The 2020 Vulnerability and Threat Trends Report Mid-Year Update
shows how criminals have taken advantage of the disruption caused
by the pandemic. While organizations were vulnerable and distracted,
hackers developed new ransomware samples and advanced existing
tools to attack critical infrastructure - including...
Many organizations get stuck in the vortex of endless endpoint security operational challenges. Solving this operational chaos is a must, especially when 68% of organizations have seen an increase in the frequency of attacks against endpoints in the last 12 months.
The need to boost efficiencies is clear. To get...
Is the difference between network security and web application security a bit of a puzzle for you? If so, you're not alone.
This topic is now more important than ever because the majority of cyberattacks and data breaches are related to web applications. If you're using the freebie web application scanner bundled...
As organizations across the globe face the prospect of remote working for the long run, insider attacks are quickly becoming one of the most common - and most dangerous - threats to security teams of all sizes.
Join David Masson, Darktrace's Director of Enterprise Security, as he discusses how Cyber AI is uniquely...
8 Steps to Shore Up Your Defense Against Cyberattack
In the past, it was easy to take mainframe security for granted. The mainframe was locked down behind closed doors, and even if you were able to get into the room, you'd still needed the coding experience to hack it.
Today, the mainframe is closer to the internet...
Third-party risk management (TPRM) is more important now than ever. The practice extends far beyond "checking the box" for compliance. And while compliance is a critical component, recent market turbulence has organizations prioritizing business continuity, financial due diligence, and business resilience. How can you...
API attacks are on the rise, and Gartner predicts that APIs will be the top threat vector by 2022. Roey Eliyahu, CEO of Salt Security, discusses the trend and how to build a more effective API security strategy.
APIs are increasingly being used to power new customer facing applications, connect with partners and drive microservices environments, but they also constantly expose and exchange sensitive data, making them an increasing target for attackers.
As with all things security there is no silver bullet to protect you...
DevSecOps is in its "awkward teenage years," says Matthew Rose of Checkmarx. But with new tooling and automation - particularly application security testing tools - he sees the practice maturing quickly and delivering improved outcomes.
For over 2000 years, governments, armies, businesses and lovers have been encrypting messages. For the same amount of time, the keys used to perform the encryption have been the weakest link in the chain. After 2000 years, technology has advanced such that the keys can be protected but many companies don't understand...
Done right, a zero trust architecture can reduce the complexity of one's environment while also improving cybersecurity protection and efficiency. Bob Reny of ForeScout focuses on three critical considerations: visibility, compliance and control.
APIs ubiquitous in the enterprise today, being exposed to customers, partners and applications. But because they are relied on so heavily, they also are targeted by cybercriminals.
There are more attacks over APIs than on traditional web channels primarily because it's simply easier to attack these...
Cyber Threat Intelligence (CTI) isn't the exclusive domain of specialized organizations anymore. Yet many CTI practitioners - the analysts, researchers and threathunters who collect and manage Open Source Intelligence (OSINT) gleaned from the open, deep and Dark Web - report a lack of training, tools and internal...
To facilitate investigations across the vast expanses of the open, deep, and dark web, Authentic8 engineers built a guide to 21 easily accessible Open Source Intelligence (OSINT) research tools. The report provides a brief overview of each tool, where and how to get it, a supporting visual, and use case.
Advance...
Security professionals have long struggled to demonstrate the return on investment of their security spend.
Getting sign off for an insider threat program is no different. Advanced analytics and user and entity behavior analytics (UEBA) solutions enhance the security posture of organizations deploying them....
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing omnibus.healthcareinfosecurity.com, you agree to our use of cookies.
