News

What AppSec and developers working in cloud-native environments need to know

Application Security, Backslash Security, cloud computing, containers, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, IaaS, microservices, News, opinion, serverless, software /

What AppSec and developers working in cloud-native environments need to know 20/09/2023 at 08:05 By Help Net Security All enterprise organizations are, in essence, software publishers, regardless of their industry. This is because every enterprise relies on custom software applications for managing internal processes, interacting with customers, or analyzing data, making them creators and distributors […]

React to this headline:

Loading spinner

What AppSec and developers working in cloud-native environments need to know Read More »

18 free Microsoft Azure cybersecurity resources you should check out

Azure, cloud security, Don't miss, Hot stuff, how-to, Microsoft, Microsoft Azure, News, skill development, strategy, tips, training /

18 free Microsoft Azure cybersecurity resources you should check out 20/09/2023 at 07:33 By Help Net Security Far exceeding a traditional public cloud platform, Azure is a comprehensive suite of over 200 products and cloud services engineered to solve current challenges and pave the way for the future. Whether you’re looking to build, run, or

React to this headline:

Loading spinner

18 free Microsoft Azure cybersecurity resources you should check out Read More »

Security concerns and outages elevate observability from IT niche to business essential

automation, cybersecurity, data, monitoring, News, remediation, report, SolarWinds, survey /

Security concerns and outages elevate observability from IT niche to business essential 20/09/2023 at 06:47 By Help Net Security Enterprises that leverage observability increase operational efficiency and grow revenue, according to SolarWinds. The report explores how enterprises can act proactively to maximise the advantages of their observability solutions, integrate best practices into implementations, and mitigate

React to this headline:

Loading spinner

Security concerns and outages elevate observability from IT niche to business essential Read More »

Strong compliance management is crucial for fintech-bank partnerships

Banks, Compliance, cybersecurity, financial industry, investment, Ncontracts, News, report, survey /

Strong compliance management is crucial for fintech-bank partnerships 20/09/2023 at 06:02 By Help Net Security 72% of banks and credit unions are prioritizing compliance when evaluating fintechs, citing it as their top criteria in the due diligence process, according to Ncontracts. As banks and credit unions evaluate fintech partnerships, cybersecurity (62%) is also a critical

React to this headline:

Loading spinner

Strong compliance management is crucial for fintech-bank partnerships Read More »

Never use your master password as a password on other accounts

authentication, credentials, Don't miss, Hot stuff, News, password manager, passwords, survey /

Never use your master password as a password on other accounts 19/09/2023 at 08:33 By Helga Labus One in three Americans now use password managers, up from one in five in 2022, according to an online poll by Security.org that quizzed 1,051 American adults on how they use passwords and password managers. How users choose

React to this headline:

Loading spinner

Never use your master password as a password on other accounts Read More »

An inside look at NetSPI’s impressive Breach and Attack Simulation platform

CISO, cybersecurity, Don't miss, Features, Hot stuff, NetSPI, News, opinion /

An inside look at NetSPI’s impressive Breach and Attack Simulation platform 19/09/2023 at 08:02 By Mirko Zorz In this Help Net Security interview, Scott Sutherland, VP of Research at NetSPI, delves into the intricacies of their Breach and Attack Simulation (BAS) platform and discusses how it offers unique features – from customizable procedures to advanced

React to this headline:

Loading spinner

An inside look at NetSPI’s impressive Breach and Attack Simulation platform Read More »

LLM Guard: Open-source toolkit for securing Large Language Models

Artificial Intelligence, ChatGPT, Don't miss, GitHub, News, open source /

LLM Guard: Open-source toolkit for securing Large Language Models 19/09/2023 at 07:34 By Mirko Zorz LLM Guard is a toolkit designed to fortify the security of Large Language Models (LLMs). It is designed for easy integration and deployment in production environments. It provides extensive evaluators for both inputs and outputs of LLMs, offering sanitization, detection

React to this headline:

Loading spinner

LLM Guard: Open-source toolkit for securing Large Language Models Read More »

