Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
%term
Why traditional IAM tools are now obsolete
What do some of the top breaches in recent history have in common? They were all targeted through identities, despite all having credential-based cybersecurity tools in place. Join Larry Chinksi, SVP of Corporate IAM Strategy at One Identity, for a session on why traditional IAM tools are not enough to protect organizations in today’s ever-evolving identity landscape.
The Cybersecurity and Geopolitical Discussion - Vote UK - Episode 23
To find out, check out Episode 23 of the Cyjax Geopolitical and Cybersecurity Podcast. Here’s a summary of what’s on the table…
PCI DSS Penetration Testing Guide
The Payment Card Industry Data Security Standard (PCI DSS) is a global cornerstone for safeguarding cardholder data. PCI DSS version 4.0, the most recent iteration, emphasises a dynamic, risk-based approach to security, compelling organisations to tailor their controls to their unique environments. PCI DSS penetration tests are crucial for meeting and maintaining security standards.
Modern CISO Panel: Overcoming Challenges and Finding Success
Devo assembled a panel of CISOs for an engaging roundtable discussion on a variety of important topics for CISOs and other senior-level security professionals. CISOs everywhere are facing a growing number of threats, from automation and AI to budget constraints, and more. This panel of seasoned CISOs dives into the biggest challenges facing the position, and how they're overcoming those challenges in their own organizations.
What Are the Benefits of FedRAMP Certification in 2024?
FedRAMP, the federal risk and authorization management program, is a comprehensive and structured way to develop a security – mostly cybersecurity – position when working with the federal government. It’s a framework meant for contractors and third-party businesses that handle information for the government and who need to keep it secure. The question is, if you’re a cloud service provider, what are the benefits of implementing FedRAMP?
Tech Talk: Abusing ESC13 from Linux
This is a Bulletproof Tech Talk article: research from our penetration testing team covering issues, news, and tech that interests them. It’s more technical and in-depth that our usual blog content, but no less interesting. In the complex landscape of Active Directory, ensuring secure and appropriate access is a constant challenge. Recently another "ESC" technique has been released which is known as ESC13.
Unlocking the Full Potential of GitGuardian: Empowering Developers In Code Security
Improve workflows with collaborative incident management to minimize vulnerabilities and enhance productivity with GitGuardian while empowering developers via ggshield.
5 Key Insights From a Modern CISO Panel
Devo recently brought together an esteemed panel of modern CISOs to discuss the issues that matter most to them and their peers. Included in the panel were: It was a lively discussion that covered important topics around the evolution of one of the top security executive roles. Here are five of the key takeaways that bubbled up from the hour-long CISO panel.
Learn about ISO 27001 Penetration Testing and its requirements
ISO 27001, the internationally recognised standard for information security management systems (ISMS), provides a framework for organisations to protect their valuable information assets. Penetration testing is crucial in preventing data breaches and maintaining the business’s reputation. ISO 27001 strongly recommends it as a critical tool for assessing an organisation’s security posture and ensuring compliance with control A.12.6.1, which focuses on managing technical vulnerabilities.