%term

The 443 Podcast - Episode 275 - NIST Tackles Adversarial AI

Jan 16, 2024 By WatchGuard In WatchGuard

This week on the podcast, we review NIST's new publication that defines a taxonomy for how we talk about Adversarial Machine Learning. Before that, we cover a recent discovery of threat actors retaining access to Google accounts even through a password reset. We round out the episode with an account compromise that lead to a surge in Bitcoin price before finishing with a discussion of Living-off-Trusted Sites (LoTS) attacks that leverage GitHub.

View Video

WatchGuard

Read more about The 443 Podcast - Episode 275 - NIST Tackles Adversarial AI

What is NIST SP 800-53 and 5 Necessary Steps to Comply with It?

Jan 11, 2024 By Ran Arad In Memcyco

With personal data or business communications, our vast digital footprint is vulnerable to malefactors. Consequently, safeguarding sensitive information has become a pressing concern for companies of all sizes. The cost of cybercrime was $8 trillion globally in 2023 and is projected to hit $10.5 trillion by 2025. This alarming statistic emphasizes the escalating threat and the critical need for robust cybersecurity measures.

Read Post

Memcyco

Read more about What is NIST SP 800-53 and 5 Necessary Steps to Comply with It?

NIST Cybersecurity Framework 2.0: The Key Changes to Know About

Dec 21, 2023 By Dirk Schrader In Netwrix

The National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) has been a stalwart ally for organizations for years, providing guidance on understanding, evaluating and communicating about cybersecurity risks. The release of NIST CSF 2.0, expected in early 2024, provides a paradigm shift. This blog post provides an in-depth exploration of the structure of the NIST CSF and the key changes coming in version 2.0.

Read Post

Netwrix

Read more about NIST Cybersecurity Framework 2.0: The Key Changes to Know About

NIST releases draft Cybersecurity Framework 2.0

Dec 20, 2023 By Mark Nicholls In Redscan

With NIST recently releasing an updated draft version of the framework, we outline the main proposed changes.

Read Post

Redscan

Read more about NIST releases draft Cybersecurity Framework 2.0

NIST CSF 2.0: What you need to know

Dec 11, 2023 By Antonio Sanchez In Tripwire

Organizations looking to protect their sensitive data and assets against cyberattacks may lack the ability to build a cybersecurity strategy without any structured help. The National Institute of Standards and Technology (NIST) has a free, public framework to help any organization mature its IT security posture. Recently, the institute published an updated version of the cybersecurity framework (CSF), NIST CSF 2.0, which contains a number of updates from the previous framework.

Read Post

Tripwire

Read more about NIST CSF 2.0: What you need to know

How Does NIST's AI Risk Management Framework Affect You?

Nov 28, 2023 By Stefanie Shank In Tripwire

While the EU AI Act is poised to introduce binding legal requirements, there's another noteworthy player making waves—the National Institute of Standards and Technology's (NIST) AI Risk Management Framework (AI RMF), published in January 2023. This framework promises to reshape the future of responsible AI uniquely and voluntarily, setting it apart from traditional regulatory approaches. Let's delve into the transformative potential of the NIST AI RMF and its global implications.

Read Post

Tripwire

Read more about How Does NIST's AI Risk Management Framework Affect You?

Mastering NIST Penetration Testing: Your Essential Guide to Robust Cybersecurity

Nov 28, 2023 By Cyphere In Cyphere

Securing your organization’s information systems is a top priority in the ever-evolving digital landscape. Organizations face an ongoing battle against cyber threats; penetration testing is a powerful weapon to avoid these risks. The National Institute of Standards and Technology (NIST) Penetration Testing Framework, known as “nist pen testing,” offers a robust and structured approach to assessing and enhancing cybersecurity defences.

Read Post

Cyphere

Read more about Mastering NIST Penetration Testing: Your Essential Guide to Robust Cybersecurity

NIST NCCoE Publishes Cybersecurity Framework Profile for Hybrid Satellite Networks

Nov 27, 2023 By Josh Breaker-Rolfe In Tripwire

In late September 2023, the US-based National Institute of Standards and Technology (NIST) published its Cybersecurity Framework Profile for Hybrid Satellite Networks, otherwise known as NIST IR 8441. This blog will explore the reasons behind NIST developing the framework, outline its intentions, and summarize its key points.

Read Post

Tripwire

Read more about NIST NCCoE Publishes Cybersecurity Framework Profile for Hybrid Satellite Networks

What Is NIST SP 800-171 Compliance? A Guide to Protecting Your Sensitive Data

Nov 20, 2023 By Matt Middleton-Leal In Netwrix

NIST SP 800-171 details requirements that all Department of Defense (DoD) contractors have been required to follow for years. The guidelines were updated in 2020, and Revision 3 was published in May 2023. Netwrix is ready to help organizations achieve, maintain and prove NIST 800-171 compliance. Below, we summarize its key requirements and share recommendations for getting started with the regulation.

Read Post

Netwrix

Read more about What Is NIST SP 800-171 Compliance? A Guide to Protecting Your Sensitive Data

Significant Changes from NIST SP 800-53 rev4 to rev5

Nov 13, 2023 By Andrew Martinez In Ignyte

The National Institute of Standards and Technology has introduced a new revision of the Special Publication 800-53, revision 5. As with any document change of this scope there are minor and major changes. This paper will provide a high level overview of the significant changes, addressing a redefined focus in control families, accountability, governance, as well as a discussion of new control families, privacy transparency and supply chain risk management.

Read Post