Information Management Today

GUEST ESSAY: Five stages to attain API security — and mitigate attack surface exposures

The Last Watchdog

MARCH 8, 2023

Related: It’s all about attack surface management APIs help digital transformation by enabling faster and more efficient business processes, improving customer experience, and providing new ways to interact with your business. So, how can you ensure your API security is effective and enable your digital transformation?

Digital transformation

Digital transformation Security Data breaches Customer Experience

What is Cyber Threat Hunting? Definition, Techniques & Steps

eSecurity Planet

FEBRUARY 17, 2023

You can’t be paranoid enough when it comes to cybersecurity. And that’s why cyber threat hunting adds human and technical elements to cyber defenses to try to find signs that those cyber defenses may have already been breached. Sadly, that turns out to be true in many cases.

Analytics

Analytics Cybersecurity Security Access

The state of European cybersecurity and lessons to learn

Thales Cloud Protection & Licensing

JUNE 12, 2019

As one of our recent blogs discussed, we are entering a new era of business – one that will see wholesale digital transformation drive a digital-first approach by businesses globally. So, as the nature of data threats evolve and pressure on the boardroom grows to tighten up cyber resilience, what has changed?

Cybersecurity

Cybersecurity Digital transformation Encryption GDPR

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Top cyber security tips for keeping kids safe online

IT Governance

APRIL 28, 2020

If you’re among the millions of people working from home while also trying to entertain and educate your kids during the coronavirus pandemic, we imagine things have been pretty chaotic. The Internet can be a dangerous place, which is why we talk so often about the importance of secure browsing. Install antivirus software.

Security

Security Phishing Personal data Risk

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

eSecurity Planet

MARCH 3, 2023

The White House’s National Cybersecurity Strategy unveiled yesterday is an ambitious blueprint for improving U.S. President Biden came into office around the time of the SolarWinds and Colonial Pipeline cyber attacks, so cybersecurity has been a major focus of the Administration from the beginning.

Cybersecurity

Cybersecurity Government Manufacturing Personal data

A Look Back On Five Key Developments in Cybersecurity and Data Protection in Southeast Asia in 2022

Data Protection Report

JANUARY 9, 2023

With the year 2022 firmly in the rear view, and as we look to start the new year in 2023, Norton Rose Fulbright’s Regulatory Compliance and Investigations team looks back and rounds up the five key cyber and data protection developments that took place in Southeast Asia in 2022. . in damages to its customer over data leak.

Cybersecurity

Cybersecurity Personal data Data breaches Ransomware

Weekly podcast: Bank of England, the OPM, Patch Tuesday and Japanese minister

IT Governance

NOVEMBER 16, 2018

This week, we discuss a Bank of England cyber resilience exercise, the latest cyber security news from the US Office of Personnel Management, the highlights of this month’s Patch Tuesday, and a surprising admission by a Japanese cyber security minister. Here are this week’s stories.

Encryption

Encryption Risk Passwords Government

The IoT Cybersecurity Act of 2020: Implications for Devices

eSecurity Planet

JANUARY 22, 2021

By 2025, we expect 21.5 Last month’s passage of the IoT Cybersecurity Improvement Act of 2020 means all IoT devices used by government agencies will soon have to comply with strict NIST standards. We start with the most critical information–what, if any, implications this has for the IoT universe. Trickle-out standards.

IoT

IoT Cybersecurity Manufacturing Government

Software is Infrastructure

ForAllSecure

OCTOBER 23, 2019

This however has the unfortunate side-effect of imbuing these systems with an additional characteristic - the fusion of hardware and software make these systems essentially cyber-physical systems. What’s missing from the process is the concept of resilience. The challenge is that this sense of safety is at a point-in-time.

Security

Security Cloud Risk IT

Software is Infrastructure

ForAllSecure

OCTOBER 23, 2019

This however has the unfortunate side-effect of imbuing these systems with an additional characteristic - the fusion of hardware and software make these systems essentially cyber-physical systems. What’s missing from the process is the concept of resilience. The challenge is that this sense of safety is at a point-in-time.

Security

Security Cloud Risk IT

SOFTWARE IS INFRASTRUCTURE

ForAllSecure

OCTOBER 23, 2019

This however has the unfortunate side-effect of imbuing these systems with an additional characteristic - the fusion of hardware and software make these systems essentially cyber-physical systems. What’s missing from the process is the concept of resilience. The challenge is that this sense of safety is at a point-in-time.

Security

Security Cloud Risk IT

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

I have authored 13 books on these subjects, including Data and Goliath: The Hidden Battles to Collect Your Data and Control Your World (Norton, 2015). I am also a special advisor to IBM Security and the Chief Technology Officer of IBM Resilient. The Equifax breach was a serious security breach that puts millions of Americans at risk.

