Business 2 Community, Monday, July 31,2023
50+ Phishing Statistics For 2023
Firstly, what exactly is phishing?
more →
Back Issues This Week → Popular →
All issues › Archive
Security — Archive
2,322 articles · page 39 of 47
HelpNet Security, Friday, July 28,2023
CISOs Consider Zero Trust A Hot Security Ticket
The majority of organizations are on the road to implementing a zero trust framework to increase their overall security risk posture, according to PlainID. However, only 50% said that authorization makes up their zero trust program - potentially exposing their infrastructure to threat actors.
more →
appviewx, Thursday, July 27,2023
10 Identity And Access Management Best Practices For Robust Digital Identity Protection
Identity and Access Management (IAM) enhances security by ensuring that only authorized humans and machines have access to sensitive information and resources.
more →
Gestalt IT, Wednesday, July 26,2023
Cybersecurity Threats, Simple Errors, And The Death Of An Icon (31m)
Cybersecurity remains a critical concern, dominating headlines with its persistent threats and sophisticated attacks. Recent incidents, such as the stolen Microsoft keys and the ongoing MOVEit file transfer hack, exemplify the complexity and severity of security breaches.
more →
DARKReading, Wednesday, July 26,2023
Companies Must Have Corporate Cybersecurity Experts, Sec Says
Enterprises must now describe their management's expertise in cybersecurity. But what exactly does that entail?
more →
VentureBeat, Monday, July 24,2023
The Top 10 Technologies Defining The Future Of Cybersecurity
CISOs face a tough balancing act. They must protect new digital transformation strategies that deliver revenue, and keep fragmented legacy systems secure. At the same time they have to battle the siege on identities, and get more work done with a smaller cybersecurity staff.
more →
LeadsID, Friday, July 21,2023
What Function Do Insider Threat Programs Serve?
In the fast-paced digital world we live in, cybersecurity is a major concern for businesses everywhere. While we often hear about external cyber threats, it's essential not to overlook the risks posed by those within the organization.
more →
axiad, Friday, July 21,2023
Moving To Passwordless Authentication
A recent Axiad/ESG survey found that 82% of respondents indicate that moving to passwordless authentication is a top-5 priority. This shows organizations understand how critical passwordless authentication is today, but many are getting hung up on how to get there.
more →
HelpNet Security, Friday, July 21,2023
CISOs Are Making Cybersecurity A Business Problem
U.S. enterprises are responding to growing cybersecurity threats by working to make the best use of tools and services to ensure business resilience, according to ISG.
more → ITProToday, Wednesday, July 19,2023
Cybersecurity In 2023: Top Stories (So Far)
In the first half of 2023, cybersecurity practices faced new challenges amid the meteoric rise of AI. Here's a midyear roundup of our most-read articles about cybersecurity.
more →
Enzoic, Wednesday, July 19,2023
A Guide To GDPR Compliance
As we become more connected in the digital age, data security becomes increasingly critical. For organizations around the world, the responsibility of protecting data has become a paramount concern, particularly when this data pertains to EU citizens.
more →
DARKReading, Wednesday, July 19,2023
3 Ways AI Could Improve Authentication
As companies navigate how to protect themselves from the onslaught of increasingly sophisticated fraud threats, artificial intelligence will be a critical piece of next-gen authentication.
more → Scytale, Monday, July 17,2023
Securing The Kingdom: Privileged Access Management (PAM) And ISO 27001 Compliance
In today's digital landscape, admin accounts, service accounts, and break glass accounts have become synonymous with privileged access and elevated privileges in the IT environment.
more →
Click Armor, Monday, July 17,2023
7 Remote Work Cyber Security Rules Every Business Should Follow
With summer in full swing, it's a good time for your employees to review remote work cyber security rules and guidelines. During these months many employees are trying to get more work done at home (or at the cottage).
more →
PowerDMARC, Friday, July 14,2023
DMARC PCI DSS: Now a Mandatory Requirement For Version 4.0
By March 2025, DMARC implementation will be mandatory in PCI Data Security Standards version 4.0. DMARC, recommended by the PCI SSC as a future-dated requirement, protects companies from email-based attacks like phishing. After the deadline, companies processing card data must implement DMARC for robust email authentication.
more →
Virtualization Review, Thursday, July 13,2023
Inside The Mind Of A 'Hacker': How They Use Generative AI
A new survey-based report sheds light on how "hackers" use generative AI, though in this case those hackers are bug hunters wearing white, not black, hats.
more →
InformationWeek, Thursday, July 13,2023
Defining The CISO Role
Chief information security officers are relative newcomers to the C-suite. Many organizations employ CISOs, and it is well-known enough to have its own acronym. But it isn't a given in all C-suites: forty-five percent of 130 respondents to 2021 survey from software company Navisite reported that their companies did not have a CISO.
more →
AppOmni, Wednesday, July 12,2023
OAuth Token: What It Is, How It Works, and Its Vulnerabilities
Previous security breaches at Heroku and GitHub serve as stark reminders that OAuth token theft and inactive, overly permissive SaaS-to-SaaS connections represent significant security risks to any organization.
more →
TrueFort, Wednesday, July 12,2023
How Can Organizations Manage Technical Debt?