Companies still don’t know how to handle generative AI risks

Artificial Intelligence, cybersecurity, generative AI, ISG, News, report, survey /

Companies still don’t know how to handle generative AI risks 19/09/2023 at 06:32 By Help Net Security Energized by the hype around generative AI, enterprises are aggressively pursuing practical applications of this new technology while remaining cautious about the risks, according to ISG. ISG research shows 85% of companies surveyed believe investments in generative AI

React to this headline:

Loading spinner

Companies still don’t know how to handle generative AI risks Read More »

Organizations are racing against time to meet the PCI DSS 4.0 deadline

Bluefin, Compliance, cybersecurity, data, data breach, data security, News, online payment, report, survey /

Organizations are racing against time to meet the PCI DSS 4.0 deadline 19/09/2023 at 06:02 By Help Net Security Payment data security concerns remain widespread as organizations undertake significant lift to meet the PCI DSS 4.0 deadline, according to Bluefin. 94% of survey respondents said they have significant or very significant concerns pertaining to payment

React to this headline:

Loading spinner

Organizations are racing against time to meet the PCI DSS 4.0 deadline Read More »

Kubernetes vulnerabilities allows RCE on Windows endpoints (CVE-2023-3676)

Akamai, Don't miss, Hot stuff, Kubernetes, News, security update, vulnerability, Windows /

Kubernetes vulnerabilities allows RCE on Windows endpoints (CVE-2023-3676) 18/09/2023 at 14:32 By Helga Labus Three high-severity Kubernetes vulnerabilities (CVE-2023-3676, CVE-2023-3893, CVE-2023-3955) could allow attackers to execute code remotely and gain control over all Windows nodes in the Kubernetes cluster. About the vulnerabilities CVE-2023-3676, discovered by Akamai researcher Tomer Peled, is a command injection vulnerability that

React to this headline:

Loading spinner

Kubernetes vulnerabilities allows RCE on Windows endpoints (CVE-2023-3676) Read More »

Industrial cybersecurity giant Dragos rakes in new funding, sets sights on global expansion

cybersecurity, Don't miss, Dragos, Features, Government, Hot stuff, investment, Malware, News, opinion, Threat Intelligence, threats /

Industrial cybersecurity giant Dragos rakes in new funding, sets sights on global expansion 18/09/2023 at 12:32 By Mirko Zorz Today, Dragos revealed that it has secured a $74 million Series D extension funding round, spearheaded by the strategic operating and investment firm WestCap. The funding extension comes when global governments and infrastructure providers increasingly acknowledge

React to this headline:

Loading spinner

Industrial cybersecurity giant Dragos rakes in new funding, sets sights on global expansion Read More »

Regulatory activity forces compliance leaders to spend more on GRC tools

Compliance, cybersecurity, Gartner, Government, GRC, investment, monitoring, News, regulation, report, Risk Management, survey, training /

Regulatory activity forces compliance leaders to spend more on GRC tools 18/09/2023 at 07:48 By Help Net Security Legal and compliance department investment in GRC (governance, risk, and compliance) tools will increase 50% by 2026, according to Gartner. Assurance leaders are seeking out technology solutions to help them address increasing regulatory attention on executive risk

React to this headline:

Loading spinner

Regulatory activity forces compliance leaders to spend more on GRC tools Read More »

Critical business app outages cost $500,000 per hour of downtime

cybersecurity, investment, monitoring, New Relic, News, report, survey /

Critical business app outages cost $500,000 per hour of downtime 18/09/2023 at 07:01 By Help Net Security Observability’s adoption is on the rise and full-stack observability leads to better service-level metrics, such as fewer, shorter outages and lower outage costs, according to New Relic. Respondents receive a median $2 return per $1 of investment in

React to this headline:

Loading spinner

Critical business app outages cost $500,000 per hour of downtime Read More »

