%term

Vanta Delivers: Introducing New Products for the Future of Governance, Risk and Compliance (GRC)

Sep 5, 2024 By Vanta In Vanta

Empowering GRC teams to make their security and compliance continuous and automated. Announcing Report Center, enhancements to Vendor Risk Management (VRM), and market-leading milestones for integrations and frameworks.

Read Post

Vanta

Read more about Vanta Delivers: Introducing New Products for the Future of Governance, Risk and Compliance (GRC)

What Is the Principle of Least Privilege?

Sep 5, 2024 By miniOrange In miniOrange

Discover how the principle of least privilege enhances security by limiting access to essentials, and learn why least privilege access control is crucial for protection.

Read Post

miniOrange

Read more about What Is the Principle of Least Privilege?

Cryptominers in the Cloud

Sep 5, 2024 By Oshrat Nir In ARMO

Over the past decade, Bitcoin’s value has increased more than 200-fold. Similarly, other cryptocurrencies have also seen significant growth, prompting many individuals to engage in mining for profit. This rise in cryptocurrency mining has led to a substantial increase in the use of cryptominers. As organizations increasingly migrate their computing workloads to the cloud for various benefits, attackers have shifted their focus to these cloud resources for cryptocurrency mining.

Read Post

ARMO

Read more about Cryptominers in the Cloud

CVE-2024-20439 & CVE-2024-20440: Critical Cisco Smart Licensing Utility Vulnerabilities

Sep 5, 2024 By Andres Ramos In Arctic Wolf

On September 4, 2024, Cisco released fixes for two critical vulnerabilities in Cisco Smart Licensing Utility (CSLU), a tool used to manage licenses across Cisco products in a network. Cisco has stated that these vulnerabilities are only exploitable if the Smart Licensing Utility is actively running and has been started by a user. Note: These vulnerabilities do not impact Cisco’s Smart Software Manager On-Prem or Satellite.

Read Post

Arctic Wolf

Read more about CVE-2024-20439 & CVE-2024-20440: Critical Cisco Smart Licensing Utility Vulnerabilities

Cybersecurity Sessions S03E01: "Bot's the Story, Morning Glory?" Oasis Ticket Scalper Bots

Sep 5, 2024 By Netacea In Netacea

Netacea bot experts discuss the challenges around the Oasis reunion tour ticket sales, focusing on the issues caused by bots and scalping in high-demand events. The discussion explores the technical difficulties of managing ticket sales, the tactics used by bot operators to secure tickets, and the broader implications for the industry. The team also discuss why current methods to prevent bot activity often fail and why a multi-pronged strategy combining real-time detection, post-transaction analysis, and clamping down on secondary markets is critical.

View Video

Netacea

Read more about Cybersecurity Sessions S03E01: "Bot's the Story, Morning Glory?" Oasis Ticket Scalper Bots

New 1Password SIEM integrations with Rapid7, Blumira, and Stellar Cyber

Sep 5, 2024 By Clarence Wong In 1Password

Spend less time collating security reports and investigating security issues by creating integrated, customizable dashboards with data from 1Password. The new Rapid7, Blumira, and Stellar Cyber integrations for 1Password allow you to monitor potential risks around company data or credentials stored within 1Password.

Read Post

1Password

Read more about New 1Password SIEM integrations with Rapid7, Blumira, and Stellar Cyber

Dynamic Application Security Testing (DAST): An Overview

Sep 5, 2024 By Subho Halder In Appknox

Dynamic Application Security Testing (DAST) is an advanced testing method that tests the production environment and analyzes application security at runtime. This type of black box testing identifies real-world vulnerabilities externally without much need for insights into the product provenance of any single component. By simulating real-world attacks in your system, DAST identifies critical security gaps that other vulnerability assessments and static methods might miss.

Read Post

Appknox

Read more about Dynamic Application Security Testing (DAST): An Overview

GRC Group Acquires Pentest People

Sep 5, 2024 By Pentest People In Pentest People

The GRC Group ("GRC"or the "Group"), a leading provider of software and tech-enabled services to manage business risks and regulatory compliance, has today acquired Pentest People Ltd (“Pentest People”).

Read Post

Pentest People

Read more about GRC Group Acquires Pentest People

Key considerations for digital asset startups: Custody and beyond

Sep 5, 2024 By Fireblocks In Fireblocks

Blockchain technology continues to grow in prominence, and as it expands, a wide range of businesses are looking to develop digital asset products. At the same time, many startups are launching with digital assets at the center of their businesses. If you are running a digital asset business or building a blockchain product, it’s important to consider what type of custody management solution will best support your business.

Read Post

Fireblocks

Read more about Key considerations for digital asset startups: Custody and beyond

Powering the future of GRC: New capabilities bring continuous visibility and automation to GRC teams

Sep 5, 2024 By Vanta In Vanta

Security is a top buying requirement for businesses today. In fact, two-thirds of respondents to our State of Trust survey say that customers, investors, and suppliers are increasingly looking for proof of security and compliance. As concerns around in-house security practices, third-party tools, and access to customer data grow, customer expectations for trust continue to rise. ‍

Read Post

Vanta

Read more about Powering the future of GRC: New capabilities bring continuous visibility and automation to GRC teams

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Vanta Delivers: Introducing New Products for the Future of Governance, Risk and Compliance (GRC)

What Is the Principle of Least Privilege?

Cryptominers in the Cloud

CVE-2024-20439 & CVE-2024-20440: Critical Cisco Smart Licensing Utility Vulnerabilities

Cybersecurity Sessions S03E01: "Bot's the Story, Morning Glory?" Oasis Ticket Scalper Bots

New 1Password SIEM integrations with Rapid7, Blumira, and Stellar Cyber

Dynamic Application Security Testing (DAST): An Overview

GRC Group Acquires Pentest People

Key considerations for digital asset startups: Custody and beyond

Powering the future of GRC: New capabilities bring continuous visibility and automation to GRC teams

Monthly Archive

Follow Us