Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Over the last 24 hours, two Silicon Valley startups jostling for space in the corporate email security market raised venture capital funding at a combined valuation of $5.1 billion. [Read More]
Microsoft patches at least 73 documented security flaws in the Windows ecosystem and warned that unknown attackers are already launching zero-day man-in-the-middle attacks. [Read More]
Adobe ships patches for at least 18 serious security defects in multiple enterprise-facing products and warned that unpatched systems are at risk of remote code execution attacks [Read More]
CRV and Insight Partners led a $100 million investment round for Zero Trust VPN provider Tailscale. [Read More]
Apple, Google and Microsoft announced plans to expand support for a sign-in standard from the FIDO alliance and the World Wide Web Consortium (W3C) that aims to eliminate passwords altogether. [Read More]
By the end of 2023, GitHub will mandate that all code contributors secure their computers with at least one form of two-factor authentication (2FA) account protection. [Read More]
The U.S. government is barreling ahead with plans to mitigate future threats from quantum computing with a new White House memo directing federal agencies to jumpstart an all-hands-on-deck approach to migrating to quantum-resistant technologies. [Read More]
Threat hunters at Kaspersky find a malicious campaign that abuses Windows event logs to store fileless last stage Trojans and keep them hidden in the file system. [Read More]
Hubble Technology banks $9 million in venture capital funding to build an “agentless technology asset visibility” aimed at disrupting the asset management space. [Read More]
Infrastructure access management firm Teleport has raised $110 million in a Series C funding round led by Bessemer Venture Partners, which brings the total raised to $169.2 million and values the firm at $1.1 billion. [Read More]
- 1 of 125
- ››
FEATURES, INSIGHTS // Identity & Access
Defense-in-depth encourages a review of all tools in place, ultimately defining a strategy to use everything available to create a layered security approach between users (or potential attackers) and applications/microservices in use.
Zero-trust network access (ZTNA) simplifies secure connectivity by providing seamless, per-use access to applications, no matter where the user or application may be located.
While there is no silver bullet to prevent cybersecurity attacks, ZTNA has become a necessity for organizations on their digital transformation journey by allowing to minimize the attack surface while ensuring the productivity of remote workers.
As it has become clear that remote/hybrid work is here to stay, IT security practitioners must figure out how to enable a secure and resilient anywhere workforce to minimize their future risk exposure.
The most common “new project” in identity nowadays is in Zero Trust. This concept has been evolving for years, and is building controls around an interesting premise: the idea that every resource will one day be internet-facing.
Josh Goldfarb debunks the most common myths surrounding fraud, security and user experience.
Domain controllers, Active Directory, and servers are prime reconnaissance targets to hunt for additional privileged credentials and privileged access.
Ultimately, organizations must assume that bad actors are already in their networks. And consumers must realize they’re constant targets.
Today’s dynamic threatscape requires security professionals to adjust to an ever-expanding attack surface.
The tactics, techniques, and procedures (TTPs) used in the Twitter attack were not much different than in the majority of other data breaches and serve as valuable lessons for designing a modern cyber defense strategy.
- 1 of 11
- ››
Get the Daily Briefing
- Cornami Raises $68 Million for Quantum Secure Computing on Encrypted Data
- US Government Says North Korean IT Workers Enable DPRK Hacking Operations
- Now Live: SecurityWeek Threat Intelligence Summit Virtual Event
- The Vulnerable Maritime Supply Chain - a Threat to the Global Economy
- National Cybersecurity Agencies Describe Commonly Used Initial Access Techniques
- Over 380,000 Kubernetes API Servers Exposed to Internet: Shadowserver
- Carlyle to Acquire Defense Contractor ManTech in $4.2 Billion Deal
- NVIDIA Patches Code Execution Vulnerabilities in Graphics Driver
- Large-Scale Attack Targeting Tatsu Builder WordPress Plugin
- New Special Interest Group Aims to Enhance ICS/OT Cyber Defenses
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy