Authentication, Cyber Risk and Information Security

How Diversity and Inclusion Initiatives Can Reduce Cyber Risk

Centraleyes

NOVEMBER 26, 2023

It involves fostering a culture where people can bring their authentic selves to work, school, or any other setting without fear of discrimination or exclusion. Including diverse groups and minorities in risk mitigation in cyber security is not overvalued; in fact, it’s increasingly essential for cyber risk reduction.

Cyber Risk

Cyber Risk Risk Cybersecurity Education

News alert: AppDirect poll reveals company leaders losing sleep over cyber risks, compliance

The Last Watchdog

NOVEMBER 28, 2023

But that’s not enough to assuage their anxiety and instill confidence that they’re well protected against security threats. Their top areas of concern include cybersecurity risk (58%), information security risk (53%) and compliance risk (39%). Human error is among the top causes of security breaches.

Cyber Risk

Cyber Risk Risk B2B Social Engineering

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

The Last Watchdog

DECEMBER 31, 2019

Related: Good to know about IoT Physical security is often a second thought when it comes to information security. Despite this, physical security must be implemented correctly to prevent attackers from gaining physical access and taking whatever they desire.

Cyber Risk

Cyber Risk Risk Firewall Surveillance

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

How to Use Your Asset Management Software to Reduce Cyber Risks

CyberSecurity Insiders

APRIL 29, 2022

For instance, the team of WhatsApp introduced a new browser extension from early this week to keep their app service users via web safe and secure. . . The extension is called Code Verify and reassures the WhatsApp web version whether their session is authenticated or not, eliminating the threat of the text being tampered in transmission.

Cyber Risk

Cyber Risk Software Risk IoT

Passwordless? Imagining the Future of Authentication

The Security Ledger

DECEMBER 9, 2019

Gerald Beuchelt, the Chief Information Security Officer at LogMeIn talks about how changes in authentication may deliver a passwordless future. Imagining the Future of Authentication appeared first on The Security. Will we ever rid ourselves of them and, if so, how? The post Passwordless? Read the whole entry. »

Authentication

Authentication Passwords Cyber Risk Information Security

Spotlight Podcast: How AI Is Reshaping The Cyber Threat Landscape

The Security Ledger

MAY 2, 2024

Jim and I talk about the findings of DirectDefense’s latest Security Operations Threat Report and dig into the intriguing ways artificial intelligence (AI) is shaping both cyberattack and defense automation strategies. Jim Broome is the President and CTO at DirectDefense.

Cyber threats

Cyber threats Artificial Intelligence Threat Reports Technology

Palo Alto Networks fixes a critical flaw in firewall PAN-OS

Security Affairs

JUNE 29, 2020

Palo Alto Networks addressed a critical flaw in the PAN-OS of its next-generation firewalls that could allow attackers to bypass authentication. OS ) that powers its next-generation firewalls that could allow unauthenticated network-based attackers to bypass authentication. x base score of 10. . x base score of 10.

Firewall

Firewall Authentication VPN Advertising

MY TAKE: Agile cryptography is coming, now that ‘attribute-based encryption’ is ready for prime time

The Last Watchdog

MAY 3, 2021

All of the technical innovation cybersecurity vendors are churning out to deal with ever-expanding cyber risks, at the end of the day, come down to protecting encrypted data. I had the chance to learn more about ABE from Brent Waters, a distinguished scientist in the Cryptography & Information Security (CIS) Lab at NTT Research.

Encryption

Encryption Retail Digital transformation Authentication

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance.

Insurance

Insurance Education Risk Cyber Insurance

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Thales Cloud Protection & Licensing

APRIL 29, 2024

The Cyber Resilience Act complements other legislation, specifically the NIS2 Directive (see below). NIS2 (Network and Information Security Directive) The updated NIS Directive significantly expands the scope and rigor of cybersecurity requirements across the European Union.

Risk

Risk Manufacturing Digital transformation Cybersecurity

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

The Last Watchdog

MARCH 17, 2021

Ongoing basic research in advanced cryptography concepts is pivotal to putting the brakes on widening cyber risks and ultimately arriving at a level of privacy and security that makes sense. Along the way, of course, cybersecurity must get addressed. Two different cryptographic keys – a public key and a private key – get issued.

Digital transformation

Digital transformation Encryption Technology Mobile

Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers

Security Affairs

JULY 20, 2022

CVE-2022-2141 (CVSS score: 9.8) – Improper authentication allows a user to send some SMS commands to the GPS tracker without a password. CVE-2022-33944 (CVSS score: 6.5) – The main web server has an authenticated IDOR vulnerability on POST parameter “Device ID,” which accepts arbitrary Device IDs.

Manufacturing

Manufacturing Passwords Mobile Authentication

Security Roundup March 2024

BH Consulting

MARCH 21, 2024

Creeping cyber risk grabbing global headlines Ransomware keeps reminding us of the strong connection between a cybersecurity incident and financial loss. Returning to the healthcare space, the Irish Pharmacy Union has a guide to avoiding ransomware, produced by BH Consulting’s information security consultant Brendan Mooney.

Cyber threats

Cyber threats Ransomware Healthcare Risk

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

The Last Watchdog

FEBRUARY 25, 2019

The IAM vendors took single sign-on to the next level, adding multi-factor authentication and other functionalities. These vendors drilled down on “governance and attestation,” coming up with advanced ways to enable companies to monitor and report cyber risk profiles to government and industry auditors.

Government

Government Authentication Technology Data breaches

Top 5 Strategies for Vulnerability Mitigation

Centraleyes

DECEMBER 6, 2023

Vulnerability management is a critical element of information security. The technology surrounding information security is developing at a rapid pace and vulnerabilities are inevitable. Using a dedicated cybersecurity risk management platform can help you to stay informed of new vulnerabilities and threats.

Risk

Risk Cyber Risk Software Information Security

The Role IaaS Providers Play in Elevating Security Posture

CyberSecurity Insiders

APRIL 27, 2022

They are responsible for the security of their data centers and other hardware, including virtual machines, disks and networks. They typically have strict access guidelines to their physical location, raised floor set-ups and multiple forms of authentication. An infrastructure that is insecure puts their business at risk.

Cyber Attacks

Cyber Attacks Technology Encryption Risk

Security Roundup September 2022

BH Consulting

SEPTEMBER 7, 2022

As demand for cyber risk insurance increases, two recent developments could have policyholders scrambling to check their cover. Dark Reading said it should prompt businesses to reevaluate their cyber risk policies. And the cyber insurance market keeps growing. Overcoming obstacles to passwordless authentication.

Insurance

Insurance Social Engineering Cyber Risk Cyber Insurance

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Security Boulevard

APRIL 29, 2024

The Cyber Resilience Act complements other legislation, specifically the NIS2 Directive (see below). NIS2 (Network and Information Security Directive) The updated NIS Directive significantly expands the scope and rigor of cybersecurity requirements across the European Union.

Risk

Risk Manufacturing Cybersecurity Digital transformation

What Is a SaaS Security Checklist? Tips & Free Template

eSecurity Planet

APRIL 9, 2024

Data Security & Threat Detection Framework The data security and threat detection framework serves as the foundation for data protection plans, protecting intellectual property, customer data, and employee information. Do you use the NIST 800-53 Risk Management Framework to examine IT risks?

Risk

Risk Threat Detection Data breaches Encryption

NIS2 Framework: Your Key To Achieving Cybersecurity Excellence

Centraleyes

JANUARY 21, 2024

As a global trailblazer in information security and data protection regulation, the EU continues to lead the way in comprehensive cybersecurity standards. Conduct assessments to improve visibility into control effectiveness and cyber maturity levels within your organization.

Cybersecurity

Cybersecurity Energy and Utilities Cyber threats Risk

Spotlight Podcast: Global Audit Finds Small Firms struggle with Password Hygiene

The Security Ledger

OCTOBER 16, 2019

In this Spotlight edition of our podcast sponsored by LastPass* we’re joined by LogMeIn Chief Information Security Officer Gerald Beuchelt to talk about LastPass’s third annual Global Password Security Report, which finds password hygiene improving at large companies, but lagging at smaller firms.

