controlled environment to see if your infrastructure will respond and perform as expected.
more →
Enterprise Storage Forum, Thursday, August 24,2023
5 Best Practices For Implementing Risk-First Cybersecurity
Embracing a risk-first mindset empowers organizations to make informed decisions, strengthen security, safeguard valuable assets, and reduce financial impact. Organizations face an uphill battle to safeguard hybrid cloud assets and sensitive data from evolving cyber threats in an increasingly interconnected and digitized world. While the security-first approach is essential, it has limitations in addressing the dynamic nature of these threats.
more → CyberSaint, Tuesday, August 22,2023
Cybersecurity v. Cyber Risk Management
For years, the discourse in IT has been centered around cybersecurity. Yet, with the volume of cyber attacks increasing, professionals have developed a more holistic approach to cybersecurity. This development has led to the creation of cyber risk management. You may be wondering whether the distinction between cyber risk management and cybersecurity is necessary, and the answer is yes.
more →
Ordr, Tuesday, August 22,2023
What Is Cyber Asset And Attack Surface Management?
Gartner analysts have been busy publishing several Hype Cycles recently. If you're not familiar with the Gartner Hype Cycle, it is a graphic representation of the maturity lifecycle of new technologies, and there are several key reports to help security leaders with their strategy and investments.
more →
Hypr, Tuesday, August 22,2023
What Is Adaptive Authentication?
Authentication security remains a significant vulnerability in most organizations' security posture. Even individuals without technical expertise can easily acquire and employ pre-made hacking tools. Microsoft, for instance, fends off an astonishing 1,000 authentication attacks a second.
more →
HelpNet Security, Tuesday, August 22,2023
8 Open-Source Open-Source Intelligence (OSINT) Tools You Should Try
Open-Source Intelligence (OSINT) refers to gathering, assessing, and interpreting public information to address specific intelligence queries. All the tools listed here are available for free.
more →
HelpNet Security, Tuesday, August 22,2023
Maintaining Consistent Security In Diverse Cloud Infrastructures
In this Help Net Security interview, Kennedy Torkura, CTO at Mitigant, discusses the complexity of maintaining clear visibility into cloud environments, why it poses such a challenge for CISOs, and how they can prepare to address potential issues.
more → CIODIVE, Monday, August 21,2023
Security Basics Aren't So Basic - They're Hard
Lax security controls cause heavy damages, and security experts warn unmet basic requirements lead, time and again, to data breaches.
more →
Hypr, Saturday, August 19,2023
Five Things To Know About PCI DSS 4.0 Authentication Requirements
The Payment Card Industry Security Standards Council recently updated their Data Security Standard (PCI DSS) for protecting payment card data. The latest version, PCI DSS 4.0, introduces more than 60 new or updated requirements, with new directives around passwords and multi-factor authentication (MFA) among the most consequential.
more → Solvo, Friday, August 18,2023
Securing The Cloud: Unveiling The Significance Of Strong Identity And Access Management (IAM) Strategies
In today's rapidly evolving digital landscape, where businesses are increasingly migrating their operations to the cloud, the importance of robust security measures cannot be overstated.
more →
ITPro, Thursday, August 17,2023
Mandiant Says Generative AI Will Empower New Breed Of Information Operations, Social Engineering
Attackers can already use AI to easily trick the average user, raising fears over future campaigns
more →
CSO Online, Thursday, August 17,2023
6 Best Practices To Defend Against Corporate Account Takeover Attacks
When bad actors get control of business or corporate accounts, it can be more dangerous than comprised personal or consumer accounts. Here are some ways to stop them.
more →
CSO Online, Wednesday, August 16,2023
3 Strategies That Can Help Stop Ransomware Before It Becomes A Crisis
For those hoping to avoid the pay-or-not-to-pay ransomware dilemma, there are three things to focus on that can help CISOs: create incident response plans, improve cybersecurity posture, and invest in robust backups.
more → Search Security, Monday, August 14,2023
Top 3 Ransomware Attack Vectors And How To Avoid Them
Protecting your organization against these three common ransomware attack entryways could mean the difference between staying safe or falling victim to a devastating breach.
more → Search Security, Monday, August 14,2023
How To Create A Ransomware Incident Response Plan
A ransomware incident response plan may be the difference between surviving an attack and shuttering operations. Read key planning steps, and download a free template to get started.
