Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

February 2024

bitsight

Tackling Shadow IT Head-On: Strategies for Cybersecurity Leaders

Feb 29, 2024 By Tim Grieveson In BitSight
As cybersecurity leaders, we're all too familiar with the challenges posed by Shadow IT—a persistent thorn in the side of IT and security teams worldwide. And when high-profile supply chain attacks make headlines, the urgency to understand our reliance on third parties becomes all too real.
Read Post

Bitsight Vendor Risk Management Walkthrough

Feb 28, 2024 By BitSight In BitSight
Streamline Assessments, Monitor Vendors, and Validate Security Posture with Ease. No more manual workflows or toggling between tools—with Bitsight VRM, part of the industry’s first end-to-end third-party risk management solution, you can effortlessly navigate through risk assessments and continuous monitoring with just a flip of a switch. Discover a new level of clarity and efficiency with instant access to an ever-growing network of 40,000+ vendor profiles. Track onboarding and validate questionnaire responses with objective data to make informed decisions and expedite risk mitigation.
View Video
bitsight

Hunting PrivateLoader: The malware behind InstallsKey PPI service

Feb 27, 2024 By André Tavares In BitSight
Since July 2022, Bitsight has been tracking PrivateLoader, the widespread malware downloader behind the Russian Pay-Per-Install (PPI) service called InstallsKey. At the time, this malware was powering the now decommissioned ruzki PPI service. Figure 1 presents a brief description of the service, which was found in their sales telegram channel. Fig. 1 - Service description on telegram channel profile (Russian and English).
Read Post
bitsight

Less Is More: Consolidating Your Third Party Risk Management Tools

Feb 21, 2024 By Anders Norremo and Qionglu Lei In BitSight
Proudly serving over 3,000 enterprises globally, Bitsight works closely with risk leaders across industries to help them protect their businesses. CISOs and third-party risk professionals face pressing challenges, from regulations to efficiency to maintaining supply chain resilience—all calling for smarter, easier, and more integrated solutions.
Read Post
bitsight

5 Cyber Governance Tips for Board Members, Inspired by New Bitsight-Google Study

Feb 15, 2024 By Noah Stone In BitSight
Cybersecurity has become a critical part of corporate governance, with board members increasingly held accountable for the digital safety of their organizations. Amid rising breach costs, new cybersecurity regulations like those from the U.S. Securities and Exchange Commission (SEC), and new studies finding widespread cybersecurity failures, the impact of board-level cyber governance decisions is significant.
Read Post
bitsight

Practitioner's Corner: Managing Hidden Risk and Shadow IT

Feb 6, 2024 By Ryan Swimm In BitSight
When it comes to managing hidden risk and shadow IT, our primary challenge as cybersecurity practitioners is securing the organization’s data and applications while empowering users to perform their duties efficiently. After all, one survey found that 67% of employees aren’t completely satisfied with their workplace tools and technologies—often resulting in the adoption of unsanctioned applications.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.