Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Gramm-Leach-Bliley Act (GLBA) applies to many types of financial institutions, like banks, savings and loans, credit unions, insurance companies and securities firms. It requires those organizations to explain their information-sharing practices to their customers and to protect sensitive data. On November 15, 2022, The FTC announced a six-month extension for companies to comply with data security provisions in the GLBA. The new deadline is June 9, 2023.

Patch management is an essential prerequisite for continuous cyber risk mitigation. But it’s not getting any easier. That makes finding the right security partner an essential task for any IT operations leader. But this too is fraught with difficulty in a market saturated with vendors. This is where independent market analysis can be invaluable.

Custom Damage Types provide users with the ability to add specific types of damages that will be taken into consideration as part of the modeling process when quantifying financial exposure. This means, organizations now have a unified view of costs that consider company specific data alongside out of the box modeled costs. Users will need to provide a range of possible costs and create a scenario that triggers assigned costs.

The rise in the frequency and intensity of cybercrime has seen many organizations turning to cyber insurance to help protect against the extent of financial losses following a cyberattack. While identifying and adopting a comprehensive cybersecurity strategy is crucial, even the most secure networks can still be exploited by adept hackers. According to reports, the global cyber insurance market is projected to grow from $11.9 billion in 2022 to $29.2 billion by 2027.

Security automation is an increasingly critical element in optimizing enterprise cybersecurity postures. Today, Torq announced its users are executing more than 1,000,000 daily security automations using our security automation platform – a major milestone that underlines the traction and importance of unifying today’s complex security stacks.

A new paper outlines the impact of fraud on customer trust. According to the study paper “Fraud vs.

As we approach the one-year anniversary of the Log4Shell vulnerability (CVE-2021-44228), Arctic Wolf Labs decided to look back on the impact that this critical vulnerability had (and continues to have) on organizations and assess the long tail of activity we’ve seen with threat actors continuing to use the exploit.

As an Airbnb host, you have a lot to manage. Reservations, cleaning, finances – the list goes on and on. But one of the most important parts of being a host is keeping your guests, and your property, safe and secure.

The Sysdig Threat Research Team (TRT) recently discovered threat actors leveraging an open source tool called PRoot to expand the scope of their operations to multiple Linux distributions and simplify their necessary efforts. Typically, the scope of an attack is limited by the varying configurations of each Linux distribution. Enter PRoot, an open source tool that provides an attacker with a consistent operational environment across different Linux distributions, such as Ubuntu, Fedora, and Alpine.

You sell software online, and a customer buys and uses it. Sounds simple, right? However, there is more to selling software. They need to trust that it has come from you and not some third party claiming to be you. Apart from that, they must also know that the software has not been tampered with since its creation. So how do you create that level of trust? Software Publisher Certificates is your answer.