Personal data

Personal data Computer and Electronics Privacy Data breaches

The Hacker Mind Podcast: Incident Response in the Cloud

ForAllSecure

APRIL 4, 2023

How is it different, and why do we need to pay more attention to it today, before something major happens tomorrow. James Campbell, CEO of Cado Security , shares his experience with traditional incident response, and how the cloud, with its elastic structure, able to spin up and spin down instances, is changing incident response.

Cloud

Cloud Government Access IT

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

How many others are in the wild now? And how will we find the next one? What I want to know is how that vulnerability was able to persist for so long. We hear the name, but do we really understand the vulnerability? We hear the name, but do we really understand the vulnerability? 4 characters.

Encryption

Encryption Artificial Intelligence Marketing Security

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

How many others are in the wild now? And how will we find the next one? What I want to know is how that vulnerability was able to persist for so long. We hear the name, but do we really understand the vulnerability? We hear the name, but do we really understand the vulnerability? 4 characters.

Encryption

Encryption Artificial Intelligence Marketing Security

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

How many others are in the wild now? And how will we find the next one? What I want to know is how that vulnerability was able to persist for so long. We hear the name, but do we really understand the vulnerability? We hear the name, but do we really understand the vulnerability? 4 characters.

Encryption

Encryption Artificial Intelligence Marketing Security

Top Security Orchestration, Automation and Response (SOAR) Solutions for 2022

eSecurity Planet

MARCH 16, 2022

They often struggle to fill vital security roles such as security analysts, leaving their data and infrastructure vulnerable to attacks at a time when cyber threats are soaring. SOAR is a collection of security software that has the purpose of accelerating incident investigation and response. Why Implement SOAR? The Best SOAR Vendors.

Security

Security Cybersecurity Marketing Cloud

Congress Passes Cyber Incident Reporting for Critical Infrastructure Act of 2022

Data Matters

MARCH 21, 2022

Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) is intended to provide the federal government with a better understanding of the nation’s cyberthreats and facilitate a coordinated national response to ransomware attacks. Cyber Incident Report. Background. 651, et seq.

Ransomware

Ransomware Cybersecurity Agriculture Communications

Living in a data sovereign world

IBM Big Data Hub

OCTOBER 16, 2023

First, we must understand how data sovereignty came to be. For example, when dealing with data sovereignty in the US, we need to be aware of the pertinent laws both at the federal level (of which there are many) and individual state level. What is data sovereignty? Data sovereignty in the EU is an evolving field.

Cloud

Cloud Compliance Data Privacy Privacy

Russia’s SolarWinds Attack and Software Security

Schneier on Security

JANUARY 8, 2021

Our insecure Internet infrastructure has become a critical national security risk — one that we need to take seriously and spend money to reduce. President-elect Joe Biden’s initial response spoke of retaliation , but there really isn’t much the United States can do beyond what it already does.

Security

Security Government Marketing IoT

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. In addition to banning the affiliated accounts, we are considering appropriate legal action. Data breached: 4,186,879,104 messages. Only 4 definitely haven’t had data breached.

Data Privacy

Data Privacy Privacy Manufacturing Security

ROUNDTABLE: Mayorkas’ 60-day cybersecurity sprints win support; also a prove-it-to-me response

The Last Watchdog

APRIL 8, 2021

Mayorkas has been championing an extensive portfolio of initiatives to rally public-private collaboration to fend off cyber criminals and state-sponsored threat actors. I’m excited by his visionary focus on diversity as a source for cyber talent. We can now start imagining rapid movement from policy to action.

Cybersecurity

Cybersecurity IT Ransomware Government

Information Management Today

GUEST ESSAY: Five stages to attain API security — and mitigate attack surface exposures

What is Cyber Threat Hunting? Definition, Techniques & Steps

Webinars

Trending Sources

The state of European cybersecurity and lessons to learn

Webinars

Top cyber security tips for keeping kids safe online

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

A Look Back On Five Key Developments in Cybersecurity and Data Protection in Southeast Asia in 2022

Weekly podcast: Bank of England, the OPM, Patch Tuesday and Japanese minister

The IoT Cybersecurity Act of 2020: Implications for Devices

Software is Infrastructure

Software is Infrastructure

SOFTWARE IS INFRASTRUCTURE

Me on the Equifax Breach

The Hacker Mind Podcast: Incident Response in the Cloud

The Hacker Mind Podcast: Hunting The Next Heartbleed

The Hacker Mind Podcast: Hunting The Next Heartbleed

The Hacker Mind Podcast: Hunting The Next Heartbleed

Top Security Orchestration, Automation and Response (SOAR) Solutions for 2022

Congress Passes Cyber Incident Reporting for Critical Infrastructure Act of 2022

Living in a data sovereign world

Russia’s SolarWinds Attack and Software Security

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

ROUNDTABLE: Mayorkas’ 60-day cybersecurity sprints win support; also a prove-it-to-me response

Stay Connected