%term

Managing network objects in hybrid environments

Feb 28, 2022 By AlgoSec In AlgoSec

Prof. Avishai Wool and Jade Kahn dive deep into the challenges, solutions and do's and don'ts of managing network object in multi-vendor hybrid environments. Visit algosec.com/objectflow to learn how to manage network objects securely, effectively and efficiently.

View Video

AlgoSec

Read more about Managing network objects in hybrid environments

How Netskope SSE Prevents Insider Threat Kill Chain

Feb 28, 2022 By Netskope In Netskope

Netskope, the SASE leader, safely and quickly connects users directly to the internet, any application, and their infrastructure from any device, on or off the network. With CASB, SWG, and ZTNA built natively in a single platform, Netskope is fast everywhere, data-centric, and cloud smart, all while enabling good digital citizenship and providing a lower total-cost-of-ownership.

View Video

Netskope

Read more about How Netskope SSE Prevents Insider Threat Kill Chain

Historical Cyber Warfare - Russia vs Ukraine

Feb 28, 2022 By Shmuel Gihon In Cyberint

As we witness history in the making, the scale and complexity of the conflict are immeasurable. When focusing on the cyber warfare aspect of the conflict we can see, first time in history, warfare that includes every type of cyber-personal, state-sponsored groups, ransomware groups, hacktivists, DDoS actors, script kitties and even volunteers that want to join the cause.

Read Post

Cyberint

Read more about Historical Cyber Warfare - Russia vs Ukraine

Elastic protects against data wiper malware targeting Ukraine: HERMETICWIPER

Feb 28, 2022 By Elastic Security Intelligence & Analytics Team In Elastic

Recently, we have seen several malware campaigns attacking Ukrainian organizations — Operation Bleeding Bear is a recent one of note. Elastic Security researchers recently verified a data wiper malware campaign that is targeting Ukrainian systems. As this malware campaign is new, with more information being uncovered hourly, it is being referred to as HERMETICWIPER.

Read Post

Elastic

Read more about Elastic protects against data wiper malware targeting Ukraine: HERMETICWIPER

Understanding The Gramm-Leach-Bliley Act (GLBA) Privacy Rule

Feb 27, 2022 By Emily Heaslip In Nightfall

The Gramm-Leach-Bliley Act, known as the GLBA, was passed in 1999 under President Clinton. The goal of the GLBA was to update and modernize the financial industry. Today, it’s primarily used to protect customer and consumer information, with steep penalties for financial institutions that violate its privacy rules. Here’s what you need to know about the GLBA and its regulations.

Read Post

Nightfall

Read more about Understanding The Gramm-Leach-Bliley Act (GLBA) Privacy Rule

"Shields Up" Strategy - the New Reality for U.S. Critical Infrastructure

Feb 27, 2022 By Bill Moore In Xona

Russian hackers are attempting to broadly penetrate Ukrainian infrastructure to disrupt critical services such as electricity, transportation, finance, and telecommunications. US Government urges US Critical Infrastructure owners to harden their systems and implement a “shields up” strategy. As tensions escalate, Russian cyberattacks could seek to disrupt US electricity, gas, and other systems, warn the FBI and Department of Homeland Security.

Read Post

Xona

Read more about "Shields Up" Strategy - the New Reality for U.S. Critical Infrastructure

Securing the Digital Supply Chain Ep 8 - Terence Jackson CISO, SLG, Microsoft

Feb 26, 2022 By Riscosity In Riscosity

In this episode of Securing the Digital Supply Chain we talk with terence Jackson, CISO at Microsoft for State and Local Government customers! We have a great time talking about the trends in the Software Supply Chain area as well what can CISOs focus on to get quick wins for their organizations. Terence brings a wealth of experience from small to medium scale to large enterprise organizations and applies them to various security challenges to effectively solve them.

View Video

Riscosity

Read more about Securing the Digital Supply Chain Ep 8 - Terence Jackson CISO, SLG, Microsoft

What are the Four Major Threats to SaaS Security in 2022?

Feb 25, 2022 By Chester Avey In SecuritySenses

Software as a Service (SaaS) has become an increasingly hot topic for businesses of all sizes. Companies looking to change the way they operate after the COVID-19 pandemic have been making use of SaaS services to help them grow. But, as more companies use SaaS, so too do more cybercriminals take an interest in it. Here we look at four major threats to business SaaS security measures and analyse what your company can do to minimise the risk during 2022.

Read Post

SecuritySenses

Read more about What are the Four Major Threats to SaaS Security in 2022?

Solving the CVE puzzle with MITRE ATT&CK and threat intel

Feb 25, 2022 By Simon Roe In Outpost 24

To threat actors, infiltrating an organisation's infrastructure is like a cryptic puzzle they must solve as they seek out vulnerabilities to exploit. By evolving their tactics and techniques, completing the puzzle becomes easier and so does finding common vulnerabilities and exposures (CVEs) to target. As a result, there is a greater call for security teams to go the extra mile with vulnerability remediation efforts by combining threat intelligence with CVE findings and the guidance provided by the MITRE ATT&CK framework to zoom in on the riskiest vulnerabilities.

Read Post

Outpost 24

Read more about Solving the CVE puzzle with MITRE ATT&CK and threat intel

An interview with Hisham Alhakimi about Security Compliance & FedRAMP

Feb 25, 2022 By Teleport In Teleport

Key topics on Access Control Podcast: Episode 13 - Security Compliance & FedRAMP Expanding your knowledge on Access Control Podcast: Episode 13 - Security Compliance & FedRAMP.

View Video