Latest News

Day in the Life of a CISO: A Vendor Breach: Assessing Our Exposure

Dec 19, 2024 By SecurityScorecard In SecurityScorecard

It’s 10:47 PM, and I’m halfway through binge-watching the latest must-see series when my phone buzzes. A notification from SecurityScorecard has my attention instantly: one of our critical vendors has just reported a breach. I hit pause, grab my laptop, and dive straight in. As much as I’d love to ignore it for a few hours, cyber risks don’t come with snooze buttons. Before panic sets in, I’m logging into the SecurityScorecard platform.

Read Post

SecurityScorecard

Read more about Day in the Life of a CISO: A Vendor Breach: Assessing Our Exposure

Threat-led pen testing and its role in DORA compliance

Dec 19, 2024 By Mark Nicholls In Redscan

enabling businesses to proactively uncover vulnerabilities that could otherwise be exploited by threat actors. In this article, we set out what threat-led pen testing is, how it relates to the Digital Operational Resilience Act (DORA) and the testing requirements included as part of the new EU regulation.

Read Post

Redscan

Read more about Threat-led pen testing and its role in DORA compliance

Making CIS Benchmarks Part of your Vulnerability Management Strategy

Dec 19, 2024 By Scott Kuffer In Nucleus

While vulnerability management is one of the few preventative practices in security, vulnerability patching is still a reactive process. It’s a continuous cycle of discovery, vendors releasing patches, and remediation teams applying those patches. What if there was a way to build in some proactivity to this endless reactive spiral?

Read Post

Nucleus

Read more about Making CIS Benchmarks Part of your Vulnerability Management Strategy

Is Your Hospital Sharing Patient Data with Facebook? A Guide for Security and Privacy Teams

Dec 19, 2024 By Feroot In Feroot

Recent lawsuits have revealed a critical privacy concern for healthcare providers – the sharing of patient data with Facebook through tracking pixels. We wrote this article to help your security and privacy teams assess their risk, identify key stakeholders, and understand the urgency of this issue.

Read Post

Feroot

Read more about Is Your Hospital Sharing Patient Data with Facebook? A Guide for Security and Privacy Teams

This year's resolution: remove nosey apps from your device

Dec 19, 2024 By Emma McGowan In Avast

Some apps are plain greedy—like a stranger you invite for a meal who insists on ordering everything expensive on the menu. Except instead of a rib eye, pasta, and chocolate soufflé, it’s your data they’re collecting. Here’s what you can do to set some boundaries and reclaim your privacy in 2025.

Read Post

Avast

Read more about This year's resolution: remove nosey apps from your device

Weekly Cyber Security News 19/12/2024

Dec 19, 2024 By Kevin In ionCube24

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Quite a swish phishing attack. Someone, somewhere will inevitably fall for it though.

Read Post

ionCube24

Read more about Weekly Cyber Security News 19/12/2024

Is Shein safe? Cybersecurity tips for fashion lovers

Dec 19, 2024 By Nyrmah J. Reina In Avast

Shein hauls have taken social media feeds by storm, but is the website as safe as it’s stylish?

Read Post

Avast

Read more about Is Shein safe? Cybersecurity tips for fashion lovers

First ever Magic Quadrant for Email Security Platforms by Gartner

Dec 19, 2024 By Egress In Egress

In cybersecurity, email has always been a critical concern. However, we feel the new 2024 Gartner Magic Quadrant for Email Security Platforms has signaled a shift in how we approach email protection. We believe this new Magic Quadrant encompasses a broader spectrum of email security providers to reflect the evolving threat landscape and the need for more integrated solutions.

Read Post

Egress

Read more about First ever Magic Quadrant for Email Security Platforms by Gartner

FedRAMP Equivalent vs FedRAMP Authorized

Dec 19, 2024 By Teresa Rothaar In Keeper

The Federal Risk and Authorization Management Program (FedRAMP) is a U.S. government program designed to standardize and streamline the assessment, authorization and continuous monitoring of cloud computing services for federal agencies. It establishes a consistent set of security requirements for Cloud Service Providers (CSPs) to ensure their products meet the rigorous security and privacy needs of the federal government.

Read Post

Keeper

Read more about FedRAMP Equivalent vs FedRAMP Authorized

How to develop and secure Cloud apps?

Dec 19, 2024 By SecuritySenses In SecuritySenses

How can businesses build cloud applications that are both reliable and secure? Organizations face a dual challenge: they must develop scalable solutions and protect sensitive data. As more businesses migrate to cloud-based infrastructures, they must adopt strong cloud solutions development and security practices. These steps help them maintain operations and preserve customer trust. In this article, we guide you through proven strategies and best practices. We show how you select the right architecture and implement advanced security measures.

Read Post

SecuritySenses

Read more about How to develop and secure Cloud apps?

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

Day in the Life of a CISO: A Vendor Breach: Assessing Our Exposure

Threat-led pen testing and its role in DORA compliance

Making CIS Benchmarks Part of your Vulnerability Management Strategy

Is Your Hospital Sharing Patient Data with Facebook? A Guide for Security and Privacy Teams

This year's resolution: remove nosey apps from your device

Weekly Cyber Security News 19/12/2024

Is Shein safe? Cybersecurity tips for fashion lovers

First ever Magic Quadrant for Email Security Platforms by Gartner

FedRAMP Equivalent vs FedRAMP Authorized

How to develop and secure Cloud apps?

Monthly Archive

Follow Us