Organizations need to manage technical debt, but why, and what is the best process for successful mitigation?
more →
Cavelo, Wednesday, July 12,2023
Data Protection And Confidentiality Training: 10 Best Practices For Your Team
Did you know that your company's employees are your biggest cybersecurity risk? In fact, 52 percent of businesses admit that employees are their biggest weakness in IT security.
more →
CIO, Wednesday, July 12,2023
5 Zero Trust and SASE trends for CISOs to watch
Businesses will find that robust, built-in network support for Zero Trust and SASE frameworks can provide the protection required by today's digital transformation.
more →
DARKReading, Tuesday, July 11,2023
Top Takeaways From Table Talks With Fortune 100 CISOs
As organizations struggle to keep up with new regulations and hiring challenges, chief information security officers share common challenges and experiences.
more → Menlo Security, Tuesday, July 11,2023
How Legacy URL Reputation Evasion (LURE) Attacks Easily Bypass Current Security Tech
Whether it's the push for fully remote work, in-office work, or a hybrid workstyle, the conversation around how and where employees will work continues. But guess what? To cybercriminals, this conversation doesn't really matter.
more →
TrustCloud, Friday, July 7,2023
Why SOC 2 Is An Industry Standard
SOC 2 (Service Organization Control 2) provides a framework for assessing and reporting on the security, availability, processing integrity, confidentiality, and privacy of systems and data of service organizations. It was developed by the American Institute of Certified Public Accountants (AICPA) to address the need for consistent and comprehensive security and privacy controls in service organizations.
more →
Solutions Review, Friday, July 7,2023
Debunking 5 Common SIEM Myths
Myths around SIEM (Security Information and Event Management) can hinder a successful deployment. By debunking these myths, organizations gain a realistic understanding of what SIEM solutions can and cannot accomplish.
more →
Truefort, Thursday, July 6,2023
Why Insider Risk Cybersecurity Should Be A Major Concern
Why every organization should be concerned about insider risk cybersecurity and what we can do about it
more → ManagedMethods, Thursday, July 6,2023
What Is A Cybersecurity Incident Response Plan?
Cybersecurity threats are a constant problem in today's digital world. But, for the U.S. school system, it's an especially serious concern.
more →
HelpNet Security, Thursday, July 6,2023
Cybercriminals Can Break Voice Authentication With 99% Success Rate
Computer scientists at the University of Waterloo have discovered a method of attack that can successfully bypass voice authentication security systems with up to a 99% success rate after only six tries.
more → CIODIVE, Wednesday, July 5,2023
The Role For AI In Cybersecurity
Generative AI can be an ally for new security professionals. For more seasoned security analysts, it can offer time to refine their skills through automation of repetitive tasks.
more →
FORTRA, Wednesday, July 5,2023
PCI DSS 4.0 Requirements -Test Security Regularly and Support Information Security with Organizational Policies and Programs
The Payment Card Industry Data Security Standard (PCI DSS) has always been a massive security undertaking for any organization that has worked to fully implement its recommendations.
more →
DARKReading, Wednesday, July 5th, 2023
Mitigating Risk With Threat Intelligence
When it comes to enterprise risk, third-party cybersecurity risks have increased substantially in recent years. By implementing an effective third-party risk management program, organizations can mitigate much of their risk and better protect themselves from attacks that emanate from third parties. The key word here is "effective."
more → Architecture & Governance Magazine, Monday, July 3,2023
Is Zero Trust Achievable?
The concept of Zero Trust is 'never trust, always verify' so that in a Zero Trust Architecture (ZTA) every access request is regarded as potentially hostile and so needs to be authenticated, authorised and continually validated.
more →
TechCrunch, Thursday, June 29,2023
Millions Affected By Moveit Mass-Hacks As List Of Casualties Continues To Grow
Hackers have compromised the personal data of more than 15.5 million individuals by exploiting a security vulnerability in the MOVEit file transfer tool, and the number of victim organizations continues to grow.
more →
Security Boulevard, Wednesday, June 28,2023
The Unfair Blame Game: Why CISOs Shouldn't Shoulder All The Responsibility
In the ever-evolving landscape of cybersecurity, organizations face a constant battle against hackers and data breaches. The role of the Chief Information Security Officer (CISO) is crucial in safeguarding digital assets and mitigating risks.
more →
Solutions Review, Wednesday, June 28,2023
Debunking 7 Common Storage Security Myths
Debunking storage security myths helps organizations align their security practices with the current threat landscape. The cybersecurity landscape is constantly evolving, with new vulnerabilities, attack vectors, and techniques emerging regularly.
more → TechRepublic, Tuesday, June 27,2023
What Is Data Loss Prevention (DLP)?
