Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

BitSight

Optimizing Returns from Your Cyber Risk Program

Jan 12, 2024 By BitSight In BitSight
In today’s economic environment, nearly every department in every organization across the globe is being challenged to do more with less. Meanwhile, digital footprints continue to grow and sprawl and cyber attackers look to take advantage of vulnerable infrastructure. Organizations need to assess how they can be more resourceful as they look to maintain a best-in-class cyber risk program and continue to meet business expectations.
View Video

Unlock the Power of Attack Surface Management with Insights from a KuppingerCole Analyst

Jan 12, 2024 By BitSight In BitSight
Join Vanessa Jankowski, SVP of Third Party Risk Management, and Greg Keshian, SVP of Security Performance Management, as they explore key findings from the 2023 KuppingerCole Leadership Compass Report for Attack Surface Management with John Tolbert, Director of Cybersecurity at KuppingerCole Analysts. In today's interconnected digital landscape, managing your exposure strategy for your infrastructure and your supply chain is paramount. They discuss strategies to fortify cybersecurity defenses and minimize risks.
View Video

The Security Performance Management Evolution: Interview with Bitsight's Greg Kesen & Dark Reading

Jan 12, 2024 By BitSight In BitSight
In this Dark Reading News Desk segment, Bitsight's Gregory Keshian discusses external attack surface management and security performance management. Greg reviews how the emerging discipline of security performance management (SPM) can better secure a company's attack surface. He offers guidance for how to mitigate problems and enumerates the major catalysts affecting attack surfaces, and how governance frameworks can be incorporated to ensure organizational compliance with state and federal laws.
View Video
bitsight

Shadow IT: Managing Hidden Risk Across Your Expanding Attack Surface

Jan 11, 2024 By Sabrina Pagnotta In BitSight
One study found that 65% of SaaS applications in use are unsanctioned. And 59% of IT professionals find SaaS sprawl challenging to manage. In other words, shadow IT risks are growing—but that’s just the tip of the iceberg when it comes to hidden risks across today’s expanding attack surface. Missed software patches, outdated certificates, and stealth malware are some examples. Many security teams still struggle to keep their networks safe from ever-growing digital supply chains.
Read Post
bitsight

ShadowIT, Hidden Risk, and the insights that drive action to reduce exposure

Jan 10, 2024 By Vanessa Jankowski In BitSight
The annual doctor wellness check always interests me. It’s generally the same routine every year: The doctor and I exchange pleasantries. She asks about any noticeable health changes while looking in my ears with that cool little penlight. If I’m lucky, she uses the mini-hammer to see how high my leg kicks after a gentle knee tap (I just love that for some reason). But it’s all a bit of a show, isn’t it?
Read Post
bitsight

Shadow IT, Hidden Risk, and the insights that drive action to reduce exposure

Jan 10, 2024 By Vanessa Jankowski In BitSight
The annual doctor wellness check always interests me. It’s generally the same routine every year: The doctor and I exchange pleasantries. She asks about any noticeable health changes while looking in my ears with that cool little penlight. If I’m lucky, she uses the mini-hammer to see how high my leg kicks after a gentle knee tap (I just love that for some reason). But it’s all a bit of a show, isn’t it?
Read Post
bitsight

Vendor Discovery: Automating identification of third party relationships

Jan 9, 2024 By Amanda Ravanesi In BitSight
As organizations increasingly rely on external vendors and enterprise buying patterns continue to decentralize, the challenge of managing risk associated with third parties becomes critical. Unfortunately, even uncovering vendor relationships within an organization can be a struggle, with over 80% of workers admitting to using non-approved SaaS applications. This ‘Shadow IT’ is not only frustrating; it introduces tremendous risk.
Read Post
bitsight

Data Insights on AgentTesla and OriginLogger Victims

Jan 9, 2024 By André Tavares In BitSight
AgentTesla is a Windows malware written in.NET, designed to steal sensitive information from the victim's system. It’s considered commodity malware given its accessibility and relatively low cost. Commodity malware poses a significant threat as it enables less sophisticated cybercriminals to conduct various types of cyberattacks without requiring extensive technical knowledge. AgentTesla has been a persistent and widespread threat since its emergence in 2014.
Read Post
bitsight

Bitsight Delivers Enhanced Analytics on IT Infrastructure Service Providers

Jan 8, 2024 By Derek Vadala In BitSight
As third party outsourcing and cloud services become commonplace for enterprise organizations, security leaders need to understand and assess the cybersecurity risks of businesses that they partner with for “technology infrastructure services.” Security leaders want accurate, up-to-date information about their infrastructure provider’s security policies, procedures, and program performance so they can better understand risks to their own organizations.
Read Post
Subscribe to BitSight

Copyright © 2024 OpsMatters™. All rights reserved.