%term

APIs: The Invisible Backbone of Digital Transformation

May 8, 2025 By A10 Networks In A10 Networks

APIs: The Invisible Backbone of Digital Transformation In today's app-driven economy, APIs (Application Programming Interfaces) have become the foundation for innovation and connectivity. A10's security experts Carlo Alpuerto and Jamison Utter explore the explosive growth in API development and adoption across industries. These powerful interfaces now power everything from financial services and retail experiences to transportation systems, IoT devices, autonomous vehicles, and smart city infrastructure.

View Video

A10 Networks

API
Security

Read more about APIs: The Invisible Backbone of Digital Transformation

How to Reduce Privileged Access Risks by Restricting Local Admin Rights

May 8, 2025 By Netwrix In Netwrix

Discover how to bolster your organization's cybersecurity by reducing privileged access risks! In this video, Netwrix experts share actionable strategies for restricting local admin rights using Netwrix Endpoint Policy Manager to safeguard sensitive data and mitigate insider threats. Learn practical tips to enhance your security posture today!

View Video

Netwrix

Read more about How to Reduce Privileged Access Risks by Restricting Local Admin Rights

Top tips: AI is coming for your data...unless you act first!

May 8, 2025 By Alsherin In ManageEngine

Top tips is a weekly column where we highlight what’s trending in the tech world and list ways to explore these trends. This week, we’ll explore how to prevent our data from being used by AI. The internet remembers everything. The album you posted on Facebook seven years ago, the silly blog you published when you were in school, the memes you liked, the videos you viewed—everything is etched onto the internet. You may forget, but the internet remembers.

Read Post

ManageEngine

Read more about Top tips: AI is coming for your data...unless you act first!

SolarWinds Hack: How State Actors Infiltrated & What You Can Learn #cybersecurity #solarwinds

May 8, 2025 By Mend In Mend

State actors played the long game by targeting SolarWinds’ build server, injecting malicious code without detection. Learn why code diffs, hash checks, and decompiling builds are critical for cybersecurity today.

View Video

Mend

Read more about SolarWinds Hack: How State Actors Infiltrated & What You Can Learn #cybersecurity #solarwinds

Riscosity's Approach to Managing Dependencies

May 8, 2025 By Christopher Widstrom In Riscosity

According to Security Score Card in 2024 35.5% of breaches were related to third party access. Our software is primarily written in Go and we wanted to share how our engineering team approaches managing dependencies.

Read Post

Riscosity

Read more about Riscosity's Approach to Managing Dependencies

What Is a Supply Chain Attack?

May 8, 2025 By SecurityScorecard In SecurityScorecard

A supply chain attack does not start with your firewall. It starts with someone else’s. Instead of targeting your company directly, a cyber attacker looks for weak spots in your organization’s supply chain. That could be a trusted third-party vendor, a widely used software supplier, or even an outdated package from an open-source code repository. Once they find an opening, they exploit security vulnerabilities to gain access to your systems without ever going through the front door.

Read Post

SecurityScorecard

Read more about What Is a Supply Chain Attack?

If you can't patch perfectly, patch programmatically

May 8, 2025 By The Editor In WatchGuard

In every quarterly security report we’ve ever released, we consistently find that threat actors primarily exploit old vulnerabilities, often fixed months, if not years, prior. The prevalence of zero-day exploits pales in comparison to these well-known, outdated vulnerabilities. This reality underscores our repeated advice: regularly and swiftly patch your software to yield significant returns on your security work investment.

Read Post

WatchGuard

Read more about If you can't patch perfectly, patch programmatically

Beyond the Perimeter: How NYDFS 23 NYCRR 500 Principles Apply to the Expanding API Attack Surface

May 8, 2025 By Eric Schwake In Salt Security

For financial institutions in New York, the NYDFS Cybersecurity Regulation (23 NYCRR 500) is a vital mandate that requires a strong and comprehensive cybersecurity framework. This regulation outlines numerous requirements aimed at safeguarding customer data and maintaining the integrity of financial systems.

Read Post

Salt Security

Read more about Beyond the Perimeter: How NYDFS 23 NYCRR 500 Principles Apply to the Expanding API Attack Surface

Safeguarding Against Subdomain Takeover

May 8, 2025 By SecurityScorecard In SecurityScorecard

Subdomain takeovers are a growing threat in today’s cloud-first ecosystem. As organizations rely on third-party services, continuously launch digital assets, and manage sprawling DNS configurations, they often leave behind vulnerable subdomains ripe for exploitation. In this article, we explore subdomain takeovers, why they pose such a serious risk, and most importantly, how to prevent them before threat actors strike.

Read Post

SecurityScorecard

Read more about Safeguarding Against Subdomain Takeover

Tines Workbench Bootcamp

May 8, 2025 By Tines In Tines

Join us for a special bootcamp exploring our universal AI copilot, Tines Workbench. Workbench is a Tines-powered AI chat interface where you can take action and access proprietary data in real-time, privately and securely. In this 45-minute session, get hands-on experience using Tines Workbench, learning how to combine the power of secure AI chat and enterprise workflows. You can view the bootcamp user guide here.

View Video