Risk Management

ICS Security Is a Team Sport

Nov 12, 2024 By Brandon Smith In BitSight

As we discussed in the first article in this series, there are many Internet-exposed control systems, but they are very different from traditional IT systems and require a different security approach. With these systems being so critical and controlling processes that can potentially lead to loss of life if they fail, what is being done to tackle this issue? In this article I’ll dive into this and more, looking at.

Read Post

BitSight

Read more about ICS Security Is a Team Sport

SecurityScorecard Connector Demo

Nov 12, 2024 By Nucleus In Nucleus

In this demo of Nucleus Security's integration with SecurityScorecard, learn how users can set up, manage, and leverage this connection for enriched vulnerability and asset data.

View Video

Nucleus

Read more about SecurityScorecard Connector Demo

The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat

Nov 12, 2024 By SecurityScorecard In SecurityScorecard

A silent danger is sweeping through the world’s critical infrastructure. The SecurityScorecard STRIKE Team has uncovered a resurgence of Volt Typhoon—a state-sponsored cyber-espionage group from the Asia-Pacific region, known for its precision and persistence. This is no ordinary attack. Volt Typhoon exploits unprotected, outdated edge devices within targeted critical infrastructure.

Read Post

SecurityScorecard

Read more about The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat

9 Cyber Risk Management Trends in 2025 Every Business Should Know

Nov 11, 2024 By Kovrr In Kovrr

‍The evolution of the cyber risk management landscape is constant, and with each passing year, market players find themselves in the position of having to readjust their strategies, whether in brand positioning, cybersecurity, or beyond, to account for these consequent changes. While some of the shifts are welcome, others are less so. Nevertheless, all require careful foresight.

Read Post

Kovrr

Read more about 9 Cyber Risk Management Trends in 2025 Every Business Should Know

What is PHI? (Protected Health Information) | TrustTalks - Ep 1 | Security and GRC Podcast

Nov 11, 2024 By TrustCloud In TrustCloud

Let's deep dive into PHI (Protected Health Information). Understand it's importance, best practices, legalities, risks, and more.

View Video

TrustCloud

Read more about What is PHI? (Protected Health Information) | TrustTalks - Ep 1 | Security and GRC Podcast

How to Conduct a Comprehensive Base Security Assessment

Nov 11, 2024 By SecuritySenses In SecuritySenses

Conducting a comprehensive base security assessment is crucial. It ensures the safety of personnel, assets, and information. With the rise of various threats, it's more important than ever to evaluate and enhance security measures systematically. A thorough assessment not only identifies weaknesses. It also assists in implementing effective security controls to mitigate risks. In this detailed guide, we will explore essential steps and best practices to perform a base security assessment. We will enable you to deploy effective security solutions tailored to your environment.

Read Post

SecuritySenses

Read more about How to Conduct a Comprehensive Base Security Assessment

Investigating iOS 18's AI Capabilities

Nov 7, 2024 By Anirban Banerjee In Riscosity

With the release of iOS 18, Apple has continued to expand its integration of AI technologies, positioning the iPhone as a powerful personal assistant capable of smart recommendations, advanced text and image analysis, and even predictive suggestions. Leveraging on-device machine learning, iOS 18’s AI features tap into user data to provide a personalized experience.

Read Post

Riscosity

Read more about Investigating iOS 18's AI Capabilities

Preparing for Outsourcing Risks: A Resiliency Plan

Nov 7, 2024 By Razorthorn In Razorthorn

As outsourcing grows, so do third-party risks. Discover why regular checks and a resilience plan are essential for managing long-term vendor relationships and preventing potential threats.

View Video

Razorthorn

Read more about Preparing for Outsourcing Risks: A Resiliency Plan

What is GRC in Cyber Security? Why is it Important?

Nov 7, 2024 By Obrela In Obrela

Governance, Risk Management, and Compliance (GRC) in cybersecurity is a framework that is designed to help organizations align their security efforts with business objectives while also managing risks and adhering to legal and regulatory requirements. To implement GRC in Cyber security effectively, it is important to understand the purpose of each element and the part each has to play in improving an organization’s security posture.

Read Post

Obrela

Read more about What is GRC in Cyber Security? Why is it Important?

Securing Port 139: Strategies to Prevent Unauthorized Access and Cyber Threats

Nov 7, 2024 By SecurityScorecard In SecurityScorecard

In the realm of network security, safeguarding communication ports is a fundamental aspect of protecting a network’s integrity and confidentiality. Port 139, primarily used by the Server Message Block (SMB) protocol for file sharing in Windows networks, stands out as a critical point of vulnerability when not properly secured. This port facilitates network communications, allowing computers to share files, printers, and serial ports over a network.

Read Post