DLP helps organizations protect their sensitive data. Learn about the best practices and tools available to prepare for and prevent data loss.
more →
iapp, Tuesday, June 27,2023
IAPP Publishes Privacy Risk Study 2023
The IAPP released the Privacy Risk Study 2023, which examines the significant privacy challenges faced by organizations in relation to risk assessment and management.
more →
Scytale, Tuesday, June 27,2023
Essential 8 Maturity Model: Achieving Cyber Security Excellence
The Essential 8 Maturity Model is quickly rising in rank and is known for helping businesses establish the baseline of cyber threat protection. But how exactly should organizations achieve Essential 8 compliance, and is it worth the fuss?
more → IT Security Guru, Monday, June 26,2023
What Does Cybersecurity Really Mean?
As technology continues to play an integral role in our daily lives, the growing importance of cybersecurity cannot be overstated. From personal data breaches to sophisticated cyberattacks on critical infrastructure, the consequences of inadequate cybersecurity measures can be far-reaching and devastating.
more →
Security Boulevard, Monday, June 26,2023
Top 5 Industries Most Vulnerable To Data Breaches In 2023
Today's interconnected digital landscape has enabled organizations to unlock new levels of efficiency via automation, cloud storage, modernization of legacy applications, and much more.
more → Hypr, Monday, June 26,2023
RIP Passwords: Why The Future Is Passwordless
Almost every website, app, and user platform now requires usernames and passwords. And for user data to remain secure, passwords must be strong-most platforms require a mix of upper and lower case letters, numbers, and special characters.
more →
DARKReading, Monday, June 26,2023
3 Steps To Successfully & Ethically Navigate A Data Breach
In this day of "not if, but when" for breaches, transparency and full disclosure are important to salvage a company's reputation and keep public trust.
more → Security Boulevard, Friday, June 23, 2023
Zero Trust Security Guide For The Digital Enterprise
The growing severity and frequency of data breaches and cyberattacks expose the reality that current security strategies are ineffective in combatting modern cyber threats.
more → Enterprise Storage Forum, Friday, June 23, 2023
Top Data Loss Prevention Solutions For 2023
Data loss prevention tools help businesses protect one of their most valuable assets: information. Data is not only vulnerable to cybersecurity threats, but to inaccuracies, duplicates, and other problems that affect its validity. Data loss prevention software identifies weaknesses within enterprise data management and alerts businesses of those issues before they cause problems.
more →
SearchSecurity, Friday, June 23, 2023
Top 10 Threat Modeling Tools, Plus Features To Look For
Automated threat modeling tools make identifying threats simpler, but the tools themselves can be fairly complex. Understanding where risks exist is only one part of the process.
more →
Cyber Defense Magazine, Thursday, June 22, 2023
5 Benefits Of SIEM To The Cybersecurity Of Any Business
Cybersecurity is a top priority for many businesses today because of the significant threats they face from hackers and cybercriminals. Companies now deal with a lot of consumer data and they are obliged to protect them from being leaked and accessed by malicious actors.
more →
Imperva, Wednesday, June 21, 2023
Understanding and Mitigating the MOVEit Incidents
Over the last several weeks, attackers have taken advantage of vulnerabilities in MOVEit, a popular file transfer application developed by Progress.
more →
MixMode, Wednesday, June 21, 2023
Top 5 Takeaways from the CISA 2023-2025 Strategic Plan That the Cybersecurity Community Should Know About
In its inaugural bi-annual strategic plan, CISA (Cybersecurity and Infrastructure Security Agency), the nation's primary cybersecurity oversight agency, highlights the importance of taking a proactive approach to mitigate threats that takes advantage of recent advancements in AI technology.
more →
DevOps.com, Wednesday, June 21, 2023
The Security Pipeline
Over the last few years, the ability to secure our applications has grown, and deep integration into the DevOps toolchain has, too. There are more tools doing more security checks protecting more of the infrastructure and source than there have ever been. The key is putting them to use intelligently.
more →
Security Boulevard, Tuesday, June 20, 2023
Understanding Identity Access and Management (IAM) Security
A crucial component of protecting your organization, identity access and management (IAM) security has become a trusted cybersecurity best practice. It takes control of user access to systems, data, and resources within your company's networks and manages digital identities, improving the effectiveness and efficiency of your IT security process.
more →