Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Internet of things (IoT) application and rollout has been rapid, disrupting and streamlining processes in a variety of industries, However, it has created a situation where “today’s IoT security is lightweight compared to enterprise application security” , creating a need for IoT security solutions than many of the insufficient and fragmented options.

The Internet of Things (IoT) is increasingly becoming a part of our homes, businesses, and public services with a wide range of uses from ‘smart’ home appliances to complex industrial tools. With the increasing adoption and application of IoT devices, they have also become increasingly targeted by malicious actors looking to take advantage of opportunities to access them.

Healthcare fraud, waste, and abuse cost taxpayers billions of dollars. According to a report published in BusinessWire, the global healthcare fraud analytic market may reach US$ 5.69 billion by 2027. Detection of fraud leads to hefty fines, criminal proceedings, and incarceration for the concerned individuals in organizations. 2021 saw a peaking of medical fraud and abuse, according to the latest report of the HIPAA journal.

The goal of a SOC 2 audit is to evaluate and verify how a service provider, whether an IT provider, Software-as-a-Service (SaaS) platform, or other outsourced solution, handles sensitive customer data. Companies are pursuing SOC 2 certification because it is an industry-recognized way to show customers that their security program is worthy of their trust. When thinking about how to prepare for a SOC 2 audit, cyber risk assessment and penetration testing should be on your list.

A selection of this week’s more interesting vulnerability disclosures and cyber security news. For a daily selection see our twitter feed at #ionCube24. Shame those mostly likely to be impacted won’t upgrade if they are still on ancient WordPress installs…

Imagine a nightmare where you are in a dark tunnel and every minute without reaching the light costs a fortune. You try everything to find the exit, but there is nothing you can do. The incarnation of these nightmares is called “Major Incidents” in the cyber security field. These nightmares are likely to become a reality for managers of many organizations today, where companies manage almost all their business processes with digital solutions.

Third-party breaches have become a common phenomenon in the modern cyber threat landscape. In 2021, the Ponemon Insitute estimated that 51% of organizations were impacted by third-party breaches. The 2022 report found that data breach damage costs associated with third-party vulnerabilities rose from US$ 4.33 million in 2021 to US$ 4.55 million in 2022.

Let’s face it, information technology experts are usually not enthusiastic writers. So when it comes to creating an executive report, cybersecurity staff aren’t exactly pushing each other over to get this exciting writing task complete. Instead, it keeps getting delayed, day by day, until the night before its submission. Many get stuck on the executive summary section, obsessing over its perfection.

For the newest instalment in our series of interviews asking leading technology specialists about their achievements in their field, we’ve welcomed Kurt Rohloff, Co-founder and Chief Scientist, of Duality. Prof. Rohloff is the founding architect of the PALISADE open-source homomorphic encryption library and co-founder of the HomomorphicEncryption.org industry consortium.