%term

How Businesses Can Scale in the Financial Digital Asset Space

May 4, 2022 By Fireblocks In Fireblocks

Manual operations limit the scaling of a digital asset business. Fireblocks Head of APAC & Vice President, Product Strategy and Business Solutions, Stephen Richardson, shares how over 1,200 institutions have leveraged Fireblocks to efficiently scale their crypto and digital asset businesses.

View Video

Fireblocks

Read more about How Businesses Can Scale in the Financial Digital Asset Space

New York Department of Financial Services Modernizes Regulatory Oversight through Establishing First-of-its-Kind Use Case with SecurityScorecard

May 4, 2022 By SecurityScorecard In SecurityScorecard

New York DFS is working with SecurityScorecard to further support the department’s first-in-the-nation cybersecurity efforts to modernize its supervision process. The New York Department of Financial Services (DFS) is now working with SecurityScorecard to modernize its approach toward regulatory oversight.

Read Post

SecurityScorecard

Read more about New York Department of Financial Services Modernizes Regulatory Oversight through Establishing First-of-its-Kind Use Case with SecurityScorecard

Top Cyber Attacks of April 2022

May 4, 2022 By Arctic Wolf In Arctic Wolf

The attacks came from all corners in the past month, as cybercriminals used administrative access codes, stolen internal data, laser-focused programming tools, and even humble job applications to worm their way into organizations' inner workings. Let's look at some of the strange and sinister innovations that shaped the world of cybercrime this April.

Read Post

Arctic Wolf

Read more about Top Cyber Attacks of April 2022

Coffee Talk with SURGe! 2022-MAY-03 CISA Top Vulnerabilities, Mandiant Zero-Days, State of Security

May 4, 2022 By Splunk In Splunk

Grab a cup of coffee and join Ryan Kovar, Audra Streetman, and Mick Baccio for another episode of Coffee Talk with SURGe. This week the team from Splunk discussed CISA's list of the top exploited vulnerabilities for 2021, Mandiant's analysis of 80 zero-days exploited in the wild last year, and signs the ransomware group REvil may be back in operation. Mick and Ryan competed in a 60 second charity countdown on how to solve the talent crisis in cybersecurity before taking a deep dive into the topic of zero-days and vulnerability mining.

View Video

Splunk

Read more about Coffee Talk with SURGe! 2022-MAY-03 CISA Top Vulnerabilities, Mandiant Zero-Days, State of Security

CIS Control 7: Continuous Vulnerability Management

May 4, 2022 By Dirk Schrader In Netwrix

The Center for Internet Security (CIS) provides Critical Security Controls to help organizations improve cybersecurity. Control 7 addresses continuous vulnerability management (this topic was previously covered under CIS Control 3). Continuous vulnerability management is the process of identifying, prioritizing, documenting and remediating weak points in an IT environment.

Read Post

Netwrix

Read more about CIS Control 7: Continuous Vulnerability Management

BlackCat/ALPHV Ransomware: Cybriant Responds to FBI Warning

May 4, 2022 By Cybriant In Cybriant

The Federal Bureau of Investigation (FBI) recently released a Flash Report regarding BlackCat Ransomware breaches. This ransomware as a service (RaaS) has compromised at least 60 entities worldwide and is the first ransomware group to do so successfully using RUST, considered to be a more secure programming language that offers improved performance and reliable concurrent processing.

Read Post

Cybriant

Read more about BlackCat/ALPHV Ransomware: Cybriant Responds to FBI Warning

CIS Control 6: Access Control Management

May 4, 2022 By Dirk Schrader In Netwrix

The Center for Internet Security (CIS) publishes Critical Security Controls that help organization improve cybersecurity. In version 8, Control 6 addresses access control management (in previous versions, this topic was covered by a combination of Control 4 and Control 14).

Read Post

Netwrix

Read more about CIS Control 6: Access Control Management

World Password Day is Dead. Long Live World Password Day!

May 4, 2022 By Tim Erlin In Tripwire

In 2002 I sat in a local bookstore in Jackson Hole, WY that offered a few Internet-connected computers for hourly use. After chatting with the owner and petting the resident store dog, I took a few guesses at the password protecting these computers. It took me maybe 10 attempts. It was, of course, some variation of the dog’s name. While this is a very dated story, it’s this kind of story that still drives many people’s perception of why a strong password is necessary.

Read Post

Tripwire

Read more about World Password Day is Dead. Long Live World Password Day!

CIS Control 4: Secure Configuration of Enterprise Assets & Software

May 4, 2022 By Dirk Schrader In Netwrix

Maintaining secure configurations on all your IT assets is critical for cybersecurity, compliance and business continuity. Indeed, even a single configuration error can lead to security incidents and business disruptions. Control 4 of CIS Critical Security Controls version 8 details cyber defense best practices that can help you establish and maintain proper configurations for both software and hardware assets.

Read Post

Netwrix

Read more about CIS Control 4: Secure Configuration of Enterprise Assets & Software

CIS Control 1: Inventory and Control of Enterprise Assets

May 4, 2022 By Dirk Schrader In Netwrix

Unless you know what IT assets you have and how important each of them is to your organization, it’s almost impossible to make strategic decisions about IT security and incident response. Indeed, inventory and control of enterprise assets is so important that it is the first in the set of Critical Security Control (CSCs) published by the Center for Internet Security (CIS).

Read Post