%term

1Password Extended Access Management now available to Microsoft Entra, Google Workspace customers

Aug 7, 2024 By Steve Won In 1Password

With remote work, bring-your-own-device, and shadow IT apps becoming commonplace, the number of unsanctioned apps and untrusted devices is rapidly climbing. And cybersecurity and IT leaders have been stuck with tools that only secured access to some applications, some devices, and some people, creating an Access-Trust Gap.

Read Post

1Password

Read more about 1Password Extended Access Management now available to Microsoft Entra, Google Workspace customers

Massive Cyberattack on Mobile Guardian Wipes Data from Thousands of Student Devices

Aug 7, 2024 By Foresiet In Foresiet

In a recent cybersecurity incident, a hacker breached Mobile Guardian, a widely used digital classroom management platform, and remotely wiped data from at least 13,000 student devices. Mobile Guardian, a partner of 'Google for Education,' offers comprehensive device management, secure web filtering, classroom management, and communication solutions for K-12 schools worldwide.

Read Post

Foresiet

Read more about Massive Cyberattack on Mobile Guardian Wipes Data from Thousands of Student Devices

Windows Downdate: Downgrade Attacks Using Windows Updates

Aug 7, 2024 By Alon Leviev In SafeBreach

Downgrade attacks—also known as version-rollback attacks—are a type of attack designed to revert an immune, fully up-to-date software back to an older version. They allow malicious actors to expose and exploit previously fixed/patched vulnerabilities to compromise systems and gain unauthorized access.

Read Post

SafeBreach

Read more about Windows Downdate: Downgrade Attacks Using Windows Updates

Asset and Inventory Management - The Foundation of the Vulnerability Management Lifecycle

Aug 7, 2024 By Corey Tomlinson In Nucleus

Organizations face a myriad of cybersecurity threats that can compromise sensitive data and disrupt operations. A cornerstone of defending against these threats is an effective vulnerability management program. This program’s first, and arguably most critical, step is strong asset and inventory management. A thorough and accurate asset inventory is essential for identifying and mitigating vulnerabilities.

Read Post

Nucleus

Read more about Asset and Inventory Management - The Foundation of the Vulnerability Management Lifecycle

Introducing Books

Aug 7, 2024 By Charrah Hardamon In Riscosity

The months leading up to audits can be some of the most stressful for security and privacy teams. Some audits can take up to 9 months to prepare for and another 3 months to complete, with security and privacy teams spearheading the evidence collection. Collecting evidence used to be a walk in the park, but that was before multi-cloud environments, new standards, and emerging regional privacy requirements.

Read Post

Riscosity

Read more about Introducing Books

Top Cybersecurity Priorities for 2024 | Razorthorn Security

Aug 7, 2024 By Razorthorn In Razorthorn

Welcome to Razorwire, the podcast that cuts through the noise of the information security industry. I'm your host, Jim, and today we're taking a look at the Top Cybersecurity Priorities for 2024 with our guest, Oliver Rochford. If you're a cybersecurity professional taking on the evolving threats and challenges of our field, you won't want to miss this discussion. From the rapid consolidation within the tech sector to the challenges of supply chain security and the limitations of today's infosec tools, we leave no stone unturned.

View Video

Razorthorn

Security

Read more about Top Cybersecurity Priorities for 2024 | Razorthorn Security

The Cybersecurity Industry is Under Scrutiny Yet Again

Aug 7, 2024 By Jerald Dawkins In CISO Global

Unfortunately, the cybersecurity industry has been in the crosshairs once again due to the global Microsoft outage caused by CrowdStrike’s disastrous software update on July 19th. Coincidentally, just five days following the CrowdStrike issue, the US District Court for the Southern District of New York dismissed a case involving another notable cybersecurity company, SolarWinds.

Read Post

CISO Global

Read more about The Cybersecurity Industry is Under Scrutiny Yet Again

Detect and respond to compromised identities in minutes with Sysdig

Aug 7, 2024 By ashish chakrabortty In Sysdig

Sysdig continues to enhance our real-time cloud detection and response (CDR) capabilities with the introduction of Cloud Identity Insights, empowering customers to analyze identity attack patterns and get ahead of threat actors. In this post, we’ll explore how Sysdig uses Cloud Identity Insights to correlate suspicious events with potentially compromised user accounts.

Read Post

Sysdig

Read more about Detect and respond to compromised identities in minutes with Sysdig

A Leader in Both Security Service Edge and Single-Vendor SASE

Aug 7, 2024 By Parag Thakore In Netskope

Netskope is one of only two vendors positioned in the Leaders Quadrant in the Gartner Magic Quadrant reports for both key categories: Security Service Edge and Single-Vendor SASE. What’s more, the Gartner companion report, Critical Capabilities for Single-Vendor SASE, recognized Netskope as the only Single-Vendor SASE vendor that ranked among the 3 highest scoring vendors in all 3 Use Cases, with the highest score for the Zero Trust Platform Use Case (4.02/5.00).

Read Post

Netskope

Read more about A Leader in Both Security Service Edge and Single-Vendor SASE

Introducing Cloud Identity Insights for Sysdig Secure

Aug 7, 2024 By Maya Levine In Sysdig

In recent years, almost every major cloud breach has been marked by overly permissive credentials, followed by lateral movement and privilege escalation. These vulnerabilities have allowed attackers to navigate through systems with ease, escalating their privileges to cause significant harm. It’s crucial for cloud threat responders to be aware of threats as they occur and to be able to contain these attacks swiftly and effectively.

Read Post