%term

Active Directory Security Groups vs Distribution Groups

Apr 27, 2023 By Kevin Joyce In Netwrix

Using groups is a best practice for Active Directory management. This article describes the two types of Active Directory groups — security groups and distribution groups — and offers guidance for using them effectively.

Read Post

Netwrix

Read more about Active Directory Security Groups vs Distribution Groups

Organizations Have No Idea of a Data Breach's Root Cause in 42% of Reported Cases

Apr 27, 2023 By Stu Sjouwerman In KnowBe4

New data shows how poorly organizations are at identifying – let alone removing – an attacker's foothold, putting themselves at continued risk of further attacks and data breaches. We’d like to think our security stance includes some really great abilities to detect, investigate, detect, and remediate an attack.

Read Post

KnowBe4

Read more about Organizations Have No Idea of a Data Breach's Root Cause in 42% of Reported Cases

Despite Soaring Prices, Cybersecurity Insurance Keeps Growing Briskly

Apr 27, 2023 By Tripwire Guest Authors In Tripwire

Most cybersecurity professionals know that cyber breaches increase each year. So it’s no surprise that the cybersecurity insurance business also keeps growing briskly. According to data from Markets and Markets and Polaris Market Research, the cyber insurance market swelled to $11.9 billion worldwide in 2022, up from $10.1 billion the previous year, and is projected to grow to more than $29 billion by 2027.

Read Post

Tripwire

Read more about Despite Soaring Prices, Cybersecurity Insurance Keeps Growing Briskly

Why Certifications Matter: Experience, Assurance, Mastery and Competence

Apr 26, 2023 By Craig Ingham In Xalient

Certification to International Standards is an essential component of the modern business world. Certification to these standards provides organisations with external validation of their policies, processes and controls but also corroborates their knowledge and skills in key areas.

Read Post

Xalient

Read more about Why Certifications Matter: Experience, Assurance, Mastery and Competence

Are you worried about the security of your software supply chain?

Apr 26, 2023 By GitGuardian In GitGuardian

GitGuardian Honeytoken has got you covered. You can deploy honeytokens at scale, monitor for unauthorized use, and detect intrusions in your supply chain before they can cause any damage to your assets. Honeytokens are unique, decoy credentials that can be placed across your software delivery pipeline, giving you the ability to track unauthorized access attempts in real time. They allow you to monitor when, where, and how attackers are trying to access your assets. This way, you can take proactive measures to prevent attacks before they happen.

View Video

GitGuardian

Read more about Are you worried about the security of your software supply chain?

Cyber security and Critical Infrastructure: Are We Prepared for the Worst?

Apr 26, 2023 By Razorthorn In Razorthorn

In this episode of Razorwire, I had the pleasure of speaking with Phil Tonkin from Dragos about securing critical infrastructure. Phil and I delved into the definition of critical infrastructure, the fragility of supply chains and the importance of preparing for potential attacks. We also talked about the Colonial Pipeline incident and the inextricable link between IT and OT in critical infrastructure.

View Video

Razorthorn

Security

Read more about Cyber security and Critical Infrastructure: Are We Prepared for the Worst?

Look to the Future of Borderless Data Protection

Apr 26, 2023 By Protegrity In Protegrity

Secure. Accessible. And available wherever and whenever you need it. Meet Borderless Data Nearly 130 sovereign states have enacted data privacy laws, and the challenge of moving data cross-border grows increasingly complicated. Protegrity’s Borderless Data Protection solution turns Data Privacy and Localization into an opportunity.

View Video

Protegrity

Read more about Look to the Future of Borderless Data Protection

Fake Meta Tech Support Profiles for Fraud

Apr 26, 2023 By Stu Sjouwerman In KnowBe4

Researchers at Group-IB have found an extensive campaign in which criminal operators have created a large number of fake Facebook profiles that repost messages in which the scammers misrepresent themselves as tech support personnel from Meta (Facebook’s corporate parent). Researchers discovered some 3200 bogus profiles in twenty-three languages. By far most of the profiles were created in English, more than 90%, followed by Mongolian (2.5%), Arabic (2.3%), Italian (0.8%), and Khmer (0.6%).

Read Post

KnowBe4

Read more about Fake Meta Tech Support Profiles for Fraud

EP 26 - Ransomware Revisited: Combating the Identity Explosion

Apr 26, 2023 By CyberArk In CyberArk

Andy Thompson, Offensive Security Research Evangelist at CyberArk Labs, returns to Trust Issues for a dive with host David Puner into the latest developments in the world of ransomware. With ransomware events on the rise, Thompson sheds light on the alarming trend of data exfiltration and double extortion. But what’s causing this surge? Thompson connects the dots between the rise of digital identities and the increasing frequency of ransomware attacks.

Read Post

CyberArk

Read more about EP 26 - Ransomware Revisited: Combating the Identity Explosion

Coffee Talk with SURGe: 2023-APR-25 The Interview Series live from RSA Conference

Apr 26, 2023 By Splunk In Splunk

Grab a cup of coffee and join Mick Baccio and special guests Juan Andres Guerrero-Saade and Jon DiMaggio for another episode of Coffee Talk with SURGe, live from RSA Conference in San Francisco. Guerrero-Saade and DiMaggio are both contributing authors for Bluenomicon, a new book by SURGe that features stories and advice from security leaders and practitioners. You don't want to miss it!

View Video