Tenable

DECEMBER 22, 2023

As we bid adieu to 2023, we highlight major trends that impacted cybersecurity professionals in the past 12 months. Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Cybersecurity teams were no exception.

Artificial Inteligence 76

Artificial Inteligence Technical Review Cloud Systems Review 76

Tenable

JANUARY 19, 2024

Find out why Uncle Sam is warning critical infrastructure facilities about drones made in China, while urging water treatment plants to beef up incident response plans. 1 - Critical infrastructure orgs warned about using Chinese drones Here’s a warning from the U.S. In addition, the latest on the Androxgh0st malware. And much more!

Infrastructure 72

Infrastructure Malware Government Technical Review 72

Tenable

FEBRUARY 9, 2024

The Volt Typhoon hacking gang is stealthily breaching critical infrastructure IT environments so it can strike on behalf of the Chinese government, cyber agencies say. critical infrastructure IT and operational technology security teams, listen up. So said cybersecurity agencies from the U.S., Critical Infrastructure. ”

Weak Development Team 67

Weak Development Team Infrastructure Generative AI Artificial Inteligence 67

Tenable

DECEMBER 8, 2023

Meanwhile, the OpenSSF published 10 key principles for secure software development. In addition, a new program aims to boost the cyber defenses of critical infrastructure orgs. Cybersecurity and Infrastructure Security Agency (CISA) issued a clarion call for software makers to use so-called “memory safe” programming languages.

Software Review 68

Software Review Software Malware Software Development 68

Tenable

SEPTEMBER 15, 2023

Tasked with securing your org’s new AI systems? Plus, open source security experts huddled at a conference this week – find out what they talked about. That’s the topic of the paper “ Securing AI: Similar or Different? published by Google’s Cybersecurity Action Team. ” published by Google’s Cybersecurity Action Team.

Open Source 113

Open Source Systems Review System Software Review 113

Tenable

DECEMBER 29, 2023

The new year is upon us, and so we ponder the question: What cybersecurity trends will shape 2024? Their 2024 forecasts include: A bigger security role for cloud architects; a focus by ransomware gangs on OT systems in critical industries; an intensification of IAM attacks; and much more!

Software Review 76

Software Review Development Team Review Systems Review Weak Development Team 76

Xebia

AUGUST 7, 2023

Learning the Lingo & Basics of IT Infrastructure Abstraction How cattle, pets, containers, and tools can add value to your business. Every new technology brings a unique set of benefits worth protecting and that’s where we, the security nerds, come in. Why IT Infrastructure Abstraction?

Infrastructure 130

Infrastructure Weak Development Team Tools Cloud 130

Tenable

JUNE 14, 2024

Check out the NCSC’s call for software vendors to make their products more secure. And the latest on the cybersecurity skills gap in the U.S. 1 - NCSC issues “code of practice” for software makers Software vendors improve the security of their products. And much more! That’s the goal of the U.K. The document from the U.K.’s

Software Review 72

Software Review Artificial Inteligence Banking Artificial Intelligence 72

Palo Alto Networks

OCTOBER 11, 2023

How State and Local Governments Help Secure Our World Twenty years after Congress declared October as Cybersecurity Awareness Month, much has changed, but not the need for broad collaboration to help us keep pace with the threats before us. We must secure our schools, hospitals, small businesses and first responders.

Government 91

Government Education Programming Cloud 91

Tenable

SEPTEMBER 23, 2020

Cybersecurity and Infrastructure Agency, combined with significant bills coming out of the House and Senate, are putting critical infrastructure operators on a path towards achieving cross-sector visibility and strong operational technology security. Recent efforts by the U.S. In the U.S.,

Infrastructure 98

Infrastructure Programming Energy Pharmaceuticals 98

Tenable

APRIL 5, 2022

House Committee on Homeland Security on April 5, Amit Yoran, Tenable’s chairman and CEO, highlighted real-world challenges and offered guidance on how government can help. House Committee on Homeland Security on April 5 during the “ Hearing on Mobilizing our Cyber Defenses: Securing Critical Infrastructure Against Russian Cyber Threat.’’

Infrastructure 64

Infrastructure Energy Government Healthcare 64

The Crazy Programmer

MARCH 3, 2021

Cybersecurity isn’t something new. Unfortunately, the escalating rate of digitalization that is consuming IT resources across organizations has led to basic network and device hygiene becoming one of the most neglected components of cybersecurity. This shows that cybersecurity needs to become a fundamental best practice.

Systems Review 147

Systems Review Guidelines Compliance Firewall 147

CIO

MARCH 3, 2024

For its 2023 Security Priorities report, Foundry surveyed 790 IT security workers to understand their projects and priorities. Printers are often not subject to the rigorous security measures routinely applied to computing devices; for example, complex passwords and rigorous patching and software update regimes.

