%term

Security Operations, the Devo Next-Gen SIEM, Is Now Chock Full of Content 

May 13, 2021 By Devo In Devo

Devo has some big news for our customers, partners and prospects. We are pleased to announce the latest release of Devo Security Operations, which enables you to achieve full visibility without compromise, leverage real-time detections and enriched investigations, and maximize analyst productivity.

Read Post

Devo

Read more about Security Operations, the Devo Next-Gen SIEM, Is Now Chock Full of Content

Outpost24 webinar - Full Stack Vulnerability Management with 360 Trust Services

May 13, 2021 By Outpost 24 In Outpost 24

Join Outpost24 and 360 Trust Services experts to learn how you can tackle the growing cybersecurity threats, and secure your high availability operations and satisfied customers. Save your spot for a comprehensive webinar, as we will be presenting the latest security products and services offerings, based on 20 years’ experience and accumulated expertise in cybersecurity, from vulnerability management, risk prioritization to driving a remediation culture.

View Video

Outpost 24

Read more about Outpost24 webinar - Full Stack Vulnerability Management with 360 Trust Services

Reducing Enterprise AppSec Risks: Ponemon Report Key Takeaways

May 13, 2021 By Julie Peterson In Mend

Ponemon Institute’s Reducing Enterprise Application Security Risks: More Work Needs to Be Done looks at the reasons why many enterprises consider the application layer to be the highest security risk. Ponemon Institute, in partnership with WhiteSource, surveyed 634 IT and IT security practitioners about their enterprises’ approach to securing applications.

Read Post

Mend

Read more about Reducing Enterprise AppSec Risks: Ponemon Report Key Takeaways

archTIS - Trusted to Safeguard the World's Most Sensitive Information

May 13, 2021 By archTIS In archTIS

SENSITIVE AND CLASSIFIED INFORMATION, SHARED SECURELY archTIS solutions apply and enforce dynamic, policy-driven access controls that leverage both user and data attributes to ensure your users and partners access, share and collaborate on sensitive, classified and top secret information—securely.

View Video

archTIS

Read more about archTIS - Trusted to Safeguard the World's Most Sensitive Information

Ofwat reveals it has received 20,000 spam and phishing emails so far this year

May 13, 2021 By Graham Cluley In Tripwire

Ofwat, the water services regulator for England and Wales, has revealed that it has received over 20,000 spam and phishing emails so far this year. The Water Services Regulation Authority (better known as Ofwat) which is the government department responsible for regulating the privatised water and sewage industry in England and Wales, said it had received 21,486 malicious emails so far this year – with 5,149 classified as phishing attacks.

Read Post

Tripwire

Read more about Ofwat reveals it has received 20,000 spam and phishing emails so far this year

What is Open Policy Agent?

May 13, 2021 By Styra In Styra

Open Policy Agent, or OPA, is an open source, general purpose policy engine. OPA decouples policy decisions from other responsibilities of an application, like those commonly referred to as business logic. OPA works equally well making decisions for Kubernetes, Microservices, functional application authorization and more, thanks to its single unified policy language. So what’s a policy engine? And what’s policy? A policy can be thought of as a set of rules.

Read Post

Styra

Read more about What is Open Policy Agent?

New Cybersecurity Executive Order: What You Need to Know

May 13, 2021 By Chris Wysopal In Veracode

Last night, the Biden administration released an executive order on cybersecurity that includes new security requirements for software vendors selling software to the U.S. government. These requirements include security testing in the development process and a bill of materials for the open source libraries in use, so known vulnerabilities are disclosed and able to be tracked in the future. Without following these standards, companies will not be able to sell software to the federal government.

Read Post

Veracode

Read more about New Cybersecurity Executive Order: What You Need to Know

Types of Penetration Testing

May 13, 2021 By Cyphere In Cyphere

What is Penetration Testing?

View Video

Cyphere

Read more about Types of Penetration Testing

Colonial Pipeline Incident

May 13, 2021 By Cyberint Research In Cyberint

In yet another high-impact and high-profile ransomware incident, the 'big game hunter' ransomware group 'DarkSide' accepted responsibility for an attack against the US-based Colonial Pipeline Company, an organization providing fuel pipeline services across multiple states (Figure 1) that transport a reported 100 million US gallons of fuel daily including direct service to airports.

Read Post

Cyberint

Read more about Colonial Pipeline Incident

Gig Workers are the Most Dangerous Insider Threat We Aren't Talking About

May 13, 2021 By James Christiansen In Netskope

The term “gig economy” refers to the increasingly common use of skilled freelance or otherwise independent workers on a short-term basis—often one project at a time. The availability of these sorts of gig workers has brought massive change to global work culture over the last few years.

Read Post