Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Cybersecurity Maturity Model Certification (CMMC) 2.0 is a compliance requirement that all Department of Defense (DoD) Contractors (aka, the Defense Industrial Base) will soon have to meet. See my blog Why is CMMC a Big Deal? for more information about the legal implications of CMMC. The CMMC official mandate is expected to be released from rulemaking in the first quarter of 2024 and be in full implementation in the first quarter of 2026.

When I bring up the topic of security ratings to my CISO colleagues, I typically get one of two reactions. The first half complains about misattribution of issues along with reporting fix times (although accuracy has improved). But the other half understand how to leverage this technology to their benefit to make their jobs easier and their organizations safer. Read below to get under the hood of how to leverage the evolving application of this technology to secure your supply chain.

Business Email Compromise (BEC) is one of the fastest-growing and financially-damaging cybercrimes. It has consistently led the way in cybercrime losses in recent years. According to the 2022 FBI Internet Crime Report, the FBI received 21,832 Business Email Compromise (BEC) complaints, with estimated losses totalling more than $2.7B. Data shows a 38% increase in cybercrime as a service targeting business email between 2019 and 2022.

An application risk assessment is the process of evaluating and understanding the security risks associated with an application. This information is used to help organizations make better decisions about how to protect their applications from potential attacks. By examining factors such as the number of vulnerabilities and the time needed to patch them, they are able to estimate the possibility of an attack on their application.

Major incidents like cyber attacks, terrorism, and pandemics are likely in the making right now but it doesn’t mean they’re inevitable. Learning from past incidents, asking the hard ‘what ifs’, and helping businesses build organizational resilience is always top of mind for security leader Sarah Armstrong-Smith.

Quantum computing might sound alien and strange - but it’s a revolutionary new technology. It’s a novel way to calculate using the principles of fundamental physics and to find solutions to very complicated problems very quickly. We have come a long way since the abacus; now, almost all of our complex calculations are done with digital computers. Looking to the future, quantum computers are ready to take us to another dimension of computing.

As Cybersecurity Awareness Month winds down and you prepare for Halloween festivities like trick-or-treating and pumpkin carving, don't forget to protect against real-world monsters: artificial intelligence-driven cyber threats. Here are a few steps that may help ward off such threats like garlic protects against Dracula: Taking precautionary steps against them may keep the real monsters at bay!

Over the past decade, ThreatQuotient has dedicated itself to the task of transforming obscure digital threat data into actionable intelligence. Throughout this period, we’ve earned the trust of our partners and customers, forging strong relationships with each of them. Each team we’ve encountered in the field has brought unique insights, skill sets, perspectives, and ideas, significantly influencing our approach and perception of the ever-evolving threat landscape.

This month's release rollup includes product updates and enhancements from Egnyte such as the introduction of the Egnyte Document Room, E2E Connector, and Co-editable links for Google files. Below is a summary of these and other new releases. Visit the linked articles for more details. ‍ Featured Platform Enhancements and Releases Egnyte Document Room: The Egnyte Document Room is a secure hub for sharing sensitive information.

In terms of financial and reputational impact, a data breach is one of the most serious security challenges an organisation can experience. Kroll’s 2021 Data Breach Outlook report states that the pattern of data attacks becoming broader and deeper during the pandemic has continued, even during the recovery phase. With the volume of data breaches continuing to increase, it is essential that organisations take steps to prepare their incident response before they are affected by a breach.