Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Blog

Is IAM, SIEM, and DLP Enough to Combat Insider Risk?

Despite significant investments in cybersecurity tools like Identity and Access Management (IAM), Security Information and Event Management (SIEM), and Data Loss Prevention (DLP), insider risks continue to grow. Why? These tools primarily focus on actions, logs, and event recognition rather than taking a deep, sophisticated approach to understanding human behavior over time. Insider threats—whether from negligence, malicious intent, or compromised users—are notoriously difficult to detect.

10 Essential Guidelines For Enterprise-Ready AI Solutions

AI-powered solutions are becoming increasingly prevalent in enterprise environments, leading to a new trend in procurement: the need for comprehensive AI governance frameworks. This shift reflects a growing awareness of AI-specific risks and the need for more granular controls. As the founder of Nightfall AI, a startup building AI models for data security, I've navigated hundreds of procurement cycles and observed a rise in AI-specific requirements.

Critical Linux CUPS Flaws Could Lead to Remote Command Execution

CUPS is a suite of programs and daemons that provide local and network printing capabilities on Unix-like systems such as Linux and macOS. Versions before and including 2.0.1 are vulnerable to CVE-2024-47076 (libcupsfilters), CVE-2024-47175 (libppd), CVE-2024-47176 (cups-browsed) and CVE-2024-47177 (cups-filters), all of which can be chained together to allow remote unauthenticated code execution. At this time there is no updated version available.

The Essential Guide to Disaster Recovery (DR) and Business Continuity (BC)

The threat landscape is rapidly changing, and the businesses can’t play a waiting game when it comes to planning their data protection strategy. The stakes are getting bigger, and the attacks and security threats are a matter of when rather than if Today, downtime can cost millions to organizations and cyberattacks can bring operations to a halt and make businesses go bankrupt. Disaster recovery (DR) and business continuity (BC) have shifted from best practices to essential strategies.

Multi-Region Redundancy for Stronger Data Resilience

Rubrik Cloud Vault already provides a high level of cyber resiliency against data deletion, encryption, and exfiltration through air-gapped, immutable, access-controlled backup and archival copies stored in an isolated environment. Now, for added resilience against regional failures and natural disasters, Rubrik Cloud Vault supports Zone-redundant storage (ZRS) and Geo-redundant storage (GRS), complementing our existing Local-redundant storage (LRS) option.

Rubrik powers Okta with critical user context to safeguard against identity attacks

Identity-based cyber attacks continue to prevail and impact organizations. Stealing credentials was the top initial action in breaches, according to Verizon. Plus, 84% of identity stakeholders surveyed said identity-related incidents directly impacted their business, resulting in reputational damages, distraction from core business, and increased recovery costs.

Data Security Best Practices for Cloud CRM Systems as Adoption Surges

For the past few years, the CRM market has witnessed steady growth and it is projected to reach $89 billion by 2024. Estimates are that this growth will continue into the foreseeable future. Essentially, CRM systems have come to stay and have become the backbone of many organizations. However, the bleak state of cybersecurity cuts across many industries, and CRM systems are equally vulnerable.

The Growing Threat Of Fake Job Applicants

It cannot be denied that the rise of remote work has opened up many opportunities for both employers and job seekers. Despite this, however, it has also presented a plethora of challenges when it comes to recruiting in the cybersecurity and tech spaces, one of the most notable of which is the proliferation of candidates who either don’t exist entirely or who aren’t who they claim to be.

The Number of Ransomware Attacks Around the World Increased by 73% in 2023

The number of ransomware attacks around the world increased by 73% in 2023, according to a new report by the Institute for Security and Technology’s Ransomware Task Force (RTF). These attacks opportunistically target organizations across all industries, but the hardest-hit sectors over the past two years have been construction, hospitals and health care, government, IT services and consulting, and financial services.

Threat Context Monthly: Executive intelligence briefing for September 2024

Welcome to the Threat Context Monthly blog series where we provide a comprehensive roundup of the most relevant cybersecurity news and threat information from KrakenLabs, Outpost24’s cyber threat intelligence team. Here’s what you need to know from September.