Collaborate Disseminate
Compromised identities have been a central component of countless costly breaches this year, according to Red Canary. Rise in identity and cloud-native attacks While most of the threats and techniques identified in the 2024 report remain consistent wit… Continue reading Organizations are making email more secure, and it’s paying off
Infrastructure as Code (IaC) has become a widely adopted practice in modern DevOps, automating the management and provisioning of technology infrastructure through machine-readable definition files. What can we to do make IaC secure by default? Securit… Continue reading How to make Infrastructure as Code secure by default
The Network and Information Security (NIS) 2 Directive is possibly one of the most significant pieces of cybersecurity regulation to ever hit Europe. The 27 EU Member States have until 17 October 2024 to adopt and publish the standards necessary to com… Continue reading NIS2: A catalyst for cybersecurity innovation or just another box-ticking exercise?
Somewhere, right now, a CISO is in a boardroom making their best case for stronger identity threat detection and response (ITDR) initiatives to lower the risk of intrusion. For a good reason, too: Look no further than the Change Healthcare breach, wher… Continue reading How CISOs enable ITDR approach through the principle of least privilege
The security awareness training company said in a blog post that the software engineer used stolen U.S. credentials and an AI-enhanced photo.
The post Cyber firm KnowBe4 hired a fake IT worker from North Korea appeared first on CyberScoop.
Continue reading Cyber firm KnowBe4 hired a fake IT worker from North Korea
It’s becoming evident that the legacy practice of signature-based threat detection needs to be improved for cloud security challenges. In this Help Net Security video, Jimmy Mesta, CTO at RAD Security, discusses a new proposed standard for creati… Continue reading Signatures should become cloud security history
Cybercrime costs trillions, rising yearly. Criminals operate globally, teaching their methods. This article explores major cyberattacks from 1962… Continue reading The Evolution of Cybercrime Investigation
Cloud identity protection company Permiso has created YetiHunter, a threat detection and hunting tool companies can use to query their Snowflake environments for evidence of compromise. YetiHunter executing queries (Source: Permiso Security) Recent att… Continue reading YetiHunter: Open-source threat hunting tool for Snowflake environments
Microsoft’s AI chatbot and data aggregator is open for security business on April 1, with a new per-unit pricing model. Continue reading Microsoft’s Security Copilot Enters General Availability
In this Help Net Security interview, Sanjay Macwan, CIO and CISO at Vonage, addresses emerging threats to cloud communications and the role of AI and automation in cybersecurity. What emerging threats to cloud communications are you most concerned abou… Continue reading Leveraging AI and automation for enhanced cloud communication security