Risk Management - Security Intelligence

Is Open-Source Security a Ticking Cyber Time Bomb?

4 min read - Software depends on layers of code, and much of that code comes from open-source libraries. According to an Octoverse 2022 report, open-source code is used in 97% of applications. Not only do developers embrace open source, but so do nine…

June 28, 2023

How to Manage Cyber Risk During Mergers and Acquisitions

4 min read - By attracting attention from threat actors, merger and acquisition (M&A) events are a significant source of cyber crime risk. So much so that, according to a 2020 IBM Institute of Business Value study, more than one in three executives said…

June 28, 2023

A Software Bill of Materials Helps Secure Your Supply Chain

6 min read - The software supply chain involves developing, maintaining and distributing software to end users. To enhance the functionality of the software being developed, developers frequently depend upon open-source components and libraries. These can be sourced from external vendors like Docker images…

June 27, 2023

How Application Allowlisting Combats Ransomware Attacks

5 min read - Ransomware attacks are on the rise in both volume and sophistication. Triple extortion (a ransomware attack on one business leading to extortion threats on its business partners) is raising the cost of attacks. Ransomware-as-a-Service puts the means to attack in…

June 26, 2023

All About PowerShell Attacks: The No. 1 ATT&CK Technique

4 min read - How do cyber pros prioritize their security efforts? A good place to start is knowing exactly what tactics, techniques and procedures (TTP) threat actors use. In a recently published report, aggregated data was used to identify the most common attack…

Easy Configuration Fixes Can Protect Your Server from Attack

4 min read - In March 2023, data on more than 56,000 people — including Social Security numbers and other personal information — was stolen in the D.C. Health Benefit Exchange Authority breach. The online health insurance marketplace hack exposed the personal details of Congress members, their families, staff and tens of thousands of other Washington-area residents. It appears the D.C. breach was due to “human error”, according to a recent report. Apparently, a computer server was misconfigured to allow access to data without proper…

DevSecOps: Striking a Balance Between Speed and Security

2 min read - The current fast-paced business environment demands quick delivery of new products and services, often at the expense of security. To address this, DevSecOps has emerged as a security-focused approach to software development that reconciles the trade-off between speed and security. DevSecOps ensures that security is not an afterthought but a crucial aspect integrated into every stage of the software development lifecycle (SDLC), including design, development, testing and deployment. This approach helps organizations identify and mitigate security vulnerabilities early in the…

Paying Ransomware’s Ransom: Why it’s Time to Reconsider

4 min read - Each year, we continue our everlasting hope that ransomware attacks will disappear. The unfortunate reality is that ransomware is as prominent as ever. Experts predict that ransomware attacks will only become more frequent and sophisticated, posing an even greater threat across all industries. When ransomware strikes, the biggest question a company has to answer is typically whether to pay the ransom. But paying the ransom is only a fraction of the total cost to a business. In some cases, companies…

A History of Ransomware and the Cybersecurity Ecosystem

4 min read - The number and complexity of cybersecurity tools have grown at a dizzying pace in recent decades. As cyber threats like ransomware became more numerous and complex, antivirus and threat management tools expanded to meet these challenges. Security experts now often find themselves with too many choices and a market too rich with options. Choosing, running and training on these tools can become a problem. From the first “computer worm” to ransomware, let’s review the evolution of cyber threats and the…

A History of Ransomware and the Cybersecurity Ecosystem

Going Up! How to Handle Rising Cybersecurity Costs

4 min read - The average cost of cybersecurity systems, solutions and staff is increasing. As noted by research firm Gartner, companies will spend 11% more in 2023 than they did in 2022 to effectively handle security and risk management. This puts companies in…

CISA’s Known Vulnerabilities Impact 15M Public Services

4 min read - CISA’s Known Exploited Vulnerabilities (KEV) catalog is the authoritative source of information on past or currently exploited vulnerabilities. In a new report, the Rezilion research team analyzed vulnerabilities in the current KEV catalog. The results revealed a whopping 15 million…

ChatGPT and the Race to Secure Your Intellectual Property

4 min read - ChatGPT reached 100 million users in January 2023, only two months after its release. That’s a record-breaking pace for an app. Numbers at that scale indicate that generative AI — AI that creates new content as text, images, audio and…

Security Intelligence

{{title}}

{{title}}

{{title}}

{{title}}

Topics

Is Open-Source Security a Ticking Cyber Time Bomb?

How to Manage Cyber Risk During Mergers and Acquisitions

A Software Bill of Materials Helps Secure Your Supply Chain

How Application Allowlisting Combats Ransomware Attacks

All About PowerShell Attacks: The No. 1 ATT&CK Technique

Easy Configuration Fixes Can Protect Your Server from Attack

DevSecOps: Striking a Balance Between Speed and Security

Paying Ransomware’s Ransom: Why it’s Time to Reconsider

A History of Ransomware and the Cybersecurity Ecosystem

A History of Ransomware and the Cybersecurity Ecosystem

Going Up! How to Handle Rising Cybersecurity Costs

CISA’s Known Vulnerabilities Impact 15M Public Services

ChatGPT and the Race to Secure Your Intellectual Property

{{{title}}}