more → DARKReading, Monday, August 14,2023
How To Choose A Managed Detection And Response (MDR) Solution
MDR empowers organizations with enhanced security. Look for these four capabilities when selecting an MDR product.
more → CSO Online, Monday, August 14,2023
10 Passwordless Authentication Solutions
Compromised user accounts are often the point of entry bad actors use to invade systems; this is why passwordless adoption is getting more attention. CSO lists 10 players to help CISOs make a decision on what works for their enterprise.
more → DARKReading, Friday, August 11,2023
What CISA and NSA Guidance Means for Critical Infrastructure Security
Strategically investing in solutions that meet you where you are makes all the difference in staying secure from cyber threats.
more → HelpNet Security, Friday, August 11,2023
How Executives' Personal Devices Threaten Business Security
Today, individual people - not businesses or government entities as a whole - are the primary targets, or entry points, for all major cyberattacks, according to Agency.
more → Security Boulevard, Friday, August 11,2023
Gartner Hype Cycle For Security Operations, 2023
It's time for SecOps to adapt. According to Gartner, 'even with previous advancements made in data science and analytical interventions, 'the breadth of security operations' tools and services have led to an inundation of data, disparity in tooling, and ultimately end users managing the complexities of triage and analysis across a multitude of platforms.'
more → TrueFort, Thursday, August 10,2023
Ten Ways Organizations Can Improve Security Posture
A decuplet of best practices to help organizations improve security posture
more →
NIST, Tuesday, August 8,2023
The NIST Cybersecurity Framework 2.0
This article links to public draft of the NIST Cybersecurity Framework (CSF or Framework) 2.0.
more →
HelpNet Security, Tuesday, August 8,2023
Getting The Best Possible Outcome In Ransomware Negotiation
Though typically seen as a final measure, 90% of participants from a BigID survey revealed that their company would contemplate paying a ransom if it meant they could recover data and business processes, or recover them faster.
more → Search Security, Tuesday, August 8,2023
Best Practices For Reporting Ransomware Attacks
Organizations must decide whether to report ransomware incidents to the authorities and disclose them to the public. Experts weigh in on the options and best practices.
more → DARKReading, Monday, August 7,2023
Akamai Research: Rampant Abuse Of Zero-Day And One-Day Vulnerabilities Leads To 143% Increase In Victims Of Ransomware
Akamai Technologies released a new State of the Internet report that spotlights the evolving ransomware landscape.
more → HelpNet Security, Friday, August 4,2023
Top 12 Vulnerabilities Routinely Exploited In 2022
Cybersecurity agencies from member countries of the Five Eyes intelligence alliance have released a list of the top 12 vulnerabilities routinely exploited in 2022, plus 30 additional ones also 'popular' with attackers.
more → DataCenterKnowledge, Friday, August 4,2023
Top 10 Data Center Security Stories Of 2023 (So Far)
During the first half of 2023, Data Center Knowledge readers sought information on trending risks, securing the cloud, and the role of AI in data center security.
more → Security Boulevard, Friday, August 4,2023
Threat Intelligence Sharing: 5 Best Practices
To combat sophisticated and relentless threats effectively, organizations must adopt a collaborative approach that goes beyond their individual security measures. Threat intelligence sharing has emerged as a powerful strategy to enhance cybersecurity defenses by leveraging the collective knowledge and insights of the cybersecurity community.
more → DARKReadimg, Friday, August 4,2023
How To Talk So Your CISO Will Listen
Tailor your business project proposal to suit the language your company's CISO speaks, be it business, technical, or compliance. Do your research first and gather support from around the company.
more → Security Boulevard, Thursday, August 3,2023
What Is Hyperautomation? What It Means For Security Teams.
In today's fast-paced world, businesses are always looking for ways to become more efficient, productive and profitable across every department - including security. The security operations center (SOC) must constantly keep pace with an ever-growing list of threats and alerts to triage.
more → DARKReadimg, Thursday, August 3,2023
As Artificial Intelligence Accelerates, Cybercrime Innovates
Rare government, industry alignment on AI threats means we have an opportunity to make rapid strides to improve cybersecurity and slip the hold cybercriminals have on us.
more → Security Boulevard, Monday, July 31,2023
How To Implement Zero Trust: A Comprehensive Guide
There was once a day and age when castles and moats were considered cutting-edge defense strategies. Now, in our digital and cloud-first world, it's safe to say that times have changed.
more →