Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Blog

OpenInfra Days North America 2024: A Community Reunion and the Future of OpenStack

At Indiana University, OpenInfra Days North America 2024 was an event that brought together the brilliant minds of the open infrastructure community. For my teammate Kevin Jackson and I, this was not just another tech event; it was a long-overdue reunion with friends in the OpenStack community and an exciting opportunity to forge new relationships. The atmosphere was charged with collaboration and learning, with best practices, user journeys, and insightful panel discussions taking center stage.

CMMC Final Program Rule: What Are The Upcoming Changes?

The Cybersecurity Maturity Model Certification, or CMMC, has been a long time coming. It was first developed in 2019, primarily as a way for defense contractors for the Department of Defense to switch from self-attestation to a validated certification. CMMC 1.0 has been in effect since 2020, but there has been a lot of feedback regarding the complexity and clarity of the system, leading to the development of CMMC 2.0.

Netskope Risk Exchange Ecosystem: Combating Shadow IT

This blog series continues to explore a number of different workflows that those comfortable using basic scripting, or enablement tools like Postman, can employ to programmatically update and inform your inline policy actions. These are just some of the functions that the newest version of Cloud Exchange (CE), version 5.1, supports now and in the future. Look for it to hit the shelves at the end of October 2024.

Cybersecurity Budgets Are Increasing, but Security Leaders Don't Think It's Enough

Despite the belief that today’s SOC should be doing the lion’s share of protecting an organization, new data shows reliance on more than just security teams is needed. Many of our blogs have something to do with the increasing risk of cyber attacks. So, it’s natural to see that organizations are increasing cybersecurity budgets. But according to Red Canary’s 2024 Security Operations Trends Report, it might not be enough to address the evolving threat landscape.

What Is Credit Monitoring and Is It Worth It?

Credit monitoring is a service that tracks any changes made to your credit reports that could be signs of fraud or identity theft. It is helpful to be alerted in real time to any new accounts being opened in your name, changes to your credit or missed payments. Continue reading to learn what credit monitoring does, if it’s worth it and how to protect yourself from becoming a victim of fraud and identity theft.

Does Your Computer Have a Virus? Here Are Ten Warning Signs

You can tell if your computer has a virus by looking for warning signs, such as slower performance speed, increased pop-ups, frequent crashes or freezes, reduced battery life and unfamiliar files. A computer virus is a type of malware that requires user interaction to infect your computer. Computer viruses can disguise themselves as email attachments in phishing scams, illegitimate files, altered code or pirated software.

Data Leak Prevention vs Data Loss Prevention: Safeguarding Information in the Digital Age

In this digital age, enterprises in all industries are creating and accumulating an astronomical amount of sensitive data to store and exchange. Given a prevalence of highly sensitive data, preventing it from getting into the wrong hands or avoiding data loss by accident has become a top priority. While on surface data loss vs data leak can look harmless, it can lead to financial losses, reputational damages, and even trigger litigation.

Leveraging NDR for Risk-Based Alerting: A Proactive Approach to Cybersecurity

The traditional methods of detecting and mitigating cyberattacks will no longer be adequate as these attacks become sophisticated and frequent. These days, risk-based alerting and network detection and response (NDR) are regarded as essential tools for safeguarding enterprises. By avoiding false positives or low-priority warnings, risk-based alerting allows security teams to concentrate on the high-risk threats, saving time and resources.

Unlocking the Potential of GRC Tools: A Path to Strategic Risk Management

By James Rees, MD, Razorthorn Security In today’s complex cybersecurity landscape, Governance, Risk and Compliance (GRC) tools have become essential for organisations managing intricate security ecosystems. These tools are designed to centralise information, streamline processes and offer crucial insights into an organisation’s risk posture. However, as cybersecurity expert Jack Jones revealed when he joined me on a recent podcast, the reality often falls short of these ambitious claims.