%term

Cybersecurity Budgets Increasing, But Internal Challenges Remain - State of Incident Response 2021

Sep 13, 2021 By Kroll In Kroll

We surveyed 400 information security and 100 legal and compliance leaders from companies with over $500M in annual revenue and more than half reported increased cybersecurity budgets for next year and that their executive leadership is more aware of cyber threats. However, over 40% report internal obstacles with the adoption of security processes, lack of organization-wide support, and a "bare minimum" approach to security.

View Video

Kroll

Security

Read more about Cybersecurity Budgets Increasing, But Internal Challenges Remain - State of Incident Response 2021

How to increase & justify your cybersecurity budget

Sep 13, 2021 By Enrico Benzoni In Sumo Logic

Cybersecurity is a business issue, not just a technology issue, and it is no longer deemed as a luxurious investment but rather a necessary one. It’s been a long time coming, but companies are finally coming to terms with the seriousness of cyber threats. Cyber attacks are growing in complexity, and their unpredictable nature stimulated by the evolution of technology has prompted companies to significantly boost their cybersecurity budget.

Read Post

Sumo Logic

Read more about How to increase & justify your cybersecurity budget

Detect and prevent dependency confusion attacks on npm to maintain supply chain security

Sep 13, 2021 By Liran Tal In Snyk

On February 9, 2021, Alex Birsan disclosed his aptly named security research, dependency confusion. In his disclosure, he describes how a novel supply chain attack that exploits misconfiguration by developers, as well as design flaws of numerous package managers in the open source language-based software ecosystems, allowed him to gain access and exfiltrate data from companies such as Yelp, Tesla, Apple, Microsoft, and others.

Read Post

Snyk

Read more about Detect and prevent dependency confusion attacks on npm to maintain supply chain security

The Role of Managed Detection and Response - State of Incident Response 2021

Sep 13, 2021 By Kroll In Kroll

Internal security teams are overwhelmed by cyber threats and finding seasoned incident response professionals is now harder and more expensive. The State of Incident Response 2021 surveyed 400 information security and 100 legal and compliance leaders from companies with over $500M in annual revenue to learn how managed detection and response vendors are incorporated into their security programs. Over 76% of organizations are relying on a third-party vendor to augment in-house capabilities, and their biggest benefit is delivering faster containment, response, and more automation capabilities.

View Video

Kroll

Read more about The Role of Managed Detection and Response - State of Incident Response 2021

How ethical hacker Frans Rosén deleted your Apple Shortcuts via CloudKit

Sep 13, 2021 By Detectify In Detectify

SHORT SUMMARY: STOCKHOLM, SWEDEN – In February 2021, Detectify co-founder and Crowdsource hacker Frans Rosén was looking for security bugs in Apple services. Noticing that many of Apple’s own apps store their data in public databases on Apple’s data storage framework CloudKit, Frans was curious to know if any specific apps’ data could be modified with access to the public CloudKit containers in which their data was stored. Long story short, they could.

Read Post

Detectify

Read more about How ethical hacker Frans Rosén deleted your Apple Shortcuts via CloudKit

Kroll's 2-Minute Snapshot: The Role of Regulation in Life Sciences

Sep 13, 2021 By Kroll In Kroll

Chris Campbell, Chief Strategist at Kroll, Michael Kiely, President of U.S. Government Affairs at UPS and John Selib, Senior Vice President, Global Policy & Public Affairs at Pfizer, discuss the impact of regulation on the life sciences industry as well as emerging hot topics.

View Video

Kroll

Security

Read more about Kroll's 2-Minute Snapshot: The Role of Regulation in Life Sciences

DevSecOps Road Trip UK stop - Andrew Martin & Lili Kastilio

Sep 13, 2021 By Snyk In Snyk

Session 1: Threat Modelling Kubernetes Cloud native container and Kubernetes systems bring new threats and risks to our precious workloads. As cloud technologies undergo rapid innovation and new tools and techniques emerge, security can get left behind. The answer to this conveyor-belt of potential insecurity? Threat modelling!

View Video

Snyk

Read more about DevSecOps Road Trip UK stop - Andrew Martin & Lili Kastilio

Collaborate Seamlessly with Egnyte and Google Workspace

Sep 13, 2021 By David Buster In Egnyte

Today’s organizations utilize a multitude of solutions to create, share and manage their sensitive content. That business reality is exacerbated by additional cloud file storage solutions that result from acquisitions, competing employee preferences, or shadow IT initiatives. So, it’s no surprise IT teams struggle to manage and control document and file system sprawl.

Read Post

Egnyte

Read more about Collaborate Seamlessly with Egnyte and Google Workspace

Team Spotlight: Leen Neuman

Sep 13, 2021 By Torq In Torq

The #LifeatTorq Team Spotlight is a Q&A series dedicated to the talented and generally kick-ass team that form the foundation of our growing company. Today we are spotlighting Leen Neuman, a Front End Engineer at Torq, based in our Tel Aviv office.

Read Post

Torq

Read more about Team Spotlight: Leen Neuman

Top Three Reasons You Should Use an Endpoint Agent

Sep 13, 2021 By Juan Álvarez González In Devo

To better understand your security posture, your security team needs visibility into your environment and infrastructure. But to achieve more granular visibility, they also need an effective and efficient way to collect data from company endpoints. Deploying an agent provides your security team with an efficient way to collect endpoint data in a scalable manner.

Read Post