Expert analysis Archives - Page 5 of 353

Expert analysis

Detection, isolation, and negotiation: Improving your ransomware preparedness and response

June 28, 2022

The risks presented by ransomware and cyber extortion events have likely found a place in your own security team’s discussions, and rightfully so. Ransomware attacks have …

Clearview fine: The unacceptable face of modern surveillance

June 27, 2022

The UK’s Information Commissioner’s Office (ICO) has issued its third largest ever fine of £7.5m. It was imposed on Clearview AI, the controversial facial recognition company …

Cybercriminals use Azure Front Door in phishing attacks

June 27, 2022

Resecurity, Inc. (USA) has identified a spike in phishing content delivered via Azure Front Door (AFD), a cloud CDN service provided by Microsoft. The identified resources in …

7 DevSecOps myths and how to overcome them

June 22, 2022

DevOps and security teams have long been at odds with each other over the software delivery pipeline. DevOps teams have historically viewed security teams as the “release …

How the blurring of the “supply chain” opens your doors to attackers—and how you can close them

June 21, 2022

There have been more than 200 dedicated supply chain attacks over the past decade. Some of these campaigns have affected countless supplier networks and millions of customers …

Board members and the C-suite need secure communication tools

June 20, 2022

Board members and the C-suite are key targets for cyber-threat actors, due to their access to highly sensitive information. Yet too many of them are putting their …

Criminal IP analysis report on zero-day vulnerability in Atlassian Confluence

June 17, 2022

According to Volexity, a webshell was discovered in Atlassian Confluence server during an incident response investigation. Volexity determined that it was a zero-day …

How financial institutions are improving customer experience with fraud prevention measures

June 17, 2022

Fraud is a persistent threat, and there’s no end in sight as the e-commerce landscape continues to evolve and the use of online payment platforms increases. According to one …

Zero trust adoption: Industry-specific challenges and implementation strategies

June 16, 2022

Organizations across many industries are in the throes of a journey to implement the zero trust security model to increase their cybersecurity posture. Through my experience …

Mind the gap: How to ensure your vulnerability detection methods are up to scratch

June 15, 2022

With global cyber crime costs expected to reach $10.5 trillion annually by 2025, it comes as little surprise that the risk of attack is companies’ biggest concern globally. To …

Once is never enough: The need for continuous penetration testing

June 14, 2022

If you Google “How often should I do penetration testing?”, the first answer that pops up is “once a year.” Indeed, even industry-leading standards like PCI-DSS dictate that …

SaaS security: How to avoid “death by 1000 apps”

June 14, 2022

SaaS applications have become synonymous with modern business environments, and CISOs and security teams struggle to find a happy medium between ensuring the security of their …

Expert analysis

Detection, isolation, and negotiation: Improving your ransomware preparedness and response

Clearview fine: The unacceptable face of modern surveillance

Cybercriminals use Azure Front Door in phishing attacks

7 DevSecOps myths and how to overcome them

How the blurring of the “supply chain” opens your doors to attackers—and how you can close them

Board members and the C-suite need secure communication tools

Criminal IP analysis report on zero-day vulnerability in Atlassian Confluence

How financial institutions are improving customer experience with fraud prevention measures

Zero trust adoption: Industry-specific challenges and implementation strategies

Mind the gap: How to ensure your vulnerability detection methods are up to scratch

Once is never enough: The need for continuous penetration testing

SaaS security: How to avoid “death by 1000 apps”

Don't miss

RCE in Sophos Firewall is being exploited in the wild (CVE-2022-3236)

3 ways to gauge your company’s preparedness to recover from data loss

How the CIO’s relationship to IT security is changing

Critical ManageEngine RCE flaw is being exploited (CVE-2022-35405)

How to keep public cloud data secure