WIRED Threat Level

JANUARY 24, 2021

Security Security / Security NewsZombie versions of Adobe’s troubled software can still cause problems in systems around the world.

Security 103

Security 103

The Last Watchdog

DECEMBER 8, 2020

Company networks have evolved rather spectacularly in just 20 years along a couple of distinct tracks: connectivity and security. Related: The shared burden of securing the Internet of Things. Security, meanwhile, has morphed into a glut of point solutions that mostly serve to highlight the myriad gaps in an ever-expanding attack surface. It’s called Secure Access Service Edge, or SASE , as coined by research firm Gartner.

Security 122

Security Access Cloud Cybersecurity 122

Security Affairs

DECEMBER 3, 2020

Security researchers have uncovered a new technique to inject a software skimmer onto checkout pages, the malware hides in social media buttons. Security experts at Sansec have detailed a new technique used by crooks to inject a software skimmer into checkout pages.

Security 109

Security Cloud Information Security IT 109

IT Governance

MAY 27, 2021

For all the talk of criminal hacking, ransomware infections and the technologies to prevent them, the key to protecting your organisation is cyber security awareness training. The importance of cyber security staff awareness. Cyber security awareness best practices.

Security awareness 66

Security awareness Data breaches Security Ransomware 66

Advertiser: Datadog

In this white paper, a DevSecOps maturity model is laid out for technical leaders to use to enable their organizations to stay competitive in the digital economy.

Paper

Security Affairs

DECEMBER 21, 2020

While investigating the recent SolarWinds Orion supply-chain attack security researchers discovered another backdoor, tracked SUPERNOVA. The post SUPERNOVA, a backdoor found while investigating SolarWinds hack appeared first on Security Affairs.

Security 114

Security Libraries Information Security IT 114

Data Breach Today

SEPTEMBER 2, 2021

and Below Are Affected by the Vulnerabilities Several companies that use the OpenSSL cryptography library toolkit are reportedly scrambling and releasing security advisories to their users following patching of two vulnerabilities that were first fixed and disclosed to users on Aug.

Libraries 245

Libraries Security 245

Data Breach Today

AUGUST 13, 2021

Nat Smith of Gartner Offers Advice on Cutting Through the Hype Nat Smith, senior director security analyst at Gartner, describes what factors potential buyers should consider when vendors pitch artificial intelligence-enabled security solutions

Artificial Intelligence 229

Artificial Intelligence Security 229

Data Breach Today

MARCH 19, 2021

Protecting Servers Is Foundational For Modern Data Center Security. View this OnDemand webinar to learn how VMware Carbon Black is delivering unified workload protection that’s purpose-built for vSphere

Security 265

Security 265

Data Breach Today

SEPTEMBER 10, 2021

CISO Bobby Ford on Building a New Cybersecurity Operating Model Bobby Ford of Hewlett Packard Enterprise says that too often when an organization engages with security, it happens in an ad hoc way.

Cybersecurity 142

Cybersecurity Security IT 142

Advertisement

A next-gen cloud data lake architecture has emerged that brings together the best attributes of the data warehouse and the data lake. This new open data architecture is built to maximize data access with minimal data movement and no data copies.

Cloud

Data Breach Today

AUGUST 23, 2021

Exploitation could enable attackers to bypass the security protocol of many security products, leading to stealthy exfiltration of data, researchers say

Security 208

Security 208

Data Breach Today

SEPTEMBER 2, 2021

Cryptocurrency Exchange Offering Some Affected Users $100 Worth of Bitcoin Cryptocurrency exchange Coinbase faces potential user trust challenges after a system error led it to send out false automated security alerts to about 125,000 customers indicating their two-factor authentication settings had been changed.

Authentication 201

Authentication Security IT 201

Data Breach Today

AUGUST 13, 2021

Rebecca Herold, host of the podcast show "Data Security and Privacy with the Privacy Professor," weighs in on the state of cybersecurity and privacy education and gives her recommendations on how to remedy the many issues the security community faces today

Privacy 212

Privacy Education Cybersecurity Security 212

Data Breach Today

JULY 23, 2021

Senate Bill Would Require CISA to Identify and Respond to ICS Threats A bipartisan group of senators is pushing a bill that would require CISA to identify and respond to vulnerabilities and threats that target industrial control systems. The House has already passed a similar measure

Security 283

Security 283

Speaker: Shlomo Bielak, CTO, Benchmark Corp

Shifting security left to the earliest part of development is currently in the spotlight in the developer world. What teams are now discovering is, this approach results in misdirected ownership for developers and a frustrated security team. In the current climate, we cannot afford to let security implementations falter. It's time to manage your team's energies to maximize DevOps efficiency, all the while maintaining top security standards. Join Shlomo Bielak, and learn how to keep your DevSecOps team focused and connected without creating silos.

Security

Data Breach Today

JULY 28, 2021

National Security Memo Requires NIST, CISA to Create Standards, But Compliance Is Voluntary President Joe Biden signed an executive national security memorandum on Wednesday calling for the development of new critical infrastructure cybersecurity standards for various industries.

Compliance 216

Compliance Cybersecurity Security 216

Data Breach Today

APRIL 6, 2021

This is reality for most enterprises today, and it’s changed the role of endpoint security solutions. Cisco’s Elias Levy on the Leap From EDR to XDR and What It Means Exponentially more devices on the network mean proportionately less visibility.

