Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Security Execs' Advice on Overcoming the Challenges of Remote Work

At the outset of the global coronavirus 2019 (COVID-19) pandemic, many organizations decided to enforce social distancing by requiring that their employees begin working from home. This decision changed the fundamental way in which many employees were accustomed to working. It also created new security challenges for organizations that had larger remote workforces.

The Secret to Reducing False Positives: You will only be as good (and fast) as your data

As efforts increase to protect customers from card-present and card-not-present fraud, there is an increasing risk lurking for banks and retailers: false positives. According to KPMG’s 2019 global fraud survey, 51% of respondents reported a significant number of false positives resulting from current technology solutions and decreasing efficiencies in fraud detection.

Part One: How Well Do UK Businesses Understand Bots?

Data breaches are becoming increasingly common, with cyber criminals able to gain quick and easy access to usernames and passwords. Despite efforts to inform consumers about cybersecurity best practices, many still use the same weak passwords across multiple accounts. Netacea, along with independent researchers Coleman Parkes, recently carried out a survey 200 UK businesses to discover how well the bot threat is understood across travel, entertainment, e-commerce and financial services.

SCM: Understanding Its Place in Your Organization's Digital Security Strategy

Digital attackers can compromise a system in a matter of minutes. But it generally takes organizations much longer to figure out that anything has happened. In its 2020 Data Breach Investigations Report (DBIR), for instance, Verizon Enterprise found that more than half of large organizations took days or even months to detect a security incident. Such dwell time gave attackers all they needed to move throughout an infected network and exfiltrate sensitive data.

The Forrester Wave: Global Managed Security Services Providers, Q3 2020

AT&T Cybersecurity is ranked among the top managed security service providers in The Forrester WAVE™: Global Managed Security Services Providers, Q3 2020. Among the findings, Forrester recommends customers look for MSSPs that can offer remediation support across hybrid environments and help create efficiencies within your environment. AT&T Cybersecurity managed security services offers: The report notes key differentiators as: native cloud support, automation, and remediation.

Crowdsource Success Story: From an Out-of-Scope Open Redirect to CVE-2020-1323

Scope-creeping doesn’t always end up in a 0-day with a CVE assigned, and this was the fortune of Detectify Crowdsource hacker, Özgür Alp. He is an ethical hacker with 7+ years experience, well certified within offensive security and also high ranked on hacker leaderboards. Here is his success story on how he, with the help of the Detectify Crowdsource team, turned an open redirect into a public disclosed vulnerability known as CVE-2020-1323.

10 Elements of the Most Effective Application Security Programs

Veracode’s Chris Wysopal and Chris Eng recently joined Enterprise Strategy Group (ESG) Senior Analyst Dave Gruber and award-winning security writer and host of the Smashing Security podcast, Graham Cluley, at Black Hat USA to unveil the findings from a new ESG research report, Modern Application Development Security.

Most Popular HIPAA-Compliant Cloud Storage Services

Cloud computing provides undeniable benefits for storing and accessing electronic health records. Files stored in the cloud are accessible anytime and anywhere from any device, which makes it easy to share critical medical information between healthcare workers. But is cloud storage secure enough to store, access and transfer sensitive personal and medical information?

How to Maintain Service Oriented Architecture Security

Service Oriented Architecture has been one of the buzzwords in the cyber security community for a while. In this article, we will discuss what it is and how you can implement SOA security. What is Service Oriented Architecture Security? Service Oriented Architecture (also known as SOA) refers to a unique style of software design. In Service Oriented Architecture, the services are provided by application components using a communication protocol over the network.