Databarracks launches Business Continuity Incident Response service
Incident Response assistance now included with Backup and Disaster Recovery services.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
RKVST launches new public attestation service for supply chain operations
Expansion of RKVST supply chain evidence management platform includes multi-tenancy, verified domain name and batch transactions, for easy-to-deploy supply chain visibility, provenance and governance.
CREST and Hack The Box launch CREST certification-aligned penetration testing training labs
New Hack The Box training pathway provides study support for CREST penetration testing exams.
CREST announces availability of Immersive Labs solutions for threat intelligence certifications
New labs give CREST members additional knowledge, skills and judgement ahead of certification.
8 Most Common Cloud Misconfigurations to Look Out For
Recently, Amazon accidentally exposed information on Amazon Prime Video viewing habits to the public. In addition, Thomson Reuters news and media company admitted that their servers had compromised 3TB of data by public-facing ElasticSearch databases. Well, these are the type of news we often see on the front page of cybersecurity forums. But if you dig a bit deeper, you will find that these data leaks are caused by misconfiguration, not cyber attacks.
Telephony fraud and risk mitigation: Understanding this ever-changing threat
Telephony fraud is a significant challenge. Companies of all sizes and industries are subjected to the malicious usage of voice and SMS with the intent of committing financial fraud, identity theft, denial-of-service, and a variety of other attacks. Businesses that fall victim to fraud can incur significant financial losses, irreparable damage to their reputation, and legal implications.
Five Steps Critical Manufacturing Can Take to Boost Cyber Resilience
The Fourth Industrial Revolution, with its accelerating pace of digitization and automation, means that organizations are becoming more dependent on data processing and connectivity to deliver value to their customers and stakeholders. Threat actors exploit this growing attack surface to achieve their aims: fraud, extortion, harassment, espionage, and other harms. They are smart, adaptive, and ruthless—and getting rich as a result.
Top Insights for Implementing a Low-Cost KYC Process
Banks have invested countless millions in Know Your Client and Know Your Customer verification, but they haven’t been able to use this knowledge beyond regulatory “check the box” procedures that can irritate clients and even cause some of them to switch banks. However, things don’t have to be this way.
Vulnerability Assessment vs. Penetration Test: A Case of Mistaken Identities
If you’ve been in the realm of penetration (“pen”) testing in any capacity for any length of time, you’ve probably experienced the conversations around inconsistent pen testing results across teams or vendors. This isn’t anything new in the pen testing world. The conversations probably ranged from friendly internal team banter to more serious discussions with external vendors on pen testing program success metrics. Is this a case of mistaken identity?
Trustwave Revamps Continual Threat Hunting Enabling Significantly More Hunts and Unique Threat Findings
Trustwave is relaunching its Advanced Continual Threat Hunt (ACTH) platform with a new patent-pending methodology that enables Trustwave researchers to conduct significantly more human-led threat hunts, resulting in a 3x increase in behavior-based threat findings. These discoveries might otherwise go undetected by current EDR tools.