Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Your employees, business partners, and third-party contractors with legitimate access to your corporate infrastructure may pose significant risks to your cybersecurity. Intentionally or unintentionally, they can destroy or expose your valuable data, thus, putting your organization at risk for non-compliance, financial losses, reputation damage, etc. It’s important to understand what insider threats are and what dangers they may pose to your organization.

Recent research identifying nearly 100,000 exposed industrial control systems (ICS) around the world should serve as a critical wake-up call to national government policymakers responsible for ensuring national security, public health, and safety within their borders. These systems, fundamental to our critical infrastructure, underpin essential services that sustain modern society… and they should not be publicly exposed on the Internet!

In the latest instalment of our interviews speaking to leaders throughout the world of tech, we’ve welcomed John Bambenek, cybersecurity specialist at Bambenek Consulting Ltd.

According to the CrowdStrike 2023 Global Threat Report, there was a 95% increase in cloud exploits in 2022, with a three-fold increase in cases involving cloud-conscious threat actors. The cloud is rapidly becoming a major battleground for cyberattacks — and the cost of a breach has never been higher.

At the turn of the millennium, few people were worried about cybercrime. The Good Friday Agreement had just come into effect, the US expelled a Russian diplomat for spying, and the threat of the Y2K bug loomed. ILOVEYOU, the computer worm that catapulted cybercrime into the public consciousness, was still five months away. Today, things couldn't be more different.

Continuous Integration and Continuous Delivery (CI/CD) security has become crucial to modern software development practices. As the speed of software development increases with DevOps and Agile methodologies, there is a growing need to ensure the integrity of software across the entire development pipeline.

Security hygiene and posture management (SHPM) is a relatively new concept, yet it’s fundamental to protecting sensitive systems and data. There’s growing recognition that it’s critical for today’s companies to fully understand assets and their relationships. As a result, more companies are looking to SHPM as a core component of their cybersecurity programs.

In the realm of cybersecurity, the metaphor of "Leaky Buckets" has become an increasingly prevalent concern, particularly in the context of API security. This term encapsulates the hidden vulnerabilities and exposures in API infrastructures that many organizations struggle to identify and address. The digital era has amplified these challenges, with APIs becoming central to the operational fabric of numerous enterprises.

Google Dorking, also known as Google Hacking, is a technique using sophisticated search queries to uncover information on the internet not easily accessible through typical search queries. It leverages the capabilities of Google’s search algorithms to locate specific text strings within search results.

In era of digital devices, where the specter of data breaches and cyber threats looms large, the role of ethical hackers, colloquially known as white hat hackers, has become paramount. This article embarks on an in-depth journey into the realm of ethical hacking, illuminating its profound significance in identifying vulnerabilities and fortifying the intricate tapestry of overall cybersecurity.