Why You Should Integrate IoT Security Into Your Vulnerability Management Program
It’s safe to say that the internet of things (IoT) is mature enough that it’s on everyone’s radar by now. The IoT as we know it has been around for more than a decade, but it wasn’t until about...
The Biggest Stories From RSAC 2019: What Scares the Cybersecurity Experts?
RSAC 2019 has officially wrapped. The reported attendance at San Francisco’s Moscone Center was more than 42,500, but to anyone who was there, it seemed like there was at least 60,000 security professionals on the ground. Whether or not...
How Patch Posture Reporting Improves Security Landscapes
Vulnerability identification and remediation are critical to maintaining a secure environment. Today, most organizations are using one or multiple vulnerability scanning tools to identify vulnerabilities on endpoints such as business critical servers, laptops and desktops. They also have processes...
Will We See the Rise of Vaporworms and Other New Fileless Attacks in 2019?
The evolution of the new and difficult-to-detect category of fileless attacks may soon take an insidious turn with the development of what some researchers are calling vaporworms.
As the name suggests, fileless malware differs from conventional malware in that it...
Application Security Has Nothing to Do With Luck
This St. Patrick’s Day is sure to bring all the usual trappings: shamrocks, the color green, leprechauns and pots of gold. But while we take a step back to celebrate Irish culture and the first signs of spring this...
Breaking Down the Incident Notification Requirements in the EU’s NIS Directive
Our society relies on the availability, security and reliability of network and information systems (NIS). Various security frameworks provide standards and guidance as to which measures organizations should implement to protect IT systems and increase resilience. However, since such...
With AI for Cybersecurity, We Are Raising the Bar for Smart
It’s hard to imagine something more frustrating to a runner than moving the finish line after the race has started. After all, how can you set a proper pace if the distance keeps changing? How will you know you’ve...
How CISOs Can Facilitate the Advent of the Cognitive Enterprise
Just as organizations are getting more comfortable with leveraging the cloud, another wave of digital disruption is on the horizon: artificial intelligence (AI), and its ability to drive the cognitive enterprise.
In early 2019, the IBM Institute for Business Value...
Spectre, Meltdown and More: What You Need to Know About Hardware Vulnerabilities
The “2019 IBM X-Force Threat Intelligence Index” highlighted a paradigm shift sparked by a new era of hardware security challenges. The exposure of critical hardware vulnerabilities that affected almost every endpoint built in the past 20 years forced enterprises...
An Apple a Day Won’t Improve Your Security Hygiene, But a Cyber Doctor Might
You might’ve begun to notice a natural convergence of cybersecurity and privacy. It makes sense that these two issues go hand-in-hand, especially since 2018 was littered with breaches that resulted in massive amounts of personally identifiable information (PII) making...
Security Considerations for Whatever Cloud Service Model You Adopt
Companies recognize the strategic importance of adopting a cloud service model to transform their operations, but there still needs to be a focus on mitigating potential information risks with appropriate cloud security considerations, controls and requirements without compromising functionality,...
Women in Security Speak Out at RSAC 2019, But There’s Still a Long Way to Go
Cybersecurity still has a gender diversity gap and a huge talent shortage, but the industry is making progress — albeit slowly. A recent study by Cybersecurity Ventures predicted that women in security will comprise 20 percent of the global...
At RSAC 2019, It’s Clear the World Needs More Public Interest Technologists
Cybersecurity experts are no longer the only ones involved in the dialogue around data privacy. At RSA Conference 2019, it’s clear how far security and privacy have evolved since RSAC was founded in 1991. The 28th annual RSAC has...
Celebrating International Women’s Day: Why We Need Better Representation of Women in Security
It’s International Women’s Day — so where are the women in cybersecurity?
Years ago, while working in product marketing for a network security vendor, I attended my employer’s big user conference to demonstrate our threat intelligence service to prospects and...
Comprehensive Vulnerability Management in Connected Security Solutions
Security vulnerabilities are everywhere — in the software we use, in mobile apps, in hardware and in internet of things (IoT) devices. Almost anything can be hacked, and we can see that in the staggering numbers of vulnerabilities disclosed...
Norwegian aluminum producer Norsk Hydro hit by an unspecified cyberattack
Norwegian aluminum producer Norsk Hydro was hit by a cyber attack which began Monday evening and escalated into the night.
The Norwegian National Security Authority (NSM) declined to comment on what type of attack it was but said the extent...
Glitch exposes Sprint customer data to other users
A bug
has allowed some Sprint customers to see the personal data of other customers from
their online accounts.
The information visible includes names, cell phone numbers as well as calls made by other users and, and a Tech Crunch report cited...
6 Ways Mature DevOps Teams Are Killing It in Security
New survey shows where "elite" DevOps organizations are better able to incorporate security into application security.
Ransomware drops the Lillehammer on Norsk Hydro: Aluminium giant forced into manual mode after systems scrambled
Norway the power and metals wrangler could have seen this one coming Norwegian power and metals giant Norsk Hydro is battling an extensive ransomware infection on its computers.…
Old Tech Spills Digital Dirt on Past Owners
Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.
