%term

M&A Trending In Cybersecurity Industry Vertical For 2022

Jan 28, 2022 By Chuck Brooks In AT&T Cybersecurity

Nowadays you need a scorecard to keep track of the monthly acquisitions and mergers in the cybersecurity industry. Mergers and acquisition (M&A) of products, capabilities, and companies has become a common strategy for business and market growth. Even through the Covid19 pandemic, trends in acquisition and consolidation of information security oriented companies remained quite strong. In fact, the volume of U.S.

Read Post

AT&T Cybersecurity

Read more about M&A Trending In Cybersecurity Industry Vertical For 2022

Managing API Specifications in the Veracode Platform

Jan 28, 2022 By Veracode In Veracode

In this video, you will learn how to upload, update, and delete API specifications using the API Specification Management tab in the Veracode Platform. This tab is a feature of Dynamic Analysis API Scanning.

View Video

Veracode

Read more about Managing API Specifications in the Veracode Platform

The Security Playbook for Remote-first Organizations

Jan 28, 2022 By Michael Osakwe In Nightfall

The sudden shift to remote work in 2020 exposed companies to a variety of new security challenges that haven’t gone away. Review the seven most crucial areas of security for emerging remote-first organizations. Continue reading below or feel free to download a copy of this playbook. We’ll also include our free Post-COVID Security Checklist as a reference you can keep in your back pocket.

Read Post

Nightfall

Read more about The Security Playbook for Remote-first Organizations

Lessons Learned From Successive Use of Offensive Cyber Operations Against Ukraine and What May Be Next

Jan 28, 2022 By CrowdStrike Intelligence Team In CrowdStrike

Disruptive and destructive cyber operations have been levied against elements of Ukrainian society by adversaries attributed to the Russian government — or groups highly likely to be controlled by them — since at least 2014. These operations have impacted several sectors, including energy, transportation and state finance, and have attempted to influence political processes and affect businesses more broadly within the country.

Read Post

CrowdStrike

Read more about Lessons Learned From Successive Use of Offensive Cyber Operations Against Ukraine and What May Be Next

How to Scale Your Vendor Risk Management Program in 2022

Jan 28, 2022 By Edward Kost In UpGuard

As cybersecurity regulations continue to tighten their grip on vendor security, a greater weight of responsibility is expected to fall on Third-Party Risk Management Programs. So if you're currently struggling to keep up with your vendor security due diligence, your workflow congestion will only worsen if a scalable and streamline vendor risk management program isn't achieved.

Read Post

UpGuard

Read more about How to Scale Your Vendor Risk Management Program in 2022

Detecting and mitigating CVE-2021-4034: "Pwnkit" local privilege escalation

Jan 28, 2022 By Jason Avery In Sysdig

A new advisory from Qualys discloses a local privilege escalation bug in SUID-set program ‘pkexec’. The flaw has been designated the CVE ID of CVE-2021-4034 and nicknamed “pwnkit” by the vulnerability finders. The CVSSv3 base score is calculated to be a high 7.8 out of 10.0. The vulnerable program is a part of Polkit, which manages process privileges.

Read Post

Sysdig

Read more about Detecting and mitigating CVE-2021-4034: "Pwnkit" local privilege escalation

RFDiscussion #3 - AWS IAM Join Tokens

Jan 28, 2022 By Teleport In Teleport

Deep dive into how Teleport uses a new IAM join method to makes it easier to enroll a fleet of servers into Teleport.

View Video

Teleport

Read more about RFDiscussion #3 - AWS IAM Join Tokens

Protecting Mobile Point of Sale and Financial Apps From Cyber Breaches

Jan 28, 2022 By Lookout In Lookout

Learn how the Lookout App Defense Solution is protecting leading mPOS providers, mobile banking, and finance/fintech apps from cyber threats.

View Video

Lookout

Read more about Protecting Mobile Point of Sale and Financial Apps From Cyber Breaches

How OpenBullet is used and abused by cybercriminals

Jan 28, 2022 By Yasmin Duggal In Netacea

OpenBullet is a testing suite of software allowing users to perform requests on a target web application. The open source tool can be found on GitHub and is used by businesses for various legitimate purposes including scraping and parsing data and automated penetration testing. Although designed to aid security professionals, in the wrong hands OpenBullet can be abused for the opposite purpose.

Read Post

Netacea

Read more about How OpenBullet is used and abused by cybercriminals

CMMC Town Hall With Matt Travis - CEO, CMMC-AB | 1/12/22 | NeoSystems

Jan 28, 2022 By NeoSystems In NeoSystems

NeoSystems CMMC Town Hall Series: Join NeoSystems’ Chief Information Security Officer, Ed Bassett, for our weekly CMMC Town Hall designed for the Defense Industrial Base and GovCon community. Each session features special guests and offers an opportunity for attendees to ask questions regarding CMMC and cybersecurity. Topics covered include CMMC compliance requirements, how to prepare for CMMC certification, and the latest updates from the CMMC AB.

View Video