Attack surface management (ASM) has taken center stage in cybersecurity discussions in recent years. The key factor that sets ASM apart from traditional vulnerability management is its more informed and intelligent response to threats – “the attacker’s point of view” so to speak. What makes this possible is security validation. That’s what we focus on in this article.

Cato Networks has recently released a new data loss prevention (DLP) capability, enabling customers to detect and block documents being transferred over the network, based on sensitive categories, such as tax forms, financial transactions, patent filings, medical records, job applications, and more. Many modern DLP solutions rely heavily on pattern-based matching to detect sensitive information. However, they don’t enable full control over sensitive data loss.

The NIST Cybersecurity Framework is a set of guidelines and best practices designed to help organisations better manage and reduce cybersecurity risk. It stands for the National Institute of Standards and Technology Cybersecurity Framework (CSF). The Framework was developed by NIST, part of the U.S. Department of Commerce, and first published in 2014, following an executive order by then President, Barack Obama which focused on improving the cybersecurity of critical infrastructure in the United States.

Trustwave today added Threat Intelligence as a Service (TIaaS) to its offensive security portfolio to help organizations better understand the threats they face and provide detailed knowledge and mitigations of their security weaknesses. Trustwave TIaaS provides organizations with timely, contextualized, and prioritized threat intelligence based on factors relevant to their operations, enabling them to make risk-based and threat-informed decisions which benefit their organizations.

In recent years, the popularity of Kubernetes deployments has surged—as has the prevalence of security risks associated with the technology. Red Hat’s State of Kubernetes Security for 2023 reveals that 67 percent of organizations have encountered delays in application deployments due to Kubernetes-related security issues. Additionally, 37 percent have experienced significant revenue or customer losses stemming from Kubernetes security incidents.

The open-source world narrowly escaped a sophisticated supply-chain attack that could have compromised countless systems. A stark reminder of the necessity of vigilant monitoring and rigorous vetting within the open-source ecosystem to maintain trust and security.

Forward Networks won the prestigious Gold designation for Cloud Computing Security at the 2024 Globee Awards for Cybersecurity. This recognizes Forward Networks' commitment to transforming how SecOps, CloudOps, and NetOps teams operate by creating a single source of truth for engineers with actionable insights that empower them to regain control over their networks.

In security, we are very used to talking about features and functions in the tools we use.

As the digital landscape continues to evolve, new cyber threats continue to emerge. It’s imperative to have safeguards in place early on in the product development process. That’s where Secure by Design comes in.

Introduction In recent months, the cybersecurity landscape has witnessed the emergence of sophisticated threats targeting critical infrastructure and governmental entities. One such threat, dubbed "Operation FlightNight," has garnered attention due to its strategic targeting of Indian government entities and the energy sector. Foresiet analysts have been diligently investigating this campaign to understand its modus operandi and implications for cybersecurity.