With the looming software bill of materials (SBOM) mandates going into effect, IT and security teams will be increasingly looking for solutions that assess and mitigate software supply chain risks for all software both built and bought to comply with U.S. Executive Order 14028.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Wiz researchers found that a Microsoft misconfiguration error created an opening for attackers to not only manipulate Bing search results, but to potentially steal Office 365 credentials.
A very commonly used VoIP telephony system has been compromised via trojans snuck in through an open source component, and the supply chain attack puts over half a million global businesses at risk.
Genesis dark web market that is thought to have facilitated the sale of some 80 million credentials is now in the hands of law enforcement, after an international campaign that involved about 200 raids and 100 arrests.
In today’s cyber security environment, organizations always strive for getting the best return on investment when shopping for cyber insurance. Companies desire low-cost policies without accurately assessing risk. Insurers want low risk and to cover as little as possible. How did we get here and where do we go?
A data breach on consumer lender TMX and its subsidiaries Titlemax, Titlebucks, and Instaloan leaked the personal information, including social security numbers, of 4.8 million customers.
Today’s modern enterprise is struggling with three key data challenges: the immense growth in how much data an organization must manage,, the massive migration of data to the cloud, and that business-critical data worth protecting now takes a myriad of forms.
Capita is one of the biggest outsourcing services provider for the UK national government with about £6.5 billion in annual contracts. Cyber attack has raised concerns due to the company's relationships with the UK military, National Health Service (NHS) and numerous other government agencies.
World’s fourth-largest generic drugs manufacturer Sun Pharmaceuticals disclosed a ransomware attack that compromised some of its file systems.
A number of Dutch market research firms using a piece of industry software called Nebu have been breached, and the fallout appears to include about two million Netherlands residents. The data breach seems to mostly consist of contact information, but also includes income data.










