CIO

JANUARY 14, 2025

CIOs have a tough balance to strike: On one hand, theyre tasked with maintaining a large number of applications research from Salesforce shows that in 2023 organizations were using 1,061 different applications in varying stages of age, all the while maintaining interoperability and security and reducing overall spend.

Software Review 78

Software Review Technical Review Systems Review How To 78

Tenable

JULY 19, 2024

CISA’s red team acted like a nation-state attacker in its assessment of a federal agency’s cybersecurity. Plus, the Cloud Security Alliance has given its cloud security guidance a major revamping. And the latest on open source security, CIS Benchmarks and much more!

Weak Development Team 83

Weak Development Team Cloud Report Software Review 83

Tenable

APRIL 26, 2024

1 - New version of MITRE ATT&CK adds guidance on generative AI, cloud threats Information about malicious use of generative AI tools. Advice about securing cloud environments. healthcare system in history” by Rick Pollack, President and CEO of the American Hospital Association.

Security 77

Security Cloud Artificial Inteligence Healthcare 77

Tenable

JANUARY 5, 2024

Want to learn more about protecting AI systems from malicious actors? Plus, new granular configuration recommendations for securing Microsoft 365 are out. 1 - NIST categorizes cyberattacks against AI systems Are you involved with securing the artificial intelligence (AI) tools and systems your organization uses?

Artificial Inteligence 75

Artificial Inteligence Systems Review System Generative AI 75

CTOvision

SEPTEMBER 3, 2014

On August 27, LogRhythm hosted a panel focused on “Tapping Global Threat Intelligence to Secure Enterprise Networks” at Ruth’s Chris Steakhouse in Crystal City. The panel participants included Sameer Bhalotra , COO of Impermium and former Senior Director for Cybersecurity at the White House; Bob Gourley , Partner at Cognitio; Todd G.

Network 106

Network Enterprise Technical Review Systems Review 106

Tenable

AUGUST 23, 2024

And get the latest on ransomware trends, vulnerability management practices and election security! 1 - Guide outlines logging and threat detection best practices As attackers double down on the use of stealthy, hard-to-detect “living off the land” (LOTL) techniques, cybersecurity teams should improve how they log events and detect threats.

Security 78

Security Artificial Inteligence Azure Malware 78

Palo Alto Networks

DECEMBER 12, 2023

The original version of this blog appeared as an article in the Summer/Fall 2023 printed edition of Cyber Perspectives Magazine. Some chief information security officers (CISOs) reportedly spend up to 40% of their time on compliance-related activities. As an example, the Profile has a diagnostic statement (DE.CM-1.3)

Security 109

Security Compliance Banking Technical Review 109

Tenable

JUNE 14, 2024

Check out the NCSC’s call for software vendors to make their products more secure. And the latest on the cybersecurity skills gap in the U.S. 1 - NCSC issues “code of practice” for software makers Software vendors improve the security of their products. And much more! That’s the goal of the U.K. The document from the U.K.’s

Software Review 77

Software Review Artificial Inteligence Banking Artificial Intelligence 77

Tenable

DECEMBER 15, 2023

A group that includes the Cloud Security Alliance, CISA and Google is working to compile a comprehensive collection of best practices for secure AI use. Meanwhile, check out a draft of secure configuration recommendations for the Google Workspace suite. Dive into six things that are top of mind for the week ending December 15.

Groups 77

Groups Industry Hardware Software Review 77

CTOvision

FEBRUARY 20, 2014

By Bob Gourley 2014 Guidance Software Federal Summit: Cybersecurity | E-Discovery | Enterprise Forensics. Recognized as a pioneer in the field of classified information protection, Mr. Bigman developed technical measures and procedures to manage the nation’s most sensitive secrets. Government. Register Now! Space is Limited.

Technical Advisors 102

Technical Advisors Security Software Review Software 102

Tenable

JANUARY 20, 2023

Plus, NIST mulls major makeover of its Cybersecurity Framework. Also, the struggle to develop secure apps is real. Then check out how Uncle Sam plans to use AI and ML to boost cybersecurity. Almost 70% of organizations' SDLCs are missing critical security processes. Learn all about the spike in CISO job satisfaction.

Software Review 66

Software Review Artificial Inteligence SDLC Technical Review 66

Tenable

MARCH 29, 2024

Plus, how to cut cyber risk when migrating SCADA systems to the cloud. The 52-page report, titled “ Managing Artificial Intelligence-Specific Cybersecurity Risks in the Financial Services Sector, ” touches on cybersecurity and fraud protection; fraud threats; the regulatory landscape; and major challenges and opportunities.

