Collaborate Disseminate
Cyber security is described as a form of asymmetric warfare. One side, the defenders, have limited numbers — just the security team. The other side includes every blackhat hacker in the world — that is, many, many thousands. The blackhats only need t… Continue reading Bug Hunters Confident They Will Continue to Outperform AI: Study
The need for improved access control is proven by empirical observation — it keeps failing. But improving access control beyond passwords suffers from a fundamental contradiction: while 98% of companies believe strong authentication is necessary for s… Continue reading Companies Say Strong Authentication Important But Still Over-Rely on Passwords
Between the second and third weeks of March 2020, email scams and phishing attacks spiked by an unprecedented 436%. Such was the effect of the COVID-19 pandemic. Meanwhile, business email compromise (BEC) attacks have been less affected by the pandemic… Continue reading COVID-19 Fuels Phishing and Scams While BEC Attacks Evolve and Increase
Micro-segmentation combined with zero-trust access control between the segments is recommended as one of the best approaches to breach containment. This principle is now extended from the network infrastructure to the endpoint, whether that device is l… Continue reading Micro-Segmentation for Endpoints Shows Promising Defense Against Lateral Movement
One of six ‘best practices’ highlighted by ESI ThoughtLab in a new report on Driving Cybersecurity Performance is simple: “Make more use of cybersecurity insurance to transfer risk.” Use of cyberinsurance is growing, but the insurance industry believes… Continue reading Plugging the Discrepancy Between Cyber Insurance Coverage and Actual Risk
API security startup Salt Security has raised $20 million in a Series A funding round led by Tenaya Capital. With the increasing rate of business transformation, cloud adoption, and remote working, APIs are rapidly becoming the heartbeat of online busi… Continue reading API Protection Firm Salt Security Raises $20 Million
Multistage targeted ransomware attacks against critical infrastructure, designed to maximize damage and recovery costs, are increasingly common. An analysis of a honeypot-captured attack demonstrates the three basic stages of intrusion, persistence and… Continue reading Honda Ransomware Confirms Findings of Industrial Honeypot Research
More Data May be Lost Through Misconfigured Public Cloud Databases Than We Are Led to Believe
read more
Continue reading Misconfigured Public Cloud Databases Attacked Within Hours of Deployment
Vectra Integrates Cognito with Microsoft Defender ATP and Azure Sentinel to Form a SOC Visibility Triad
read more
Continue reading Vectra Targets SOCs With Microsoft Defender ATP, Azure Sentinel Integration
San Francisco, CA-based attack surface management firm RiskIQ has raised $15 million in a Series D funding round led by National Grid Partners (NGP). NGP is the venture and innovation arm of the British multinational utility company National Grid plc.
… Continue reading RiskIQ Raises $15 Million to Help Focus on Critical Industries