Cybersecurity Snapshot: NIST’s Cybersecurity Framework Gets Major Update, as Advisories on APT29 and ALPHV Blackcat Get Rolled OutMarch 1, 2024
Les équipes de sécurité de l'entreprise sont confrontées à de sérieux obstacles pour défendre leur infrastructure OT/IoT critique, notamment en raison d'une visibilité fragmentée, d'un manque d'anticipation des risques et de données cloisonnées. Découvrez comment des solutions conçues pour gérer l'exposition OT/IoT peuvent aider les entreprises à gagner en visibilité, à prioriser leurs efforts de cyber-sécurité et à communiquer le cyber-risque de manière efficace en dépit des silos organisationnels.
Check out how cyber agencies from multiple countries hit the LockBit ransomware group. Meanwhile, CISA wants water treatment plants to button up their cyber defenses. Plus, there’s a new generative AI governance checklist for tech and business leaders. And the White House seeks to boost ports' cybersecurity. Et bien plus encore !
IDC classe Tenable n° 1 en termes de part de marché mondiale dans le domaine de la gestion des vulnérabilités des appareils pour la cinquième année consécutiveFebruary 22, 2024
Le dernier rapport de la société d'étude fournit également des informations sur le marché dont les professionnels de la sécurité peuvent tirer parti pour améliorer leur stratégie de gestion des vulnérabilités.
The cyberthreats to the U.S. Department of Defense’s building management systems (BMS) have grown exponentially due to the DoD's adoption of smart technologies such as IoT. These smart technologies are designed to improve the monitoring and maintenance of these systems, but they also create new attack surfaces. Here's how the DoD can use operational technology (OT) security to mitigate BMS cyberthreats through enhanced visibility, threat detections and automated risk prioritization.
Frequently asked questions about two vulnerabilities affecting ConnectWise ScreenConnect
As an organization grows its usage of containers, managing them becomes more complex. A common response is to adopt Kubernetes for container orchestration. But how do you properly secure your Kubernetes clusters? And should your organization host its Kubernetes deployments or instead choose a managed option? Voici ce que vous devez savoir.
Cybersecurity Snapshot: ChatGPT Gets So-So Grade in Code Analysis Test, while JCDC Pledges To Focus on Protecting Critical InfrastructureFebruary 16, 2024
Check out why ChatGPT’s code analysis skills left Carnegie Mellon researchers unimpressed. Plus, JCDC will put special focus on critical infrastructure security in 2024. Meanwhile, CISA and OpenSSF shine a spotlight on the security of software package repositories. And scammers leveraged tech tools to steal $10 billion from U.S. consumers last year. Et bien plus encore !
Pig Butchering Scam: From Tinder and TikTok to WhatsApp and Telegram, How Scammers Are Stealing Millions in a Long ConFebruary 14, 2024
In part one of a two-part series on Pig butchering, we detail the pervasive scam that has impacted thousands of victims around the world, resulting in the loss of hundreds of millions of dollars. This blog highlights the who and the how of Pig butchering scams, and details the Pig butchering playbook.
Pig Butchering Scam: How Bitcoin, Ethereum, Litecoin and Spot Gold (XAUUSD) Investments Are Used in Romance Scams to Steal Hundreds of MillionsFebruary 14, 2024
This is the second part of a two-part series based on firsthand research into pig butchering scams from the end of 2022 into early 2024. In this post, we delve into the types of investment scams perpetrated by pig butchers to steal hundreds of millions of dollars from victims, including in the form of cryptocurrency and spot gold.
Microsoft addresses 73 CVEs, including three zero-day vulnerabilities that were exploited in the wild.
Cybersecurity teams often struggle with securing cloud-native applications, which are becoming increasingly popular with developers. The good news is that deploying these applications on a serverless architecture can make it easier to protect them. Here’s why.
AWS IAM Access Analyzer can now detect action-level unused permissions. It’s a great enhancement in the native toolbox to achieve least privilege — but if you need comprehensive entitlements management at scale you will probably need additional tooling and work. Find out why and what you can do to complement it.