The Last Watchdog

OCTOBER 4, 2023

In a keynote address, Omdia’s Eric Parizo, managing prinicipal analyst, and Andrew Braunberg, principal analyst, unveiled an approach they coined as “proactive security.” RBVM solutions don’t merely identify vulnerabilities, it quantifies and prioritizes them, making risk management more strategic. This is a useful way to look at it.

Risk 222

Risk Security Cloud Marketing 222

Data Breach Today

DECEMBER 19, 2023

CISA Failed to Include High-Risk Vulnerabilities in Known Exploit List, Report Says The Cybersecurity and Infrastructure Security Agency maintains an exhaustive list that the U.S.

Risk 278

Risk Cybersecurity Security IT 278

Data Breach Today

OCTOBER 26, 2023

DXC Technology, Aquia CISOs on Challenges, Best Practices of Managing Code Bases In the latest "Proof of Concept," DXC Technology IT CISO and CyberEdBoard member Mike Baker and Chris Hughes, co-founder and CISO of Aquia, join ISMG editors to discuss benefits, challenges and misconceptions of adopting open source software in modern code bases - plus (..)

Risk 253

Risk Security IT 253

Data Breach Today

APRIL 5, 2022

Witnesses at Hearing Also Discuss Role of Government in Security Incident Response A water trade association, at a congressional hearing Tuesday, urged the federal government to institute minimum cybersecurity standards for water systems.

Risk 245

Risk IT Government Cybersecurity 245

eSecurity Planet

JANUARY 18, 2024

When assessing the overall security of cloud storage and choosing a solution tailored to your business, it helps to determine its features, potential risks, security measures, and other considerations. It excels in remote access, scalability, and security, with distributed storage options and privacy adherence capabilities.

Cloud 124

Cloud Risk Security Encryption 124

Data Breach Today

NOVEMBER 27, 2023

Zscaler Brings Generative AI to Data Protection Bundles, Debuts Standalone AI Tools Zscaler infused generative AI features into its data protection bundles and is introducing AI-powered products that quantify risk and predict breaches, said CEO Jay Chaudhry.

Risk 238

Risk Cloud Security IT 238

The Last Watchdog

FEBRUARY 5, 2024

One critical issue faced by organizations that rely on Exchange Server is the risk of a corrupt Exchange Server database cropping up. Fortunately, effective tools and wise best practices can help mitigate this this exposure enabling companies to indefinitely leverage Exchange Server as a productive, resilient and secure communications tool.

Risk 264

Risk Cloud Communications Education 264

Data Breach Today

DECEMBER 19, 2023

Okta Says Acquisition Will Expand Its Ability to Detect High-Risk Accounts Okta finalized an agreement to acquire Spera Security, saying the purchase will expand its ability to track risky accounts and access misconfigurations.

Security 292

Security Risk Access IT 292

Data Breach Today

MARCH 29, 2023

Lightspin Deal Will Help Prioritize and Remediate Issues for Cloud-Native Resources Cisco plans to purchase its second cloud security startup in two months to deliver context, prioritization and remediation recommendations for cloud native resources.

Cloud 144

Cloud Risk Security IT 144

Data Breach Today

NOVEMBER 9, 2023

Reconsidering the One-Size-Fits-All Healthcare Risk Analysis For over a decade, the HIPAA Security Rule has required covered entities and business associates to engage in risk analysis and management.

Security 267

Security Data breaches Risk IT 267

Schneier on Security

APRIL 27, 2023

Stanford and Georgetown have a new report on the security risks of AI—particularly adversarial machine learning—based on a workshop they held on the topic. The understanding of how to secure AI systems, we concluded, lags far behind their widespread adoption.

Risk 98

Risk Security Cybersecurity Government 98

The Last Watchdog

JANUARY 2, 2024

In today’s digital landscape, organizations face numerous challenges when it comes to mitigating cyber risks. Here are some of the key challenges that organizations encounter in their efforts to mitigate cyber risks in the current environment. Lack of security awareness and education. Inadequate security testing.

Risk 202

Risk Security awareness Education Compliance 202

Data Breach Today

JUNE 9, 2022

Jeetu Patel of Cisco Discusses the Critical Ability to 'Bounce Back' From Incidents With rising threats facing critical infrastructure sectors, such as healthcare and financial services, "society as a whole, and the safety of society is completely dependent on cyber risk" - and being security resilient, says Jeetu Patel of Cisco.

Financial Services 244

Financial Services Security IT Risk 244

The Last Watchdog

AUGUST 29, 2023

Here’s what you should know about the risks, what aviation is doing to address those risks, and how to overcome them. It is difficult to deny that cyberthreats are a risk to planes. Risks delineated Still, there have been many other incidents since. There was another warning from the U.S.

Risk 264

Risk Artificial Intelligence Cybersecurity Compliance 264

Data Breach Today

FEBRUARY 21, 2024

13,000 Users Received Incorrect Thumbnails; 1,504 Tapped on Them, Risking Privacy A glitch in Wyze home security cameras permitted thousands of users to catch glimpses inside strangers' homes as its cloud system came back online after an hourslong outage.

Security 243

Security Cloud Privacy Risk 243

Data Breach Today

AUGUST 17, 2021

Security Experts Size Up Impact of US Rush to Leave Afghanistan It's unlikely that the U.S. abandoning its embassy and other facilities in Afghanistan poses cyber risks, thanks to the emergency planning that was already in place, some security experts say.

