Application Security News and Articles
DataGrail announced a new Managed Services offering that offloads the burdens of day-to-day data privacy management so that companies can maintain their focus on strategy and impact. DataGrail Managed Services now handle customers’ DSR ...
The Akira ransomware operators claim to have compromised 63 organizations since March 2023, mostly SMBs.
The post Dozens of Organizations Targeted by Akira Ransomware appeared first on SecurityWeek.
Identity fraud losses are on the rise. Data security and General Data Protection Regulation (GDPR) are critical to address these issues.
The post Importance of Data Security and GDPR appeared first on Security Boulevard.
Clear Skye launched Clear Skye IGA 5.0, the company’s most significant product release to date. An identity security and governance solution built natively on the ServiceNow Platform, 5.0 enables businesses to simplify workflows, increase ...
In a memo issued on June 9, the Office of Management and Budget clarified details about how agencies will be required to collect cybersecurity attestations from software providers whose services they use.
The post SBOM Quality: CycloneDX and the ...
Today’s disruptive environment has caused small and medium-sized businesses (SMBs) to face unprecedented technological hurdles. And thanks to limited resources and a lack of cybersecurity experts, many SMBs are finding themselves even more ...
LEESBURG, Va. – July 26, 2023 – Cofense, the leading provider of phishing detection and response (PDR) solutions, today announced the general availability of Cofense Protect+ MSP, a multi-tenant, advanced email security and protection ...
A Rezilion report argued most organizations are wasting their limited remediation resources on vulnerabilities that may never be exploited.
The post Rezilion: Devs Wasting Time on Wrong Cybersecurity Vulnerabilities appeared first on Security ...
BreachRx launched Cyber RegScout, a product purpose-built to automate cybersecurity, privacy and data protection regulatory analysis. Built on BreachRx’s platform, Cyber RegScout empowers businesses to significantly reduce the time burden and ...
It’s official – I’m a Salter! I have joined the Salt senior leadership team as executive vice president of product. Given my background and security experience, the role immediately stood out to me. However, the more time I spent with Roey ...
Russia has sentenced Ilya Sachkov, co-founder of the Group-IB cybersecurity firm, to 14 years in prison on treason charges.
The post Russian Cybersecurity Firm Founder Jailed for 14 Years appeared first on SecurityWeek.
After releasing a National Cybersecurity Strategy that it promised would protect this country’s digital assets and infrastructure and also pave the way for a digital future for all, the White House unveiled a multi-pillar plan for implementing ...
Darktrace announces Darktrace HEAL, its AI-enabled product to help businesses more effectively prepare for, rapidly remediate, and recover from cyber-attacks. HEAL provides security teams with abilities to simulate real attacks within their own ...
Over 900,000 devices are impacted by an arbitrary code execution vulnerability in MikroTik RouterOS.
The post Code Execution Vulnerability Impacts 900k MikroTik Devices appeared first on SecurityWeek.
Dynatrace is expanding its Davis AI engine to create a hypermodal artificial intelligence (AI), converging fact-based, predictive- and causal-AI insights with new generative-AI capabilities. The expanded Davis AI will boost productivity across ...
Seems that there is a deliberate backdoor in the twenty-year-old TErrestrial Trunked RAdio (TETRA) standard used by police forces around the world.
The European Telecommunications Standards Institute (ETSI), an organization that standardizes ...
SecurityWeek talks to Field CISOs, Fawaz Rasheed (VMware Carbon Black) and Nabil Hannan (NetSPI), about this emerging role.
The post CISO Conversations: Field CISOs From VMware Carbon Black and NetSPI appeared first on SecurityWeek.
Introduction The defence sector, vital to national security, is increasingly becoming a hotspot for insider risks. With a diverse array of entities, from large contractors to SMEs, and an intricate supply chain, the sector is an attractive target ...
Security and development teams know that managing vulnerabilities is complex and challenging. The ultimate aim of a vulnerability management program is to minimize the organization’s overall risk exposure by identifying, prioritizing, and ...
NEW YORK, July 26, 2023 – Rezilion, an automated software supply chain security platform, today announced a new report, “CVSS, EPSS, KEV: The New Acronyms – And The Intelligence – You Need For Effective Vulnerability Management,” ...
