Cyberterrorism exists, but it is a concept that is difficult to pigeonhole. The story is similar to “physical terrorism,” where there are always shades of gray to consider – Was something an act of terrorism, or was it just an act of gratuitous malevolence? Many acts of terrorism are definable, and the same applies to cyberterrorism. However, the blurring of the lines is even more apparent with cyberterrorism.

It is easy to assume that security tools are effectively configured right out of the box, so to speak. This scenario is all too common and can lead to severe consequences, such as data breaches if an organization implements software solutions with improper security configurations.

It’s the small vines, not the large branches, that trip us up in the forest. Apparently, it’s no different in Healthcare. In November, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a Mitigation Guide aimed at the Healthcare and Public Health (HPH) sector.

Appknox continues to solidify its position as a top-tier vendor in application security testing, receiving prestigious recognition from Gartner as one of the leading vendors for Voice of the Customer. This recognition underscores Appknox's unwavering commitment to customer satisfaction, its consistent delivery of robust, developer-centric security solutions, and also its continued relevance in the ever-evolving landscape of application security.

In order for AppSec and ProdSec teams to stay on top of their growing attack surface, they must understand what parts of their attack surface are being continuously monitored and scanned, such as where, when, what, and how. This can include, but is not limited to.

In the face of economic headwinds, many companies are resorting to layoffs to help weather the storm. A study by Bloomberg News has found that since October 1, 2022 almost half a million employees worldwide across sectors have lost their jobs, with the tech sector accounting for nearly 150,000 of the 473,000 jobs cut. And new research by HackerOne found that in the last 12 months, 39% of companies surveyed have made security headcount cuts, and 40% plan to make then in the next 12 months.

The latest BSIMM report, now in its 14th iteration, contains information from more than 130 companies in eight verticals about what’s working, what isn’t, what’s changing about the risks and threat landscapes they’re facing, and how they’re responding to those changes. This annual report by the Synopsys Software Integrity Group helps organizations maximize the benefits and minimize the pain of a world run by software.

Enjoy highlights from GitGuardian's ethical hacking webinar with a friend from Snyk.

Do you know what percentage of your vendors are at higher risk of ransomware attack? Can you drill-in to see exactly who? Or more importantly, why? Or how effective your vendor program has been in reducing risk to the business over the last 12 months? In the ever-connected world of partners and suppliers, vendors and even more vendors, the line between ‘their risk’ and ‘your risk’ disappeared. And what security and compliance teams need more of is not more data, but insights.

Today, the human factor still plays a role in most cybersecurity incidents. Human error is involved in 74% of data breaches. It’s essential to shift towards designing human-centric controls that promote and facilitate the use of responsible cybersecurity practices among employees.