Survey 278

Survey Malware Infrastructure Report 278

Tenable

DECEMBER 15, 2023

A group that includes the Cloud Security Alliance, CISA and Google is working to compile a comprehensive collection of best practices for secure AI use. Meanwhile, check out a draft of secure configuration recommendations for the Google Workspace suite. And much more! Partners include government agencies, such as the U.S.

Groups 72

Groups Industry Hardware Software Review 72

Prisma Clud

JUNE 3, 2024

Introduced in 2024, Qatar’s National Cyber Security Strategy has been developed to highlight the importance of protecting digital assets and promoting investment towards innovation, research, and skilled workforces. This approach helps ensure secure access to data from any device, location, and network.

Google Cloud 52

Google Cloud Artificial Inteligence Artificial Intelligence Cloud 52

Prisma Clud

JULY 17, 2024

Earlier this year, the National Institute of Standards and Technology (NIST) published a major revision to their Cybersecurity Framework (CSF), known as NIST CSF 2.0. The structured approach helps organizations improve their security posture and mitigate cyber risks. Today, these out-of-the-box checks include the NIST CSF 2.0

Cloud 59

Cloud Meeting Guidelines Compliance 59

Tenable

MARCH 1, 2024

Check out what’s new in NIST’s makeover of its Cybersecurity Framework. Also, how to assess the cybersecurity capabilities of a generative AI LLM. 1 - NIST’s Cybersecurity Framework 2.0 1 - NIST’s Cybersecurity Framework 2.0 Initially, the CSF specifically focused on helping critical infrastructure organizations.

Artificial Inteligence 74

Artificial Inteligence Malware Generative AI Government 74

Palo Alto Networks

JUNE 27, 2024

As a sponsor of NCCDC, Palo Alto Networks supports students with free access to our Next-Generation Firewall (NGFW) products, as well as in-depth curriculum resources and on-site technical support throughout the competition. In the process, they gain practical experience that can help jumpstart their careers in cybersecurity.

Network 52

Network Firewall Education Technical Support 52

Palo Alto Networks

MAY 13, 2024

Security teams are feeling this strain, struggling to ensure effective and resilient cybersecurity for an increasingly integrated IT-OT infrastructure. This dilemma is underscored by findings from a recent study we published with ABI research involving nearly 2,000 critical infrastructure enterprises globally.

Survey 96

Survey Report Network Strategy 96

Palo Alto Networks

JUNE 12, 2024

As Chief Technology Officer for Unit 42 and a cybersecurity educator, I have a unique vantage point into the cyberthreat landscape. I recently had the honor of testifying before the House Committee on Homeland Security to share the Palo Alto Networks perspective on the intersection of AI and cybersecurity.

Innovation 83

Innovation Weak Development Team Malware Network 83

Tenable

OCTOBER 6, 2023

A SANS Institute survey found that budgets for ICS/OT security have shrunk, and advises on how to do more with less. In addition, CISA’s Cybersecurity Awareness Month campaign challenges tech vendors to build safer products. For more information about ICS/OT security, check out these Tenable blogs and videos: “ Three U.S.

Budget 65

Budget Report Survey Open Source 65

Tenable

APRIL 19, 2024

Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. 1 - Multinational cyber agencies issue best practices for secure AI deployment Looking for best practices on how to securely deploy artificial intelligence (AI) systems? And don’t miss the latest CIS Benchmarks updates.

Artificial Inteligence 74

Artificial Inteligence Trends Technical Advisors Analysis 74

Prisma Clud

JANUARY 13, 2023

history, antagonists have leveraged vulnerabilities to initiate attacks against our critical infrastructure. Security approaches that mitigate these risks are vital to helping secure the nation. As cloud infrastructure continues to grow in importance, securing it has become a central area of focus across government.

Security 117

Security Cloud Microservices Government 117

Prisma Clud

NOVEMBER 15, 2022

Infrastructure as code (IaC) has fundamentally changed the way we build and manage infrastructure. By transforming cloud resources and their configurations into code, IaC allows us to store, version control and test our infrastructure just like we would our applications in code. DevSecOps Bonuses Keep Coming.

Software Review 96

Software Review Infrastructure Open Source Cloud 96

Tenable

JULY 5, 2024

Fortra has released a new Cobalt Strike version with enhanced security features, according to the NCA. In June, Microsoft President Brad Smith faced tough questions during his testimony before the House of Representatives’ Homeland Security Committee, which scheduled the hearing after a U.S. Unrestricted resource consumption.