Security 171

Security IT 171

Data Breach Today

SEPTEMBER 7, 2021

Several security vulnerabilities in infusion pump products from B. Braun could collectively allow malicious actors to modify the dose of medicines delivered to patients, says Douglas McKee, a security researcher on a McAfee team that recently discovered the flaws

Security 205

Security 205

Data Breach Today

NOVEMBER 19, 2020

Organizations need to build security into their cloud environments to help thwart cyberthreats, says Tom Com of VMware, who describes this "intrinsic security" approach

Cloud 216

Cloud Security 216

Speaker: Shannon Lietz, Director of DevSecOps Team, Intuit

The new DevSecOps team is up and running, and you feel ready to take on rising security threats while delivering quality software updates. But that leaves just one question: how do you monitor your new program as effectively and efficiently as possible? Join Shannon Lietz, Director of DevsecOps at Intuit, and award-winning innovator, to learn the answers to these questions so you can lead your DevSecOps team to the top!

Security

Data Breach Today

SEPTEMBER 3, 2021

DuPage Medical Group Sued After Breach Affecting 655,000 DuPage Medical Group in suburban Chicago has been smacked with a lawsuit following its recent "network outage" health data breach, which was reported to regulators as potentially affecting the protected health information of more than 655,000 individuals. What are plaintiffs alleging?

Data breaches 207

Data breaches Security IT 207

Data Breach Today

JULY 2, 2021

House Committee Debates 9 Bills Focused on Securing Networks A House subcommittee is considering a slate of nine bills designed to improve cybersecurity practices in the telecommunications supply chains that support wireless networks

Cybersecurity 216

Cybersecurity Security 216

Data Breach Today

JULY 21, 2021

Plus, White House Says MFA, Encryption to Be Widely Deployed in Federal Networks New guidance from the National Institute of Standards and Technology spells out security measures for "critical software" used by federal agencies and minimum standards for testing its source code.

Encryption 212

Encryption Security IT 212

Data Breach Today

AUGUST 18, 2021

Offering Work-Life Balance and a Career Path Are Key Factors Some cybersecurity leaders are finding that when it comes to retaining workers, offering a solid work-life balance and defining a career growth path is more important than salary

Cybersecurity 161

Cybersecurity Security IT 161

Speaker: Naresh Soni, CTO, Tsunami XR

The pandemic has led to new data vulnerabilities, and therefore new cybersecurity threats. As technology leaders, it's time to rethink some of your product security strategies. Whether you need to rework your security architecture, improve performance, and/or deal with new threats, this webinar has you covered.

Security

Data Breach Today

AUGUST 26, 2021

Microsoft, Google Pledge Billions in Cybersecurity Spending Over Several Years The Biden administration unveiled a package of supply chain and critical infrastructure security initiatives, following a meeting at the White House with tech and other executives.

Cybersecurity 243

Cybersecurity Security 243

Data Breach Today

MAY 28, 2021

FireEye: Attackers Using New Malware and Procedures Two China-linked threat groups are still exploiting unpatched flaws in Ivanti's Pulse Connect Secure VPN products, using additional malware variants to support cyberespionage, FireEye's Mandiant Threat Intelligence team says

Security 227

Security 227

Security Affairs

AUGUST 29, 2021

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 329 appeared first on Security Affairs.

Ransomware 88

Ransomware Security Sales Personal data 88

Data Breach Today

DECEMBER 4, 2020

Experian's David Britton on Identity Governance and Security Organizations can enhance security while maintaining a good customer experience by leveraging data for authentication, says David Britton of Experian

Customer Experience 155

Customer Experience Authentication Security Government 155

Advertisement

This paper will discuss why organizations frequently end up with multiple data copies and how a secure "no-copy" data strategy enabled by the Dremio data lake service can help reduce complexity, boost efficiency, and dramatically reduce costs.

Security

Data Breach Today

NOVEMBER 9, 2020

Agency Requires Comprehensive Security Program As part of a settlement of allegations that Zoom "engaged in a series of deceptive and unfair practices that undermined the security of its users," the U.S.

Security 274

Security IT 274

Security Affairs

SEPTEMBER 19, 2021

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 332 appeared first on Security Affairs.

Ransomware 58

Ransomware Authentication Encryption Security 58

Data Breach Today

MAY 18, 2021

ChristianaCare CISO Anahi Santiago on Securing Hospitals Without Borders Telehealth, a remote workforce, cloud migration - these were dreams, but not reality for many healthcare CISOs pre-pandemic. Today's a new world, and ChristianaCare CISO Anahi Santiago is happy to be helping to secure it.

Cloud 212

Cloud Security IT 212

Data Breach Today

JULY 3, 2020

ENISA's Rossella Mattioli Reviews New Report Rossella Mattioli, a network and information security expert at ENISA, the European Union Agency for Cybersecurity, discusses a new report offering insights on detecting network security incidents

Security 183

Security Cybersecurity Information Security 183

Data Breach Today

JULY 17, 2021

national security Commerce Department Says Organizations Are Aligned With Russian Intelligence The Department of Commerce is restricting trade with four Russian IT and cybersecurity firms, along with two other entities, over concerns that these organizations pose a threat to U.S.

Cybersecurity 269

Cybersecurity Security IT 269

Data Breach Today

JUNE 15, 2021

Risk 220

Risk Security Access 220

Data Breach Today

APRIL 16, 2021

Effective software security means enabling the development team with the tools and training it needs to fix what they find. Join this session to find out best practices in remediating software vulnerabilities in smart ways

Security 232

Security IT 232

Security Affairs

AUGUST 22, 2021

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 328 appeared first on Security Affairs.

Ransomware 87

Ransomware Security IoT Phishing 87

Schneier on Security

FEBRUARY 19, 2021

This report is six months old, and I don’t know anything about the organization that produced it, but it has some alarming data about router security. A published private key provides no security at all.

Security 97

Security Paper IT 97