%term

AI is cybersecurity's biggest threat

Jul 23, 2025 By Mandy Andress In Elastic

It’s also its greatest defense The biggest threat in our rapidly evolving cybersecurity landscape is artificial intelligence (AI).1 It’s also our greatest defense. Cybersecurity is a high-stakes game where everything is on the line and decisions have to be made fast. For years, cybersecurity strategy has been about increasing visibility to make informed decisions from vast amounts of data.

Read Post

Elastic

Read more about AI is cybersecurity's biggest threat

Why Most Businesses Fail at GDPR & How you can win

Jul 23, 2025 By VISTA InfoSec In VISTA InfoSec

60% of companies think they’re GDPR-compliant… but they’re not. And when the audits or complaints hit, it’s already too late. The average GDPR fine so far has exceeded €1.5 million for large corporations, with smaller businesses also facing substantial penalties. Nearly 70% of companies lack a comprehensive data inventory, leaving them vulnerable. Only 50% of organizations have a formal breach response plan in place.

View Video

VISTA InfoSec

Read more about Why Most Businesses Fail at GDPR & How you can win

ServiceNow Integrations Overview - Tanium Tech Talks #135

Jul 23, 2025 By Tanium In Tanium

Customers rave about the long-standing integrations between Tanium and ServiceNow. Get an insider's overview on today's special part one cross-over episode with the guys from ServiceNow Beers with Engineers show as we discuss the benefits of these two strategic platforms better together.

View Video

Tanium

Read more about ServiceNow Integrations Overview - Tanium Tech Talks #135

Still Trusting Automated Patches Blindly? Think Again

Jul 23, 2025 By Yonatan Arbel In JFrog

JounQin’s npm account, the maintainer of popular packages such as eslint-config-prettier, was compromised in a phishing attack. The attackers used the breached credentials to publish six malicious versions of eslint-config-prettier, along with three additional infected packages tied to the same account. In total, the compromised packages see roughly 78 million weekly downloads. Notably, the account had publishing rights for packages with a combined weekly download count of 180 million!

Read Post

JFrog

Read more about Still Trusting Automated Patches Blindly? Think Again

Responding to ToolShell: A Microsoft SharePoint zero-day vulnerability

Jul 23, 2025 By Marina Kvitnitsky In CyberArk

A newly discovered exploit, “ToolShell,” is fueling a wave of targeted attacks against on-premises Microsoft SharePoint servers. The zero-day exploit chains two vulnerabilities—CVE-2025-53770, a remote code execution (RCE) vulnerability and CVE-2025-53771, a spoofing vulnerability that allows attackers to bypass authentication. When combined, this critical zero-day vulnerability gives attackers persistent unauthenticated remote access to on-premises SharePoint servers.

Read Post

CyberArk

Read more about Responding to ToolShell: A Microsoft SharePoint zero-day vulnerability

From Frameworks to Defence: Using Australia's ISM and Essential Eight Strategically

Jul 23, 2025 By Trustwave In Trustwave

Aligning with the Australian Government’s Information Security Manual (ISM) and the Essential Eight (E8) remains a foundational step for organizations working with or alongside government agencies. Trustwave’s Essential Eight Control Effectiveness Assessment is a great first step, but relying solely on compliance as a goal can leave security programs stagnant.

Read Post

Trustwave

Read more about From Frameworks to Defence: Using Australia's ISM and Essential Eight Strategically

Building Resilience Against Modern Cyber Threats

Jul 23, 2025 By [email protected] In JUMPSEC

That was the message from major UK retailers like Marks & Spencer and the Co-op during recent Parliamentary hearings on cyber resilience. Their stories weren’t hypothetical, they were recovering from real-world incidents involving identity compromise, supply chain breaches, and operational disruption that cost hundreds of millions of pounds. The lesson is clear. Prevention is necessary, but it is no longer enough.

Read Post

JUMPSEC

Read more about Building Resilience Against Modern Cyber Threats

Webinar Building Cyber Resilience

Jul 23, 2025 By JUMPSEC In JUMPSEC

Matt Lawrence, Director of Cyber Security Operations, shared his insights on why cyber prevention is table stakes. Why cyber resilience is the goal. What happens after an attacker gets in?How do we limit the blast radius?Can we continue to operate even during a breach? Why and how you need to build cyber resilience against modern cyber threats.

View Video

JUMPSEC

Security

Read more about Webinar Building Cyber Resilience

The Importance of Multi-Factor Authentication

Jul 23, 2025 By Keeper Security In Keeper

Passwords alone aren’t enough to keep your accounts safe. Multi-Factor Authentication (MFA) adds an extra layer of security – even if hackers have your password. Watch this short video to learn what MFA is, why it’s important and the best options to protect your data.

View Video