Collaborate Disseminate
The software supply chain security firm adds the Open Policy Agent to its risk analysis engine, increasing flexibility for the creation and enforcement of custom policies on the use of open source software.
The post Phylum Adds Open Policy Agent to Ope… Continue reading Phylum Adds Open Policy Agent to Open Source Analysis Engine
In a year dominated by kinetic/cyber war in Ukraine, North Korea doubles down on cryptocurrency thefts, China and Iran continue to take advantage, and a new form of personal intimidation of company personnel emerges.
The post Mandiant 2023 M-Trends Rep… Continue reading Mandiant 2023 M-Trends Report Provides Factual Analysis of Emerging Threat Trends
The purpose of a backstop would be to make cyberinsurance more widely available and affordable to the whole market – but it isn’t yet clear whether this can be achieved.
The post Cyberinsurance Backstop: Can the Industry Survive Without One? appeared f… Continue reading Cyberinsurance Backstop: Can the Industry Survive Without One?
The low code/no code movement provides simplified app generation – but it needs to be understood to be safe.
The post The Security and Productivity Implications of Low Code/No Code Development appeared first on SecurityWeek.
Continue reading The Security and Productivity Implications of Low Code/No Code Development
CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.
The post CISA Introduces Secure-by-design and Secure-by-default Development Principles appeared first on Secu… Continue reading CISA Introduces Secure-by-design and Secure-by-default Development Principles
The national strategy outlined by the Federal Government on March 1, 2023, is a monumental attempt to weave a consistent approach to cybersecurity for the whole nation.
The post Potential Outcomes of the US National Cybersecurity Strategy appeared fir… Continue reading Potential Outcomes of the US National Cybersecurity Strategy
Security posture management firm XM Cyber took tens of thousands of attack path assessments involving more than 60 million exposures affecting 20 million entities during 2022.
The post Most Attack Paths Are Dead Ends, but 2% Lead to Critical Assets: Re… Continue reading Most Attack Paths Are Dead Ends, but 2% Lead to Critical Assets: Report
The UK’s data protection regulator fined TikTok £12.7 million for “failing to use children’s personal data lawfully”
The post TikTok’s Trials and Tribulations Continue With UK Data Protection Fine appeared first on SecurityWeek.
Continue reading TikTok’s Trials and Tribulations Continue With UK Data Protection Fine
Tel Aviv- and Boston-based CardinalOps has extended its detection posture management capability with MITRE ATT&CK Security Layers.
The post CardinalOps Extends MITRE ATT&CK-based Detection Posture Management appeared first on SecurityWeek.
Continue reading CardinalOps Extends MITRE ATT&CK-based Detection Posture Management
Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.
The post ChatGPT, the AI Revolution, and the Security, Privacy and Ethical Implications appeared first on SecurityWeek.
Continue reading ChatGPT, the AI Revolution, and the Security, Privacy and Ethical Implications