Collaborate Disseminate
Open banking can be described as a perfect storm for cybersecurity. At one end, small startups with financial acumen but little or no security expertise or resources, are rushing new products to market.
The post Open Banking: A Perfect Storm for Secur… Continue reading Open Banking: A Perfect Storm for Security and Privacy?
Apiiro’s Risk Graph Explorer helps security teams to understand their application attack surface.
The post Apiiro Launches Application Attack Surface Exploration Tool appeared first on SecurityWeek.
Continue reading Apiiro Launches Application Attack Surface Exploration Tool
The software supply chain security firm adds the Open Policy Agent to its risk analysis engine, increasing flexibility for the creation and enforcement of custom policies on the use of open source software.
The post Phylum Adds Open Policy Agent to Ope… Continue reading Phylum Adds Open Policy Agent to Open Source Analysis Engine
In a year dominated by kinetic/cyber war in Ukraine, North Korea doubles down on cryptocurrency thefts, China and Iran continue to take advantage, and a new form of personal intimidation of company personnel emerges.
The post Mandiant 2023 M-Trends Rep… Continue reading Mandiant 2023 M-Trends Report Provides Factual Analysis of Emerging Threat Trends
The purpose of a backstop would be to make cyberinsurance more widely available and affordable to the whole market – but it isn’t yet clear whether this can be achieved.
The post Cyberinsurance Backstop: Can the Industry Survive Without One? appeared f… Continue reading Cyberinsurance Backstop: Can the Industry Survive Without One?
The low code/no code movement provides simplified app generation – but it needs to be understood to be safe.
The post The Security and Productivity Implications of Low Code/No Code Development appeared first on SecurityWeek.
Continue reading The Security and Productivity Implications of Low Code/No Code Development
CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.
The post CISA Introduces Secure-by-design and Secure-by-default Development Principles appeared first on Secu… Continue reading CISA Introduces Secure-by-design and Secure-by-default Development Principles
The national strategy outlined by the Federal Government on March 1, 2023, is a monumental attempt to weave a consistent approach to cybersecurity for the whole nation.
The post Potential Outcomes of the US National Cybersecurity Strategy appeared fir… Continue reading Potential Outcomes of the US National Cybersecurity Strategy
Security posture management firm XM Cyber took tens of thousands of attack path assessments involving more than 60 million exposures affecting 20 million entities during 2022.
The post Most Attack Paths Are Dead Ends, but 2% Lead to Critical Assets: Re… Continue reading Most Attack Paths Are Dead Ends, but 2% Lead to Critical Assets: Report
The UK’s data protection regulator fined TikTok £12.7 million for “failing to use children’s personal data lawfully”
The post TikTok’s Trials and Tribulations Continue With UK Data Protection Fine appeared first on SecurityWeek.
Continue reading TikTok’s Trials and Tribulations Continue With UK Data Protection Fine