%term

Setting the Standard for AI Compliance: Vanta introduces AI Security Assessment

Apr 24, 2025 By Vanta In Vanta

New offering helps organizations easily evaluate vendor AI's risk. Vanta becomes first trust management platform to achieve ISO 42001. Debuting new AI achievements and resources at booth #2127 at RSA Conference April 28 - May 1.

Read Post

Vanta

Read more about Setting the Standard for AI Compliance: Vanta introduces AI Security Assessment

Forward Networks Enhances Network Digital Twin with Advanced Endpoint Collection to Strengthen Security Compliance and Eliminate Tool Sprawl

Apr 24, 2025 By Forward Networks In Forward Networks

Forward Enterprise delivers the most comprehensive, always-accurate network inventory available-empowering teams to manage, secure, and simplify modern enterprise networks.

Read Post

Forward Networks

Read more about Forward Networks Enhances Network Digital Twin with Advanced Endpoint Collection to Strengthen Security Compliance and Eliminate Tool Sprawl

CyCognito Joins Wiz Integrations (WIN) Platform

Apr 24, 2025 By CyCognito In CyCognito

Joint Integration Takes Outside-In Testing View to Identify and Prioritize Cloud Risks.

Read Post

CyCognito

Read more about CyCognito Joins Wiz Integrations (WIN) Platform

Rakuten Mobile and Cloudflare partner to deliver Managed Security Services across Japan

Apr 24, 2025 By Cloudflare In Cloudflare

Rakuten Mobile becomes Japan's first MSSP partner with Cloudflare to empower corporate clients with Zero Trust security solutions.

Read Post

Cloudflare

Read more about Rakuten Mobile and Cloudflare partner to deliver Managed Security Services across Japan

How Organizational Culture Shapes Cyber Defenses

Apr 24, 2025 By Javvad Malik In KnowBe4

Recently, I received an email at work from a company with whom I've had previous interactions. The email lacked context and contained an attachment, immediately raising suspicion. I reported it to our infosec team using the Phish Alert Button (PAB). A short while later, our team confirmed it was indeed a malicious email. Subsequently, the sender organization informed us that they had been compromised, and phishing emails had been distributed from their account.

Read Post

KnowBe4

Read more about How Organizational Culture Shapes Cyber Defenses

Weekly Cyber Security News 24/04/2025

Apr 24, 2025 By Kevin In ionCube24

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Curious no claims on the attack, could that suggest an insider?

Read Post

ionCube24

Read more about Weekly Cyber Security News 24/04/2025

Half of Organizations Lack Protection Against Email Spoofing

Apr 24, 2025 By Stu Sjouwerman In KnowBe4

A new report from Valimail has found that 50% of organizations lack effective protection against email spoofing. Specifically, many organizations have lenient DMARC policies that don’t actually prevent spoofing. DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication protocol that helps prevent attackers from spoofing organizations that have the protocol in place.

Read Post

KnowBe4

Read more about Half of Organizations Lack Protection Against Email Spoofing

CVE-2025-34028: PoC Released for Critical RCE Vulnerability in Commvault Command Center

Apr 24, 2025 By Andres Ramos In Arctic Wolf

On April 24, 2025, watchTowr published technical details and a proof-of-concept (PoC) exploit for a critical vulnerability in Commvault Command Center, CVE-2025-34028, which had been disclosed earlier in April. Commvault Command Center is a web-based interface used to manage data protection, backup, and recovery operations across enterprise environments.

Read Post

Arctic Wolf

Read more about CVE-2025-34028: PoC Released for Critical RCE Vulnerability in Commvault Command Center

Corelight's Vincent Stoffer on Why Enterprises Can't Rely Only on Endpoint Security

Apr 24, 2025 By Corelight In Corelight

The cybersecurity industry's heavy reliance on endpoint detection and response tools has created significant vulnerabilities, particularly around IoT devices and operational technology that cannot be monitored using traditional security tools, according to Vincent Stoffer, field CTO at Corelight. This growing attack surface, combined with sophisticated threat actors who exploit any available entry point, has pushed organizations to reevaluate their security strategies and consider more comprehensive network monitoring approaches.

View Video

Corelight

Read more about Corelight's Vincent Stoffer on Why Enterprises Can't Rely Only on Endpoint Security

Fintech Newscast Episode 253 with Memcyco

Apr 24, 2025 By Memcyco In Memcyco

Security, growth, and valuations — all packed into one powerful episode. Memcyco CEO Israel Mazin sat down with Fintech Newscast to explore the evolving cyber threat landscape and how startups can stay ahead of the curve. From founding a security company to navigating today’s investment climate, it’s a must-listen for anyone in fintech. Stream the full convo on the Fintech Newscast!

View Video