Insurance 72

Insurance Transportation Software Review Systems Review 72

Palo Alto Networks

OCTOBER 4, 2023

“Cybersecurity is the only industry with active adversaries. Those adversaries are using the power of AI and ML, and attacks are getting more and more sophisticated.” – Anand Oswal, SVP and GM of Network Security, Palo Alto Networks. I had the pleasure of speaking with Anand Oswal , SVP and GM of Network Security at Palo Alto Networks.

Artificial Inteligence 101

Artificial Inteligence Artificial Intelligence Network Infrastructure 101

Palo Alto Networks

DECEMBER 30, 2019

Cyber Canon Book Review: “Defensive Security Handbook – Best Practices for Securing Infrastructure” (2017), by Lee Brotherston and Amanda Berlin. Bottom Line: I recommend this book for the Cybersecurity Canon Hall of Fame. Book Reviewed by: Helen Patton, The Ohio State University CISO.

Handbook 52

Handbook Technical Review Software Review Systems Review 52

Tenable

JANUARY 3, 2024

The Tribal Cybersecurity Grant Program (TCGP) is accepting applications through January 10, making $18.2 Recent ransomware attacks show the urgent need for tribal nations to strengthen their cybersecurity posture and reduce risk. Implement security protections commensurate with risk.

Government 67

Government Systems Review Technical Review Programming 67

Palo Alto Networks

OCTOBER 19, 2021

A recent Deloitte and National Association of State Chief Information Officers (NASCIO) study found five cybersecurity barriers working against state and local government organizations’ ability to improve their security posture. In addition, cybersecurity training for staff is often inadequate. Cybersecurity Barriers.

Security 84

Security Organization Budget Government 84

Palo Alto Networks

JANUARY 25, 2022

Whether it’s government networks storing sensitive information or critical infrastructure systems, no entity is immune to cyber adversaries. Fortunately, the strong bipartisan consensus on cybersecurity threats has led to bipartisan interest in cybersecurity legislation. Investing in Proactive Cyber Resilience.

Security 91

Security Government Network Policies 91

Tenable

SEPTEMBER 26, 2024

As we’ve developed Tenable’s cloud security program, we in the Infosec team have asked many questions and faced interesting challenges. In this blog, we’ll discuss how we’ve approached implementing our cloud security program using Tenable Cloud Security, and share recommendations that you may find helpful.

53

53

CIO

FEBRUARY 10, 2023

Trust management becomes critical for cybersecurity Broadcom believes a move to distributed and decentralized trust will increase rapidly in 2023. What will be common among them will be the need to grant or restrict access to resources according to security criteria. And security around trust must be customized to the business.

Trends 306

Trends Artificial Inteligence Artificial Intelligence Wireless 306

Tenable

JULY 21, 2023

Plus, the free cloud security tools CISA recommends you use. That’s according to the annual “Information Security Maturity Report” report from ClubCISO, a private forum of over 800 cybersecurity leaders. Plus, why you should pay attention to the FTC’s investigation into ChatGPT-maker OpenAI. And much more!

Security 52

Security Artificial Inteligence ChatGPT Generative AI 52

Palo Alto Networks

MAY 23, 2024

Developing a strong security program is like tending a garden. But, as seen in our 2024 Incident Response Report, vulnerabilities go unpatched, and critical resources sit exposed. But, as seen in our 2024 Incident Response Report, vulnerabilities go unpatched, and critical resources sit exposed.

Programming 98

Programming Weak Development Team Authentication Real Estate 98

Tenable

NOVEMBER 25, 2022

Get the latest on the Hive RaaS threat; the importance of metrics and risk analysis; cloud security’s top threats; supply chain security advice for software buyers; and more! . Understanding the Ransomware Ecosystem: From Screen Lockers to Multimillion-Dollar Criminal Enterprise ” (Tenable blog). What would this look like?

Metrics 52

Metrics Cloud Backup Software Review 52

PowerSchool

APRIL 1, 2019

By Rich Gay, Chief Information Security Officer & VP of Development , PowerSchool . No school or district can be 100 percent safe from cybersecurity attacks. Las t year alone, there were 122 data security incidents reported at K-12 schools, according to a recent report by the K-12 Cybersecurity Resource Center.

Security 45

Security Data Education Quality Assurance 45

Tenable

MARCH 17, 2023

Learn about CISA’s new program to help critical infrastructure organizations stamp out vulnerabilities associated with ransomware attacks. 1 - CISA program detects ransomware vulnerabilities in critical infrastructure The U.S. 1 - CISA program detects ransomware vulnerabilities in critical infrastructure The U.S. Plus, a U.S.

Infrastructure 52

Infrastructure Groups ChatGPT Generative AI 52