Security Experts:

WRITE FOR US
Security Infrastructure

LATEST SECURITY NEWS HEADLINES

rss icon

Android, macOS Versions of GravityRAT Spyware Spotted in Ongoing Campaign
Scammers Seize on US Election, But It's Not Votes They Want
U.S. Charges Russian Intelligence Officers for NotPetya, Industroyer Attacks
CISA Warns of Remote Code Execution Bugs in Visual Studio, Windows Codecs Library
Google Says No Significant Election Influence Campaigns Targeting Its Users
long dotted

NEWS & INDUSTRY UPDATES

Cyber Warriors Sound Warning on Working From Home
Cyber warriors on NATO's eastern edge are warning that the growing number of people working from home globally due to the pandemic is increasing vulnerability to cyber attacks. [Read More]
DevSecOps Company apiiro Emerges From Stealth With $35 Million in Funding
DevSecOps and risk management solutions provider apiiro on Tuesday emerged from stealth mode with $35 million in funding. [Read More]
Online Infrastructure Security Firm Cyberpion Emerges From Stealth
Online infrastructure security solutions provider Cyberpion on Tuesday emerged from stealth mode after raising $8.25 million in seed funding. [Read More]
Study Finds 400,000 Vulnerabilities Across 2,200 Virtual Appliances
A scan of 2,200 virtual appliance images revealed the existence of over 400,000 vulnerabilities, including in the appliances of major vendors. [Read More]
Cloudflare Launches New Zero Trust Networking, Security Platform
Cloudflare announces Cloudflare One, a new cloud-based network-as-a-service solution designed to help organizations ensure that their systems remain secure while their employees work remotely. [Read More]
Illusive Networks Raises $24 Million in Series B1 Funding Round
Network security company Illusive Networks has raised $24 million in a Series B1 funding round. [Read More]
Cloud Security Company Accurics Raises $20 Million
Cloud security company Accurics raised $20 million across seed and Series A funding rounds in the past six months. [Read More]
Juniper Launches Adaptive Threat Profiling, New VPN Features
New additions to Juniper's portfolio are designed to provide that visibility and control by bringing security to every point of connection and allowing CISOs to know who and what is on the network. [Read More]
Internet Engineering Task Force Proposes Standard for Network Time Security
The Internet Engineering Task Force (IETF) has published RFC8915, its proposed standard for network time security (NTS). [Read More]
Cisco Acquires Kubernetes-Native Security Platform Portshift
Cisco this week announced plans to acquire Kubernetes-native security platform Portshift. [Read More]

FEATURES, INSIGHTS // Security Infrastructure

rss icon

Galina Antova's picture
How Security Programs Are Changing After COVID-19: Maximizing Resiliency
Galina Antova - Security Infrastructure
The COVID-19 crisis and its associated constraints has shown us that many of the activities we considered “priorities” before March are not really priorities.
Read full story
Gunter Ollmann's picture
Enterprise Threat Visibility Versus Real-World Operational Constraints
Gunter Ollmann - Network Security
The phrase “assume breach” has been transformational to enterprise security investment and defensive strategy for a few years but may now be close to retirement.
Read full story
Justin Fier's picture
It's Not Just an Unusual Login: Why Pay Attention to Threats Facing SaaS and Cloud?
Justin Fier - Cloud Security
Businesses should be emphasizing visibility, early threat detection, and focusing on understanding ‘normal’ activity rather than ‘bad.’
Read full story
Torsten George's picture
Takeaways From the "CryptoForHealth" Twitter Hack
Torsten George - Identity & Access
The tactics, techniques, and procedures (TTPs) used in the Twitter attack were not much different than in the majority of other data breaches and serve as valuable lessons for designing a modern cyber defense strategy.
Read full story
Alastair Paterson's picture
The Digital Ship is Full of Leaks. But There Are Ways to Keep it Afloat.
Alastair Paterson - Risk Management
Opportunities for accidental exposure of sensitive information are often compounded by multiple stakeholders using collaborative tools without the proper policies, oversight and security training.
Read full story
Laurence Pitt's picture
Security Automation Challenges to Adoption: Overcoming Preliminary Obstacles
Laurence Pitt - Network Security
To minimize the effect of an attack, an automated response is vital, which can reduce the amount of time between infection and resolution.
Read full story
John Maddison's picture
The Case for Intent-Based Segmentation with SD-WAN
John Maddison - Network Security
By combining verifiable trust, intent-based segmentation, and integrated security, organizations can establish a trustworthy, security-driven networking strategy.
Read full story
Jim Ducharme's picture
Two Musts for Managing a Remote Workforce: Identity Governance and Lifecycle
Jim Ducharme - Identity & Access
Let’s look at some real-world examples of the identity management challenges remote work is creating, and at what it means to rethink identity governance and lifecycle to meet those challenges.
Read full story
Laurence Pitt's picture
Defending Your Budget: How to Show ROI of Cybersecurity Investments
Laurence Pitt - Security Infrastructure
Developing an ROI model takes time – my recommendation would be to focus on a simple security project that will return high value to the business when proven successful.
Read full story
Torsten George's picture
Non-Human Identities: The New Blindspot in Cybersecurity
Torsten George - Identity & Access
The integration of identity with security is still work in progress, with less than half of businesses having fully implemented key identity-related access controls according to a research study.
Read full story