Software Bill of Materials (SBOMs) are catching on as companies seek better visibility in software supply chains and need accurate information for vulnerability disclosure requirements. But maintaining an accurate SBOM isn’t a quick and easy task. Here’s what to keep in mind when building an SBOM.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Suspected Ransomware Cyber Attack Disrupts Expeditors International’s Logistics Operations Worldwide
Expeditors International of shut down its operating systems worldwide, limiting its logistics operations after a cyber attack suspected to be a ransomware incident.
Joint cybersecurity alert says Russian hackers compromised defense contractors and obtained export-controlled information, giving Kremlin insight into U.S. military and infrastructure.
Citing the dangers of “sideloading”, Apple and Google defend themselves by saying their app store policies are necessary to protect their users. But while sideloading can be very risky, it can be done securely through the use of time-tested and effective cybersecurity technologies.
The Conti ransomware gang became one of the more prominent in the cyber crime world starting in 2020. It has pledged to respond to any cyber attacks on the Russian government or the country's critical infrastructure.
It’s important that businesses monitor Dark Web trends and activity to monitor what data has been breached and understand where there might be weak links at the employee and enterprise level.
BlackByte ransomware group attacked organizations in at least three critical infrastructure sectors and multiple foreign and U.S. Businesses, according to the FBI and U.S. Secret Service. San Francisco 49ers also suffered ransomware attack.
Cybersecurity Market Sets Records for Venture Capital in 2021, Expected To Keep Rolling Through 2022
Venture capital flocked to the cybersecurity market in 2021, leading to a record $29.5 billion raised (more than double the amount seen in 2020).
Financial institutions are 300 times as likely as other companies to be targeted by a cyberattack. Unfortunately, the systems designed to help (such as alerting or security monitoring tools) can overwhelm a bank’s IT department.
Two of the biggest topics in Cloud today are DevOps and DevSecOps. What makes them so important now and how organizations can leverage them are key questions. For the answers, we must jump back to look at their origins and how these methodologies developed.










