State of API Security Webinar - Wallarm + @gigaom
The session will explore the API Security landscape, how to evaluate solutions, the Wallarm platform and why Wallarm was named a Leader and Outperformer in API Security.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
API Attacks: Understanding Malicious and Malformed Threats
This video dives into two critical categories of API attacks: malicious intentions and malformed API threats. Learn why these dangers are becoming increasingly significant for modern companies and how API security can help prevent major incidents. Experts from GigaOm and Wallarm discuss how to identify and mitigate these vulnerabilities to ensure the safety of your data.
Securing the Future: Realistic Expectations for AI in Cybersecurity | Razorthorn Security
Discussing the challenges of integrating AI into cybersecurity, Oliver Rochford emphasises the importance of realistic timelines and expectations for AI advancements and their security implications.
Zero Standing Privileges: The Essentials
In December, I’ll have been with CyberArk for seven years, and at a similar point, I’ll have spent two years leading product marketing for cloud security at the company. In my short tenure with CyberArk Product Marketing, I’ve advocated for zero standing privileges (ZSP) as a default mechanism for implementing privilege controls. It’s easier, more effective and doesn’t change how people work.
The journey to AppSec gold: Lessons we can learn from the Olympians
The 2024 Olympics are in full swing, and everyone at Snyk is excited to tune into the games and cheer on our respective countries’ athletes. There’s a lot to love about the Olympics — dazzling opening ceremonies, heart-racing feats, close-call victories, and so much more. But along with all the fun and excitement comes a sense of inspiration.
The EU AI Act: Ensuring Cybersecurity and Trustworthiness in High-Risk AI Systems
Artificial Intelligence (AI) has come a long way since John McCarthy first coined the term in 1955. Today, as AI technologies become deeply embedded in our daily lives, the potential they hold is immense – but so are the risks to safety, privacy, and fundamental human rights. Recognizing these concerns, the European Union (EU) took a proactive step in 2021 by proposing a regulatory framework aimed at governing AI.
One Of The World's Most Prolific Cybercriminals Arrested, Extradited To The US
Read also: Police dismantle the Radar/Dispossessor ransomware group, a data broker gets a prison sentence, and more.
Runtime anomaly detection in Kubernetes: enhancing security through context-aware profiling
Runtime anomaly detection is fast becoming a critical component for protecting containerized environments. Recent advancements in this field are addressing long-standing challenges and introducing innovative approaches to enhance security posture.
Latest Phishing Scam Uses Cross-Site Scripting Attack to Harvest Personal Details
Cross-Site Scripting (XSS) is alive and well, and used in attacks to obfuscate malicious links in phishing emails to redirect users to threat-actor controlled websites. We saw earlier this year that phishing attacks leveraging XSS were on the rise. Now, new scams are using XSS to hide their malicious intent within emails, according to new analysis from cybersecurity vendor INKY. These attacks usually begin with an email stating the victim has won something, as shown below: Source: INKY.
Ransomware Payments Decline While Data Exfiltration Payments Are On The Rise
The latest data from Coveware shows a slowing of attack efficacy, a decrease in ransom payments being made, and a shift in initial access tactics. According to Coveware’s Q2 2024 Ransomware Quarterly Report, we see a few interesting trends: A new data point brought to light this quarter is the data exfiltration only (DXF) payment trend, which is relatively flat despite fluctuating between 53% in Q1 of 2022 when tracking began, down to a low of 23% in Q1 of this year.