If you're a security professional like me, you're not used to your function being seen as a revenue driver for your business; you’re used to being seen as a cost center. But what if you could demonstrate that security acts as a catalyst for innovation, even leading to 20% revenue increase? Here's how a strategic security investment was not only able to help protect a business from potential threats, but also create a foundation for sustainable growth.

Over the past few months, our development team at SecurePortal has diligently worked on a major upgrade to our access control system. In this significant update, we have revolutionised how organisations can manage and restrict access within the portal. By empowering organisations with permissions to regulate and customise visibility for specific groups, we offer the flexibility to create new groups, duplicate existing ones for customisations, and seamlessly assign users to these tailored groups.

On September 10, 2024, Ivanti released fixes for CVE-2024-29847, a maximum severity vulnerability in Ivanti Endpoint Manager (EPM). This flaw, found in the agent portal of specific EPM versions, allows Remote Code Execution (RCE) by an unauthenticated attacker due to improper deserialization of untrusted data.

In 2023, 60% of incidents investigated by Arctic Wolf Incident Response involved the exploitation of a two- (or more) year-old vulnerability. These vulnerabilities were well known, and the affected organizations had anywhere from months to years to patch them prior to an incident occurring.

In the dynamic landscape of data security, navigating the complexities of modern architectures requires a sophisticated approach. The exponential growth of data and the proliferation of cloud services require advanced security strategies that can adapt to rapidly changing conditions. Traditional methods of data protection, while foundational, often fall short in addressing the needs of today’s fast-paced cloud environments.

One of the most evasive and hardest threats to detect are in memory frameworks using malleable command and control (C2) beacons to hide in benign traffic. They enable attackers to get in and remain invisible with hidden reconnaissance, discovery, C2, and data exploitation.

The adoption of cloud services, hybrid workforces, the rapid emergence and use of generative AI (genAI) along with the evolving regulatory environment are forcing security and risk management (SRM) leaders to enhance their SRM spending. Gartner forecasts global SRM spending to grow 14% in 2024. Moreover, worldwide end-user spending on SRM is projected to total $215 billion in 2024, an increase of 14.3% from 2023, according to a new forecast from Gartner, Inc.

In today’s fast-paced digital world, maintaining seamless connectivity and an optimal user experience is critical. Organizations often struggle with limited network visibility, difficulty in diagnosing and resolving issues, and a lack of comprehensive insights into SASE performance. These challenges can lead to increased administrative burdens and compromised user satisfaction.

Netskope customers now have the option for traffic packet captures for Netskope Intelligent SSE for egress traffic from remote users or offices to the Netskope One cloud platform. Key to enabling this new capability is the NewEdge private network where Cloud TAP is available across the globe in data centers. Networking, infrastructure and operations, and security teams often require the following using network and cloud TAPs.

When it comes to software supply chain security, we all do everything we can to prevent insecure software from being released into production. Hence we see software supply chain security shifting left to discover potential threats as early as possible in the software development lifecycle. But what happens when vulnerabilities are only discovered after an application has been distributed to its operating environment?