Tenable

OCTOBER 25, 2024

Plus, learn why GenAI and data security have become top drivers of cyber strategies. And get the latest on the top “no-nos” for software security; the EU’s new cyber law; and CISOs’ communications with boards. Dive into six things that are top of mind for the week ending Oct. So how do you identify, manage and prevent shadow AI?

Software Review 113

Software Review Software Weak Development Team Technical Advisors 113

CIO

SEPTEMBER 12, 2023

Over 100,00 organizations are expected to be impacted by Network and Information Security Directive (NIS2) cybersecurity standards that European Union (EU) member states must implement by October 2024. [i] This concept of least-privilege access is fundamental to Zero Trust Security practices.

Security 224

Security Compliance Network Fashion 224

CIO

JULY 22, 2024

The goal of an organization pursuing this level of personalized service is to get a full, accurate view of the customer to make that person’s life easier. But as organizations collect more data, should customers trust them with their information? Malicious outside criminals (a.k.a.

Technical Review 263

Technical Review Data Authentication Compliance 263

CIO

JULY 1, 2024

The global cyber threat landscape continues to become a concern for organizations, with the number of reported attacks growing consistently. Around 5,000 organizations were affected, twice the number of victims recorded in the previous year. This means the need to adopt a new paradigm in securing IT infrastructures.

WAN 313

WAN Firewall Network Policies 313

CIO

JANUARY 22, 2024

Organizations have shifted to remote desktop work environments at an increasing speed since then – simultaneously expanding their attack surface and exposing themselves to greater cybersecurity threats. Interestingly enough, high-tech companies were also among the top organizations targeted by threat actors.

Technical Review 311

Technical Review Systems Review How To Authentication 311

CIO

NOVEMBER 8, 2024

As organizations look to modernize IT systems, including the mainframe, there’s a critical need to do so without sacrificing security or falling out of compliance. But that’s a balancing act that is easier said than done, especially as cybersecurity threats grow increasingly sophisticated. PCI DSS v4.0).

Compliance 130

Compliance Testing Guidelines Strategy 130

CIO

MARCH 15, 2023

All these forces and more drive rapid, often confusing change in organizations large and small. Cybersecurity cannot stand still, or the waves of innovation will overrun the shores. In reality, generative AI presents a number of new and transformed risks to the organization. Generational shifts in technological expectations.

Trends 312

Trends Malware ChatGPT Software Review 312

CIO

JUNE 3, 2024

However, amidst the allure of newfound technology lies a profound duality—the stark contrast between the benefits of AI-driven software development and the formidable security risks it introduces. This dichotomy underscores the need for a nuanced understanding between AI-developed code and security within the cloud-native ecosystem.

Software Review 307

Software Review Cloud Systems Review Testing 307

CIO

JUNE 18, 2024

Every day, modern organizations are challenged with a balancing act between compliance and security. While compliance frameworks provide guidelines for protecting sensitive data and mitigating risks, security measures must adapt to evolving threats.

Compliance 263

Compliance Authentication Government Blockchain 263

CIO

JANUARY 13, 2023

By Anand Oswal, Senior Vice President and GM at cyber security leader Palo Alto Networks Critical infrastructure forms the fabric of our society, providing power for our homes and businesses, fuel for our vehicles, and medical services that preserve human health. Regulatory compliance.

Security 286

Security Infrastructure Authentication Systems Review 286

CIO

JULY 7, 2023

As more individuals use browser-based apps to get their work done, IT leaders need to provide seamless access to corporate apps and tools while minimizing security risks. How can organizations improve employee experiences without compromising necessary governance and security controls?

Security 302

Security Government Artificial Inteligence Generative AI 302

The Crazy Programmer

JULY 18, 2021

Cybersecurity is more critical than ever in today’s modern world, especially with news of ransomware attacks and other forms of malware on the rise. To keep your systems secure and your files out of the hands of cybercriminals takes an increasingly comprehensive knowledge of cybersecurity technology.

Technology 336

Technology Internet Network Architecture 336

CIO

OCTOBER 25, 2023

On October 20, 2023, Okta Security identified adversarial activity that used a stolen credential to gain access to the company’s support case management system. The exposure of personal or sensitive information can lead to identity theft, phishing attacks, and other forms of cybercrime. There is no silver bullet in cybersecurity.

Systems Review 355

Systems Review Software Review Development Team Review Technical Review 355

CIO

NOVEMBER 14, 2023

It also introduces new security challenges that demand our attention, especially as IoT is integrated into operational technology (OT) environments. In this article, we’ll explore the risks associated with IoT and OT connectivity and the measures that organizations need to take to safeguard enterprise networks.

IoT 324

IoT Enterprise Malware Authentication 324

CIO

SEPTEMBER 29, 2023

While the group’s goals were unclear and differing – fluctuating between amusement, monetary gain, and notoriety – at various times, it again brought to the fore the persistent gaps in security at even the biggest and most informed companies. Let’s revisit the most prevalent security threats and see how they’re evolving in 2023.

Software Review 351

Software Review Systems Review Technical Review Firewall 351

CIO

NOVEMBER 28, 2023

It’s ever more challenging in today’s work-from-anywhere world to prevent cybersecurity breaches. A well-implemented PAM program helps protect organizations against cyberthreats by monitoring, detecting, and auditing unauthorized privileged access to critical resources. Of course, there’s the issue of artificial intelligence.

Artificial Intelligence 292

Artificial Intelligence Artificial Inteligence IoT Authentication 292

Palo Alto Networks

OCTOBER 16, 2024

In the Unit 42 Threat Frontier: Prepare for Emerging AI Risks report, we aim to strengthen your grasp of how generative AI (GenAI) is reshaping the cybersecurity landscape. We explore how attackers are leveraging GenAI to support their efforts, and how you can formulate appropriate guardrails and protections for your organization.

Malware 79

Malware Generative AI Artificial Inteligence Machine Learning 79

Kaseya

MARCH 1, 2024

Multifactor authentication (MFA) is an identity verification and cybersecurity essential where users confirm their identities using more than one method. This is a simple yet effective way for IT professionals to add an extra layer of security to the environment while making it doubly hard for cybercriminals to break in.

Authentication 52

Authentication Software Review Systems Review Compliance 52

CIO

SEPTEMBER 13, 2024

The global healthcare cybersecurity market is set to reach $58.4 For Kevin Torres, trying to modernize patient care while balancing considerable cybersecurity risks at MemorialCare, the integrated nonprofit health system based in Southern California, is a major challenge. According to Torres, the strategy has proven to be successful.

Technical Review 317

Technical Review Systems Review Healthcare Nonprofit 317

Tenable

JUNE 25, 2024

Progress Software has patched a high severity authentication bypass in the MOVEit managed file transfer (MFT) solution. Analysis CVE-2024-5806 is an authentication bypass vulnerability affecting the SSH File Transfer Protocol (SFTP) module in Progress MOVEit Transfer.

Authentication 72

Authentication Security Technical Review Software Review 72

Tenable

AUGUST 28, 2024

A joint Cybersecurity Advisory highlights Iran-based cyber actor ransomware activity targeting U.S. organizations. CVE-2024-21887 Ivanti Connect Secure and Ivanti Policy Secure Command Injection Vulnerability 9.1 CVE-2024-21887 Ivanti Connect Secure and Ivanti Policy Secure Command Injection Vulnerability 9.1

Software Review 73

Software Review Organization Technical Review Systems Review 73

CIO

OCTOBER 26, 2022

Digitalization is a double-edged sword for banks, especially when it comes to security. As interactions and transactions become more interconnected, even the simplest processes like opening a new account or making a balance transfer become riddled with security concerns. Avaya’s research report reveals three critical ways to do so.

Authentication 245

Authentication Banking Data Software Review 245

CIO

MARCH 28, 2024

It’s likely the case that the rapid growth of connected assets is outstripping security capabilities. One analyst firm predicts that by 2026, industrial organizations will have more than 15 billion new and legacy assets connected to the cloud, internet, and 5G. This can make securing utilities especially challenging.

Security 162

Security Internet Network Infrastructure 162

CIO

JULY 19, 2023

Partnerships are especially important in the cybersecurity realm, as Microsoft’s core strengths in its own technologies reinforce long-standing “Microsoft shop” silos. It consists of an enterprise identity service that provides single sign-on, multifactor authentication, and conditional access across hybrid enterprise resources.

Azure 213

Azure Authentication Enterprise Compliance 213

Perficient

NOVEMBER 20, 2024

However, this leap in computing power poses significant challenges, particularly for cybersecurity, which forms the backbone of data protection in our digital world. The Risks for Businesses and Organizations Quantum computing introduces vulnerabilities that could disrupt how organizations secure their data.