Systems Review 69

Systems Review Weak Development Team Banking System 69

Tenable

DECEMBER 23, 2022

After reading the tea leaves, they’re forecasting developments in extortion attacks, OT security, SaaS threats, metaverse risks and more! Security teams should brace themselves for an intensification of extortion attacks. DHS Cyber Safety Review Board to focus on Lapsus$ hackers ” (CyberScoop). Policy Outcomes ”.

Development Team Review 52

Development Team Review Software Review Technical Review Systems Review 52

James Shore

JANUARY 10, 2025

The old career ladder emphasized understanding advanced technologies and building complex systems. Senior engineers know how to refactor those class abstractions, and they use that skill to simplify the design of the system. I learned about muda from the Toyota Production System. Our systems dont have to be that complicated.

Engineering 141

Engineering Software Review Weak Development Team Agile 141

Tenable

SEPTEMBER 2, 2022

Securing machine learning systems. Shifting security left – meaning, starting security checks earlier in the software development process – has been widely hailed. Most companies expect developers to do security code reviews, but many don’t provide them with security training. And much more!

Security 52

Security Software Review Artificial Inteligence Technical Review 52

Tenable

OCTOBER 27, 2023

Check out how organizations’ enthusiasm over generative AI is fueling artificial intelligence adoption for cybersecurity. Also, why boards of directors feel more comfortable with cybersecurity. business and IT pros involved in cybersecurity. business and IT pros involved in cybersecurity. And much more!

Artificial Inteligence 67

Artificial Inteligence Artificial Intelligence Technical Review Backup 67

Tenable

FEBRUARY 17, 2023

That’s an issue that the World Economic Forum explored in two recent reports: World Economic Forum’s Global Risks Report 2023 and Global Cybersecurity Outlook 2023. How will global unrest heighten cyber risk in the medium and long term? Here’s what you need to know.

Technical Review 96

Technical Review Systems Review Report Transportation 96

Tenable

NOVEMBER 25, 2022

Get the latest on the Hive RaaS threat; the importance of metrics and risk analysis; cloud security’s top threats; supply chain security advice for software buyers; and more! . 2 - CompTIA: Cybersecurity and risk analysis will mesh in 2023. Cybersecurity Measurement (U.S. That’s according to an advisory from the U.S.

Metrics 52

Metrics Cloud Backup Software Review 52

Tenable

FEBRUARY 16, 2024

Plus, JCDC will put special focus on critical infrastructure security in 2024. Meanwhile, CISA and OpenSSF shine a spotlight on the security of software package repositories. Review ChatGPT 3.5’s Improve critical infrastructure’s cybersecurity foundation. And scammers leveraged tech tools to steal $10 billion from U.S.

ChatGPT 75

ChatGPT Software Review Analysis Infrastructure 75

Tenable

MARCH 10, 2021

An analysis of publicly disclosed breach data by the Tenable Security Response Team (SRT) reveals 237 breaches in the healthcare sector in the calendar year 2020. million, with personally identifiable information (PII) valued at $150 per record making the industry a prime target. Source: IBM Security Cost of a Data Breach Report 2020.

Healthcare 94

Healthcare Research Systems Review Analysis 94

Tenable

AUGUST 5, 2022

That’s the bad news the Cybersecurity and Infrastructure Security Agency’s Cyber Safety Review Board delivered in a recent report. Drive best practices for security hygiene, such as automated vulnerability management, asset inventorying and vulnerability mitigation, as well as secure software development practices.

Development Team Review 52

Development Team Review Software Review Systems Review Technical Review 52

Tenable

FEBRUARY 3, 2023

Also, check out our ad-hoc poll on cloud security. issues framework for secure AI Concerned that makers and users of artificial intelligence (AI) systems – as well as society at large – lack guidance about the risks and dangers associated with these products, the U.S. And much more! 1 - Amid ChatGPT furor, U.S.

ChatGPT 52

ChatGPT Artificial Intelligence Artificial Inteligence Technical Review 52

Xebia

JUNE 24, 2024

PKCE was originally designed to protect the authorization code flow in public clients (applications that cannot securely store secrets due to their execution environment, e.g., single-page web applications). It is advised, though, to determine if this is an acceptable trade-off for your use case with your CSO or security team.

Software Review 130

Software Review Systems Review Authentication Applications 130

PowerSchool

JULY 24, 2020

Instructional changes due to revised standards or courses being unable to proceed as normal will need to be considered, as will other school- and subject-level considerations. Keep data and systems secure. To start, provide cybersecurity training for all IT and school staff. Support your teachers through new challenges.

Technical Review 97

Technical Review Education Technical Support Systems Review 97

CIO

APRIL 7, 2023

Embarc Collective raised a total of $107 million in venture capital in the past year, according to Tampa Magazines. Columbus, Ohio Columbus has always held interest for businesses due to the area’s diverse population, which has historically made it a popular test market for companies looking to launch new products.

