Application Security News and Articles
All panel discussions and technical presentations from SecurityWeek's 2023 CISO Forum are available to watch free on demand.
The post Watch on Demand: 2023 CISO Forum Sessions appeared first on SecurityWeek.
Two months after noticing suspicious activity in its systems, PharMerica disclosed that nearly six million patients had their health care data stolen by threat actors. The large pharmacy services company, which has more than 2,500 locations in ...
Progress Software has asked customers to update their MOVEit Transfer installations again, to fix a third SQL injection vulnerability (CVE-2023-35708) discovered in the web application in less that a month. Previously, the Cl0p cyber extortion ...
The Microsoft 365 and Azure Portal outages users expirienced this month were caused by Layer 7 DDoS attacks, Microsoft has confirmed on Friday. The DDoS attacks against Microsoft 365 and Azure Portal Throughout the first half June 2023 Microsoft ...
A critical vulnerability (CVE-2023-35708) in MOVEit software could allow unauthenticated attackers to access database content.
The post MOVEit Customers Urged to Patch Third Critical Vulnerability appeared first on SecurityWeek.
This is a clever new side-channel attack:
The first attack uses an Internet-connected surveillance camera to take a high-speed video of the power LED on a smart card readeror of an attached peripheral deviceduring cryptographic operations. ...
In today’s digital landscape, organisations face an ever-increasing threat of cyberattacks. Since 2019, the number of cyberattacks globally has increased […]
The post How to Find Qualified Cyber Security Candidates appeared first on Security ...
Articles related to cyber risk quantification, cyber risk management, and cyber resilience.
The post Debunking the Misconception That CRQ Requires a Lot of Data Collection appeared first on Security Boulevard.
Strengthening Blockchain Security: Secureflo’s Cybersecurity Capabilities Strengthening Blockchain Security: Secureflo’s Cybersecurity Capabilities Introduction Introduction Blockchain technology has revolutionized various industries, ...
The number one cybersecurity threat vector is unauthorized access via unused, expired or otherwise compromised access credentials.
Related: The rising role of PAM for small businesses
In the interconnected work environment, where users need ...
Image Courtesy Of Washington State University - Everett
Permalink
The post Juneteenth 2023 appeared first on Security Boulevard.
What is the CJIS? The Criminal Justice Information Services was established by the FBI in 1992 as an intelligence hub that connected the criminal justice community, including law enforcement, national security, and intelligence groups. Its ...
When employees, contractors and service providers leave an organization, they take with them knowledge, capabilities, and professional achievements. They should leave behind any proprietary or confidential data belonging to the organization, but ...
In this Help Net Security video, Nick Mistry, SVP and CISO at Lineaje, offers tips to simplify the process of compliance with U.S. Executive Order 14028. A key part of U.S. Executive Order 14028 is for organizations that work with federal ...
In this Help Net Security round-up, we present parts of previously recorded videos from experts in the field that discuss about how AI technologies will impact the cybersecurity industry in the next few years. AI is a powerful tool in ...
Organizations that closely align their cybersecurity programs to business objectives are 18% more likely to achieve target revenue growth and market share and improve customer satisfaction, as well as 26% more likely to lower the cost of ...
Decades ago, Tony Turner, CEO of Opswright and author of Software Transparency: Supply Chain Security in an Era of a Software-Driven Society, faced an SQL Slammer worm. Having been one of the 75,000 infected users, he called upon his skills and ...
Our thanks to BSidesSF for publishing their presenter’s superlative BSidesSF 2023 content on the organizations’ YouTube channel.
Permalink
The post BSidesSF 2023 – Adnan Khan – Securing The Pipeline: Protecting Self-Hosted ...
What do firms need to know about exfiltration of data in order to keep their operations secure?
The post Why Exfiltration of Data is the Biggest Cyberthreat Facing Your Business appeared first on Security Boulevard.
Early June 2023 disruptions to Microsoft’s flagship office suite were Layer 7 DDoS attacks by a shadowy new hacktivist group dubbed Storm-1359 by Microsoft.
The post Microsoft Says Early June Disruptions to Outlook, Cloud Platform, Were ...