Agile 52

Agile Blockchain Research Azure 52

Tenable

JANUARY 26, 2024

1 - Using AI securely: Global cyber agencies publish new guide Is your organization – like many others – aggressively adopting artificial intelligence to boost operational efficiency? If so, you might want to check out a new guide published this week about how businesses can use AI securely.

Artificial Inteligence 118

Artificial Inteligence Artificial Intelligence Weak Development Team Technical Advisors 118

Tenable

NOVEMBER 8, 2024

Plus, OWASP is offering guidance about deepfakes and AI security. Those are three security measures cyber teams should proactively take in response to an ongoing and “large scale” email spear-phishing campaign targeting victims with malicious RDP files , according to the U.S. Cybersecurity and Infrastructure Security Agency (CISA).

Resources 73

Resources Malware Generative AI Artificial Inteligence 73

TechCrunch

APRIL 5, 2022

based cybersecurity startup, has secured a $12 million Series A investment to bring multi-factor authentication (MFA) to machine-to-machine API traffic. APIs, which allow two applications on the internet to talk to each other, became central to organizations’ digital transformation efforts during the pandemic.

Authentication 239

Authentication Weak Development Team Government Internet 239

CIO

MAY 2, 2024

Security and risk management pros have a lot keeping them up at night. The era of AI deepfakes is fully upon us, and unfortunately, today’s identity verification and security methods won’t survive. Of all the threats IT organizations face, an injection attack that leverages AI-generated deepfakes is the most dangerous.

Systems Review 286

Systems Review Authentication Artificial Intelligence Artificial Inteligence 286

CIO

MAY 20, 2024

This has CIOs moving from experimenting and testing intelligence in pockets to scaling up deployments and rolling out intelligence throughout their organizations. Events like the UnitedHealthcare attack drives conversations around cybersecurity and whether companies are putting enough resources into their own security programs,” he says.

Artificial Inteligence 355

Artificial Inteligence Technical Review Security Survey 355

TechCrunch

OCTOBER 24, 2022

Over the past few months alone, we’ve seen threat actors ramping up attacks against public sector organizations, including hospitals , schools , and in the case of Costa Rica, entire governments. Enable multi-factor authentication on everything you have. Katie Moussouris, founder of Luta Security.

Authentication 176

Authentication Government Resources Organization 176

Ivanti

SEPTEMBER 13, 2024

Legacy cybersecurity systems – many designed over a decade ago – fail to account for the new breed of attacker capabilities and vulnerabilities – nor for the reliance on human configuration that is the Achilles heel of so much software. Cybersecurity & Infrastructure Security Agency (CISA).

Weak Development Team 124

Weak Development Team Artificial Inteligence Software Review Firewall 124

TechCrunch

APRIL 13, 2023

Tomer Greenwald, Uri Sarid and Ori Shoshan, software developers by trade, found themselves building and configuring software authentication and authorization mechanisms repeatedly — each time with a different tech stack. But one factor in Otterize’s favor is the heightened spending on cybersecurity, particularly in the enterprise.

Software 211

Software Development Authentication Open Source 211

OTS Solutions

JUNE 21, 2023

However, as more organizations rely on these applications, the need for enterprise application security and compliance measures is becoming increasingly important. Breaches in security or compliance can result in legal liabilities, reputation damage, and financial losses.

Compliance 246

Compliance Enterprise Applications Software Review 246

Trigent

MARCH 31, 2023

There is no denying RPA plays a significant role in facilitating better human-to-machine integration and helping organizations, and innovators tackle challenges posed by legacy systems head-on. If left unchecked, unsecured data can be detrimental to organizations. The way Summit Credit Union , a mortgage lender based in Madison, Wisc.

Security 52

Security Systems Review Software Review Technical Review 52

CIO

OCTOBER 20, 2022

It will be a busy time for scammers and fraudsters too as they send out coupons, deals and offers to consumers, and even thank-you vouchers to employees, purporting to come from organizations and brands they trust. What methods are cybersecurity experts using to minimize the impact of these attacks? Let’s dig deeper.

Security 352

Security VOIP Malware Banking 352

TechCrunch

OCTOBER 13, 2022

As these big names demonstrate, these kinds of attacks can be hard for even the most well-resourced organizations to protect against. Now, cybersecurity startup Nudge Security is emerging from stealth to help organizations tackle what they think is the biggest cybersecurity weakness: people.

Social 212

Social Software Engineering Authentication Engineering 212