Upcoming enterprise IoT ecosystems and conventional OT networks share similar security challenges, and as the two converge, organizations need to re-evaluate core security processes, says Richard Bussiere of Tenable Network Security.
It's déjà vu "FBI vs. Apple" all over again, as Reuters reports that the Justice Department is seeking to compel Facebook to build a backdoor into its Messenger app to help the FBI monitor an MS-13 suspect's voice communications.
While IT and OT integration has brought about new levels of operational efficiency, it has also introduced serious cyber risks that conventional IT security approaches might fail to address, says IBM Security's Paul Garvey.
Controlling, monitoring, and auditing privileged access is essential to mitigating insider threats, preventing data breaches, and meeting compliance requirements. But, how can you optimize privileged access to avert breaches, achieve compliance objectives, and avoid end user frustration and help desk...
Cyber security statistics in 2016 paint a bleak picture. Unpatched vulnerabilities proliferate. Attackers weaponize new exploits 3x faster than just a few years back.
The attack surface continues to expand as shadow IT abounds, and non-traditional platforms, like cloud/virtual, mobile, and IoT, are becoming...
Discover Scenarios and Solutions for Privileged Password Management
The use of stolen credentials ranked as the number one action variety in data breaches in 2017 (source: 2018 Verizon Data Breach Investigations Report), and organizations continue to make it easy for attackers.
For instance, many IT...
A cryptocurrency investor is suing AT&T for $240 million, alleging he lost $24 million in virtual currency after the carrier failed to stop two separate attacks where his phone number was commandeered by attackers. The incident highlights the dangers of using a phone number as an authentication channel.
IT teams at regional banks and credit unions are stretched thin. They're expected to meet compliance obligations while simultaneously taking care of cyberthreats. This is particularly true for mid-sized institutions without resources dedicated to security or compliance, putting them at risk.
What options do...
Ransomware. Phishing. Credential stuffing. These are among the top threats to financial institutions of all sizes. But small-to-midsized ones are particularly challenged to detect and respond to threats. Arctic Wolf's Todd Thiemann discusses the value of managed detection and response.
As the HIPAA security rule turns 20, it's time for regulators to make updates reflecting the changing cyberthreat landscape and technological evolution that's happened over the past two decades, says security expert Tom Walsh.
Although there's widespread agreement that addressing security early in the software development cycle is an essential component to any breach prevention strategy, implementing DevSecOps can prove challenging.
Securing the public cloud is not as challenging as it used to be, but too many organizations are still taking the wrong approach, says Microsoft's Jonathan Trull. Understanding the shared responsibility model for security is critical, he says.
Security silos persist because stakeholders within the enterprise security ecosystem are focused on their own key performance indicators, says Abdallah Zabian of DXC Technology, who suggests a more holistic approach is needed.
Forty-eight percent of customers drop the products and services of organizations that have had a publicly-disclosed data breach. This is but one of the findings of the new 2018 Global State of Online Digital Trust study commissioned by CA Technologies. CA's David Duncan analyzes the results.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.co.uk, you agree to our use of cookies.
