Security Experts:

Management & Strategy
long dotted

NEWS & INDUSTRY UPDATES

Omnicell noted in a Form 10-Q filing with the US SEC that the incident impacted internal systems and products and services. [Read More]
Microsoft patches at least 73 documented security flaws in the Windows ecosystem and warned that unknown attackers are already launching zero-day man-in-the-middle attacks. [Read More]
Israeli venture capital outfit YL Ventures plans to invest in seed-stage rounds of approximately 10 cybersecurity startups at a pace of 3 startups per year [Read More]
IoCs and other resources have been made available for the actively exploited BIG-IP vulnerability tracked as CVE-2022-1388. [Read More]
Microsoft launched new managed services styled as a combination of technologies, threat intelligence and skilled personnel to help businesses hunt for signs of compromise or outsource the handling of detection and response incidents. [Read More]
One year after the cyberattack, the US Department of Transportation has proposed a fine of nearly $1 million to Colonial Pipeline over control room management failures. [Read More]
CRV and Insight Partners led a $100 million investment round for Zero Trust VPN provider Tailscale. [Read More]
Attackers used a compromised token for a Heroku machine account to access the company’s environment and steal GitHub integration OAuth tokens. [Read More]
China is apparently not happy that South Korea has joined NATO’s Cooperative Cyber Defence Centre of Excellence (CCDCOE). [Read More]
Amazon has shut down the Alexa ranking service and, while it may not be immediately obvious, the decision does have some impact on the cybersecurity industry. [Read More]

FEATURES, INSIGHTS // Management & Strategy

rss icon

Laurence Pitt's picture
There are areas where governments can learn from the private sector and vice-versa, which will help both sides adapt more quickly and effectively to a continuously evolving threat environment.
William Lin's picture
I foresee a convergence of the tooling for telemetry aggregation, threat detection, managed services and remediation as a key milestone in the evolution of the modern SOC.
Marc Solomon's picture
A conversation with Callie Guenther, cyber threat intelligence (CTI) manager at Critical Start.
Joshua Goldfarb's picture
While we may not be able to fix the organizational issues created by a “Peter”, by identifying the signs that we are working for one, we can often adjust how we work to compensate.
Marc Solomon's picture
By scoping job descriptions realistically and incorporating automation and intelligence sharing to enable analyst success and growth, there’s a lot that security leaders can do to help close the skills gap in their organizations.
Laurence Pitt's picture
SASE is gaining momentum and can ensure that users receive the correct, risk-based level of access to systems at any moment in time.
Gordon Lawson's picture
While employees want to do the right thing when it comes to protecting their organization from cyber threats, we cannot expect them to be perfect.
Keith Ibarguen's picture
How the Mayo Clinic's concept of "Think Big, Start Small, Move Fast" has also helped to advance the product development and cybersecurity domains as well.
Marc Solomon's picture
When automation is consciously balanced between humans and machines, we can ensure security teams always have the best tool for the job.
Torsten George's picture
Schools should take measures to identify and secure sensitive data, keep devices up-to-date, and ensure that their endpoint security controls are working.