%term

Securing the Future: Extending Privileged Access to IoT and OT Devices through Strategic Partnership

Oct 1, 2024 By Tyler Gannon In Device Authority

In today’s hyperconnected world, the proliferation of Internet of Things (IoT) and Operational Technology (OT) devices has dramatically transformed industries, driving innovation, efficiency, and automation. However, as organizations continue to adopt these devices, the security landscape has become increasingly complex. Traditional IT security measures often fall short of safeguarding these critical assets, leaving them vulnerable to cyber threats.

Read Post

Device Authority

Read more about Securing the Future: Extending Privileged Access to IoT and OT Devices through Strategic Partnership

How to Set Up and Run a Workable AI Council to Govern Trustworthy AI

Oct 1, 2024 By Stephen Boyer In BitSight

As in many companies around the world, Bitsight leadership believes that adoption and innovation through the use of artificial intelligence (AI) capabilities is crucial to the future of our company. From the top down, our employees are continually on the hunt for ways to leverage AI to improve business outcomes and customer productivity.

Read Post

BitSight

Read more about How to Set Up and Run a Workable AI Council to Govern Trustworthy AI

RCE Zero Day Vulnerabilities in CUPS Put Linux Systems at Risk

Oct 1, 2024 By Vivek Chanchal In Indusface

A new series of vulnerabilities in the Common Unix Printing System (CUPS) threatens numerous Linux systems, potentially allowing remote code execution (RCE). This affects a wide range of platforms, including Debian, Red Hat, SUSE and macOS. The vulnerabilities—tracked as CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177—are believed to endanger over 76,000 devices, with estimates suggesting up to 300,000 could be affected.

Read Post

Indusface

Read more about RCE Zero Day Vulnerabilities in CUPS Put Linux Systems at Risk

A New Era of Machine Identity Security: Welcome Venafi to CyberArk

Oct 1, 2024 By Matt Cohen In CyberArk

We are thrilled to announce that we have completed the acquisition of Venafi, a recognized leader in machine identity management. This strategic move aligns with our commitment to not just protecting human identities but expanding our capabilities for securing the rapidly growing world of machine identities.

Read Post

CyberArk

Read more about A New Era of Machine Identity Security: Welcome Venafi to CyberArk

NIST proposed password updates: What you need to know

Oct 1, 2024 By 1Password In 1Password

The latest draft of the National Institute of Standards and Technology (NIST) password guidelines aims to simplify password management by eliminating outdated practices and providing clearer guidance on best practices.

Read Post

1Password

Read more about NIST proposed password updates: What you need to know

SaaS Security: Understanding Modern Threats and How to Guard Against Them

Oct 1, 2024 By Lookout In Lookout

The rise of cloud-based software applications has changed the way many companies operate. Leveraging SaaS platforms allows organizations to streamline their workflows and better accommodate remote and hybrid workforces. However, spreading your data throughout the cloud can leave it vulnerable — unless you have strong SaaS security practices in place.

Read Post

Lookout

Read more about SaaS Security: Understanding Modern Threats and How to Guard Against Them

Emerging Security Issue: HashiCorp Vault SSH CVE-2024-7594

Oct 1, 2024 By Emma Zaballos In CyCognito

CVE-2024-7594 is a severe unrestricted authentication issue affecting HashiCorp’s Vault’s SSH secrets engine. The National Institute of Standards and Technology (NIST) has not yet evaluated this vulnerability’s CVSS score but HashiCorp assigned it a base score of 7.5 (high). An outside security researcher, Jörn Heissler, discovered an issue with the valid_principals field in Vault’s SSH secrets engine.

Read Post

CyCognito

Read more about Emerging Security Issue: HashiCorp Vault SSH CVE-2024-7594

Organizational Resiliency in Healthcare: Preparing for System Downtime #shorts #healthcare

Oct 1, 2024 By Rubrik In Rubrik

Building organizational resilience is critical in healthcare. But it's not just about preventing cyberattacks—it's about ensuring patient care continues even when systems go down. Practicing cyber resilience through well-defined downtime procedures and understanding the critical outcomes for patients is essential. As Anahi Santiago, Chief Information Security Officer at ChristianaCare, emphasizes, knowing the path to achieve these outcomes, even in a crisis, is key to maintaining high standards of care.

View Video

Rubrik

Read more about Organizational Resiliency in Healthcare: Preparing for System Downtime #shorts #healthcare

Building a Cyber Resilient Healthcare System with Anahi Santiago, CISO at ChristianaCare

Oct 1, 2024 By Rubrik In Rubrik

Welcome to the Data Security Decoded podcast, brought to you by Rubrik Zero Labs. In each installment, we discuss cybersecurity with thought leaders and industry experts, and get their take on trends, themes, and where they see the sector going next. This is a must-listen for security and IT leaders looking to better understand trends shaping data security and how they can achieve cyber resilience.

View Video