Risk 357

Risk Cybersecurity Security IT 357

Data Breach Today

JUNE 10, 2021

New Stand-Alone Firm Is Tasked With Combatting Digital Commerce Fraud RSA Security LLC has spun off its fraud and risk intelligence business into a stand-alone company named Outseer. The new company will be led by Reed Taussig as CEO, and it will serve a worldwide customer and partner community.

Risk 353

Risk Security IT 353

eSecurity Planet

APRIL 29, 2024

Integrated risk management (IRM) is a discipline designed to embed risk considerations for the use of technology throughout an organization. In other words, it links technology spending directly to the value of the resource protected and the associated risks controlled by that technology.

Risk 67

Risk Compliance Communications Insurance 67

IT Governance

JUNE 15, 2022

In an increasingly digital world, there are an escalating number of cyber security risks for business to address. IT Governance identified more than 1,200 publicly disclosed data breaches in 2021 , while another report found that security incidents cost almost £3 million on average. Poor patch management. Weak passwords.

Risk 144

Risk Security Passwords Phishing 144

eSecurity Planet

OCTOBER 12, 2023

That’s the case with Active Directory legacy protocols, so to help you secure your Active Directory environment, we’ve created a script to help you ensure that legacy protocols are disabled. Your primary goal in securing Active Directory infrastructure is to reduce the attack surface. all versions of TLS) NTLM Version 1.1

Risk 142

Risk Security Authentication Encryption 142

Data Breach Today

APRIL 11, 2022

stablecoin, but there are also high risks associated with it. Some security experts question whether the technology has advanced enough and consider stablecoin risks. OCC's Hsu: Fraud Loss 'Pales in Comparison' to $2 Trillion Crypto Market Wealth Acting Comptroller of the Currency Michael J.

Risk 245

Risk Marketing Security IT 245

Data Breach Today

SEPTEMBER 13, 2021

Meralco's Mel Migriño on How to Ensure OT Security In addition to doing asset inventory, it is important to profile the risks of each asset to ensure OT security, says Mel Migriño, vice president and group CISO at Meralco, the largest power distribution unit in the Philippines.

IT 167

IT Security Risk 167

Data Breach Today

APRIL 21, 2022

Recent security incidents involving third-party software, including Okta and Log4j, underscore the importance of healthcare entities taking steps to enhance their vendor risk management programs, says Chris Frenz, assistant vice president of IT security at Mount Sinai South Nassau.

Risk 237

Risk Security IT 237

Security Affairs

MAY 3, 2024

Microsoft devised an attack technique, dubbed ‘Dirty Stream,’ impacting widely used Android applications, billions of installations are at risk. Microsoft notified developers of the affected apps through Coordinated Vulnerability Disclosure (CVD) via Microsoft Security Vulnerability Research (MSVR). ” reported Google.

Risk 89

Risk Access IT Security 89

Data Breach Today

SEPTEMBER 27, 2023

It's not just medical device cybersecurity that's keeping some healthcare security leaders up at night - it's also the risks posed by other critical connected gear that patients and clinicians depend upon, said Ali Youssef, director of medical device and emerging tech security at Henry Ford Health System.

Security 256

Security Cybersecurity Risk IT 256

Data Breach Today

MAY 16, 2022

NIS2 Directive Aims to Counter Increasing Cyberthreats to Europe The European Parliament and the Council of the European Union on Friday reached a provisional agreement to set a "baseline for cybersecurity risk management measures and reporting obligations."

Risk 241

Risk Cybersecurity Information Security Security 241

Security Affairs

MAY 2, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added a GitLab Community and Enterprise Editions improper access control vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. The company backported security patches to 16.1.6, The flaw impacts the following versions: 16.1 prior to 16.1.5 prior to 16.2.8

IT 116

IT Passwords Access Cybersecurity 116

The Last Watchdog

JULY 5, 2022

The top reason, chosen from a proved list of ten, was ‘increased cyber security risks’, followed by the related concern, ‘new and/or increased data privacy regulations’. Cyber security keeps the C-suite up at night and perhaps that’s no surprise. Context of risk. Risk, including cyber risk, cannot be viewed in isolation.

Risk 279

Risk Military Marketing Data Privacy 279

The Last Watchdog

APRIL 17, 2023

Even the most well-protected companies can be susceptible to attacks if they are not careful about a proactive approach towards cyber security. Here are a few of the top security weaknesses that threaten organizations today: Poor risk management. Vulnerability management is another key consideration when it comes to security.

Risk 218

Risk Cybersecurity Data breaches Access 218

Schneier on Security

MARCH 1, 2021

The hack gave the attackers access to the computer networks of some 18,000 of SolarWinds’s customers, including US government agencies such as the Homeland Security Department and State Department, American nuclear research labs, government contractors, IT companies and nongovernmental agencies around the world.

Risk 144

Risk Security Cybersecurity Marketing 144

Jamf

AUGUST 9, 2023

In this webinar series, Aaron Webb explains what security frameworks are, their importance and explains the critical role they play when securing your organization’s environment.

Security 98

Security IT Compliance Risk 98

eSecurity Planet

FEBRUARY 23, 2022

How can an industrial recycler safely secure its $400,000 hard drive recertification rack with control software that only runs on Windows XP? These are not uncommon risks. The devices themselves can’t be secured, but that doesn’t mean we can’t use basic IT techniques to reduce our security risks.

Risk 131

Risk Security IoT Communications 131

Security Affairs

APRIL 25, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-38028 Microsoft Windows Print Spooler Privilege Escalation vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. National Security Agency and Microsoft addressed it with the release of Microsoft October 2022 Patch Tuesday security updates.

IT 124

IT Education Cybersecurity Risk 124