Ask the Experts: The State of Industrial Cybersecurity
What's the state of industrial cybersecurity today? Tripwire asked cybersecurity professionals to weigh-in on the current threats and challenges of securing critical infrastructure.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Security
NetWalker Ransomware - What You Need to Know
NetWalker (also known as Mailto) is the name given to a sophisticated family of Windows ransomware that has targeted corporate computer networks, encrypting the files it finds, and demanding that a cryptocurrency payment is made for the safe recovery of the encrypted data.
5 Strategies to Mitigate Business Risk During Coronavirus
Business risk in the United States may be higher during the novel coronavirus pandemic than at any time in our generation, making risk management a must. What are your strategies for risk mitigation—not only in your enterprise but up and down your supply chain—amidst COVID-19 disease outbreaks? Business interruption is a growing concern right now.
How malware mimics the spread of COVID-19
It’s a weird time to be alive. Millions of people globally are living under government lockdowns, as we collectively endure the COVID-19 pandemic. COVID-19 has brought to light some fundamental truths about humanity, including our deep-seated need for social interactions. It has also highlighted how reliant we are on critical infrastructure like our healthcare systems and internet connections, both of which are currently strained.
Forrester's State of Application Security, 2020: Key Takeaways
In The State of Application Security, 2020, Forrester predicts application vulnerabilities will continue to be the most common external attack method. Because of this, organizations are urged to continue testing early in the software development life cycle (SDLC), implementing auto-remediation for security vulnerabilities, and shoring up production protections.
Expanding the IBM & Sysdig Relationship to Manage Cloud Security Risk
Today, we are pleased to announce the expansion of Sysdig’s relationship with IBM to extend cloud security governance with IBM Cloud Pak for Multicloud Management. Through a new OEM agreement, Sysdig Secure and the Sysdig Secure DevOps Platform are now available through IBM and IBM Business Partners. The combined IBM and Sysdig offering delivers centralized cloud visibility, governance and automation with in-depth container security intelligence for Red Hat OpenShift.
Shining a Light on the Dark Web
Ziv Mador, VP of Security Research at Trustwave SpiderLabs, discusses why understanding the dark web is beneficial to enterprises and how cybercriminals on the dark web operate.
NoSQL-based stacks exposed to the Internet
NoSQL technology has become more popular in recent years thanks to the development of new open-source NoSQL databases that are relatively easy to install, use and integrate with web frameworks. An example of one of those popular frameworks on the internet is known as MEAN (MongoDb, Express.js, Angular.js, Node.js). These NoSQL frameworks have become very popular for things such as content management, catalogs and big data in general.
What is a Brute Force Attack?
A brute force attack is a popular cracking method that involves guessing usernames and passwords to gain unauthorized access to a system or sensitive data. While a relatively simple, brute force methods continue to have a high success rate and account for over 80% of attacks on web applications.
Veracode Corporate Video
Veracode is a SaaS-based application security (AppSec) company founded in 2006 by a group of skilled computer hackers. The hackers, including Chris Wysopal, realized that software was very vulnerable to cyberattacks. Over the years, Veracode has established industry-leading technology that helps developers and security professionals find and fix vulnerabilities in their software. Together with Veracode, customers can confidently secure their code.