Technical Review 202

Technical Review Software Review Energy Healthcare 202

Tenable

JUNE 9, 2023

Find out why cyber teams must get hip to AI security ASAP. Plus, the latest trends on SaaS security. 1 – Forrester: You must defend AI models starting “yesterday” Add another item to cybersecurity teams’ packed list of assets to secure: AI models. Plus, check out the top risks of ChatGPT-like LLMs. And much more!

Artificial Inteligence 52

Artificial Inteligence ChatGPT How To Software Review 52

CTOvision

JULY 28, 2015

The recent recall response is due to the Wired magazine article on the two hackers Charlie Miller and Chris Valasek, who were able to wirelessly commandeer a Jeep Cherokee through the Uconnect system. Fiat Chrysler says that they are unaware of any hacking of its vehicles, save the one unveiled this week.

Sport 104

Sport Software Review Wireless Malware 104

PowerSchool

APRIL 27, 2020

A resource for K-12 tech directors to heighten cybersecurity due to increased online learning. And while the pandemic has changed nearly everything about how schools operate, one thing remains constant—the need to focus on cybersecurity in schools. K-12 Security Tips. Download the Whitepaper. Offer continuous training.

Security 53

Security Video Education Guidelines 53

Xebia

NOVEMBER 22, 2023

This infrastructure is defined in project-based templates that establish consistency and best practices while maximizing security. A development team can then, on-demand, create secure environments through a self-service experience that accelerates all stages of the software development lifecycle.

Azure 130

Azure Software Review Software Resources 130

Tenable

JULY 12, 2021

Here's how Tenable's data can allow security professionals to have a more realistic view of their exposure. Standardized taxonomies have dominated the way cybersecurity professionals describe and talk about systems' security. What is an Attack Surface?

Software Review 100

Software Review Systems Review Technical Review Metrics 100

Tenable

SEPTEMBER 22, 2023

Department of Homeland Security in its “ Homeland Threat Assessment 2024 ” report. Snatch, which appeared in 2018 and was originally known as Team Truniger, uses a ransomware-as-a-service (RaaS) model to operate, and employs a variety of frequently changing methods to breach systems and establish network persistence, the agencies said.

Insurance 75

Insurance Trends IoT Software Review 75

Tenable

DECEMBER 2, 2022

Get the latest on Log4Shell’s global remediation status; the need for metaverse security rules; a shutdown of “pig butchering” domains; tips for secure IoT products; an informal poll about AD security; and more! . Cybersecurity and Infrastructure Security Agency (CISA). Log4j guidance from the U.S.

IoT 52

IoT Systems Review Guidelines Technical Review 52

O'Reilly Media - Ideas

MARCH 22, 2022

There was a lot of tension during the first few weeks of February due to Russia’s military buildup on Ukraine’s borders and the uncertainty of what Putin would do. A small amount was always carved out for me to review, post at the Inside Cyber Warfare Substack, and share with journalists. FRIDAY, FEB 25, 2022 07:51. Hack and Leak.

Technical Review 144

Technical Review Systems Review Government Leadership 144

Tenable

SEPTEMBER 23, 2022

Only 50% said there’s sufficient collaboration at their organization among security, data integrity and privacy professionals – digital trust’s most important roles. Establish a mindset of continuous improvement in areas such as cybersecurity, quality, reliability, compliance and customer experience.

Weak Development Team 53

Weak Development Team Software Review Insurance SDLC 53

Tenable

NOVEMBER 18, 2022

Get the latest on an APT’s Log4Shell exploit; tips to prevent memory attacks; cloud security trends; metaverse security; and more! . The breach occurred in February and wasn’t discovered until mid-year when the Cybersecurity and Infrastructure Security Agency (CISA) investigated suspicious APT activity at the unnamed agency.

Cloud 52

Cloud Software Review Malware Report 52

Tenable

DECEMBER 16, 2022

Get the latest on worrisome phishing stats; businesses’ embrace of the metaverse, come what may; a (small) improvement in CISO job stability; the compensation cost of security leaders; and more! Cybersecurity and Infrastructure Security Agency (CISA) has revealed distressing stats about the prevalence and success of phishing attacks.

Security 52

Security Trends Recruiting Report 52

O'Reilly Media - Ideas

AUGUST 10, 2021

An attacker plants malware on your system that encrypts all the files, making your system useless, then offers to sell you the key you need to decrypt the files. We’ll have more to say about that, but the tl;dr is simple: pay attention to security basics. The concept behind ransomware is simple. How do you avoid joining them?

Backup 141

Backup Google Cloud Systems Review Survey 141