PostgreSQL 16: Where enhanced security meets high performance

database management, database security, News, open source, PostgreSQL /

PostgreSQL 16: Where enhanced security meets high performance 18/09/2023 at 06:03 By Help Net Security PostgreSQL is an open-source object-relational database platform with a track record of over 25 years of ongoing development. Its reputation is solid for its reliability, extensive features, and high performance. PostgreSQL 16 enhances its performance through significant upgrades in query

React to this headline:

Loading spinner

PostgreSQL 16: Where enhanced security meets high performance Read More »

Week in review: 17 free AWS cybersecurity courses, exploited Chrome zero-day

News, Week in review /

Week in review: 17 free AWS cybersecurity courses, exploited Chrome zero-day 17/09/2023 at 11:01 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: The blueprint for a highly effective EASM solution In this Help Net Security interview, Adrien Petit, CEO at Uncovery, discusses the benefits

React to this headline:

Loading spinner

Week in review: 17 free AWS cybersecurity courses, exploited Chrome zero-day Read More »

Modernizing fraud prevention with machine learning

authentication, biometrics, cybersecurity, Don't miss, Experian, Expert analysis, Expert corner, fraud, Hot stuff, identity, identity theft, machine learning, News, opinion, Privacy /

Modernizing fraud prevention with machine learning 15/09/2023 at 08:33 By Help Net Security The number of digital transactions has skyrocketed. As consumers continue to spend and interact online, they have growing expectations for security and identity verification. As fraudsters become savvier and more opportunistic, there’s an increased need for businesses to protect customers from fraud

React to this headline:

Loading spinner

Modernizing fraud prevention with machine learning Read More »

New infosec products of the week: September 15, 2023

Armis, Cisco, CTERA, Kingston Digital, News, Purism, Swissbit /

New infosec products of the week: September 15, 2023 15/09/2023 at 08:02 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Armis, Cisco, CTERA, Kingston Digital, Purism, and Swissbit. Librem 11 tablet sets new standard for privacy and security with Linux-based PureOS Purism introduced the

React to this headline:

Loading spinner

New infosec products of the week: September 15, 2023 Read More »

Enterprises persist with outdated authentication strategies

attacks, authentication, cybercriminals, cybersecurity, dark web, Don't miss, Enzoic, MFA, News, password management, passwordless, passwords, policy, report, strategy, vulnerability assessment /

Enterprises persist with outdated authentication strategies 15/09/2023 at 07:33 By Help Net Security Despite authentication being a cornerstone of cybersecurity, risk mitigation strategies remain outdated, according to new research from Enzoic. With the attack surface expanding and the increasing sophistication of cyber threats, organizations are struggling to deliver secure and user-friendly authentication. The research uncovered

React to this headline:

Loading spinner

Enterprises persist with outdated authentication strategies Read More »

Cybersecurity risks dampen corporate enthusiasm for tech investments

5G, access control, Artificial Intelligence, cybersecurity, generative AI, HPE, hybrid cloud, Innovation, machine learning, network, News, remote working, report, SASE /

Cybersecurity risks dampen corporate enthusiasm for tech investments 15/09/2023 at 07:02 By Help Net Security 64% of IT leaders believe that cybersecurity concerns are negatively impacting their organization’s willingness to invest in innovative tech, according to a report by HPE Aruba Networking. This is perhaps unsurprising as 91% either consider emerging tech a danger or

React to this headline:

Loading spinner

Cybersecurity risks dampen corporate enthusiasm for tech investments Read More »

Generative AI lures DevOps and SecOps into risky territory

Application Security, Artificial Intelligence, cybersecurity, DevOps, generative AI, Government, News, open source, regulation, report, Sonatype, survey /

Generative AI lures DevOps and SecOps into risky territory 15/09/2023 at 06:36 By Help Net Security Application security leaders are more optimistic than developer leaders on generative AI, though both agree it will lead to more pervasive security vulnerabilities in software development, according to Sonatype. According to the surveyed DevOps and SecOps leaders, 97% are

React to this headline:

Loading spinner

Generative AI lures DevOps and SecOps into risky territory Read More »

Scroll to Top