Passwords

Passwords Technology Password Management Cyber Risk

7 Things Every CISO Needs to Know About PKI

Security Boulevard

OCTOBER 7, 2022

With PKI, CISOs and other information security specialists can implement hardware, software, policies, and procedures to better establish, manage, distribute, implement, and protect digital certificates and key policies. Reduce risk and achieve compliance. See how Zero Touch PKI Can Be Customized to the Exact Security You Need!

CISO

CISO Risk Cyber Attacks Technology

Spotlight on Cybersecurity Leaders: Krista Arndt

SecureWorld News

AUGUST 21, 2023

Krista Arndt is the Chief Information Security Officer for United Musculoskeletal Partners (UMP). She has worked in and around security, risk, and governance since 2008 in various roles. A : Multi-factor- authentication (MFA) on personal accounts.

Cybersecurity

Cybersecurity Healthcare Risk Cyber Risk

CISA warns of potential critical threats following attacks against Ukraine

Security Affairs

JANUARY 19, 2022

“This CISA Insights is intended to ensure that senior leaders at every organization in the United States are aware of critical cyber risks and take urgent, near-term steps to reduce the likelihood and impact of a potentially damaging compromise. ” reads the insights” document.

Malware

Malware Cyber Attacks Government Ransomware

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Security Affairs

APRIL 30, 2020

The threat actors leverage perfectly orchestrated social engineering technique by “persuading” people holding significant corporate positions to open a non-malicious PDF email attachment coming from an authentic address in their contacts. The page resembles an authentic Microsoft Office 365 file sharing page.

Phishing

Phishing Accountability Financial Services Cloud Migration

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Herjavec Group

AUGUST 2, 2021

He has over 30 years of experience in information security and has established himself as a leading voice in business and cybersecurity. Adam is the VP of Managed Security Services at Herjavec Group and has extensive experience in risk management & compliance, security operations, incident response, and cloud adoption.

InfoSec

InfoSec Cybersecurity Computers and Electronics Marketing

Cyber Insurance and the Changing Global Risk Environment

Security Affairs

APRIL 22, 2022

The events of the past two years have made this shift clear: from ransomware attacks to the challenges of managing distributed workforces, digital risk is different. Our reliance on digital technology and the inherited risk is a key driving factor for buying cyber risk insurance.

Cyber Insurance

Cyber Insurance Insurance Risk Technology

CASB: Decisive Role of Cloud Access Security Brokers

Spinone

DECEMBER 27, 2018

The Cloud is changing, and cloud security solutions must evolve to keep the pace. In this article we will explore how to anticipate the unexpected emerging cyber risks and establish proactive cyber-resilience for effective IT operations and business continuity. How are users authenticate into those cloud apps?

Risk

Risk Cyber Risk Technology Marketing

HITRUST vs. HIPAA: Ensuring Data Security and Compliance

Centraleyes

NOVEMBER 5, 2023

These assessors can identify strengths and weaknesses in your information security program and offer recommendations. Penalties for Breaches/Non-Compliance: HIPAA imposes defined penalties for security breaches, including fines and potential criminal consequences, depending on the violation.

Healthcare

Healthcare Risk Insurance Penetration Testing

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

I’m Robert Vamosi and in this episode I’m talking about our right to repair, how some high tech companies might want to limit that right, and how there’s a group of information security professionals who are volunteering their free time to fight for those rights in local legislation.

InfoSec

InfoSec Manufacturing Technology Software

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

I’m Robert Vamosi and in this episode I’m talking about our right to repair, how some high tech companies might want to limit that right, and how there’s a group of information security professionals who are volunteering their free time to fight for those rights in local legislation.

InfoSec

InfoSec Manufacturing Technology Software

Cyber Security Informer

How Diversity and Inclusion Initiatives Can Reduce Cyber Risk

News alert: AppDirect poll reveals company leaders losing sleep over cyber risks, compliance

Webinars

Trending Sources

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

Webinars

How to Use Your Asset Management Software to Reduce Cyber Risks

Passwordless? Imagining the Future of Authentication

Spotlight Podcast: How AI Is Reshaping The Cyber Threat Landscape

Palo Alto Networks fixes a critical flaw in firewall PAN-OS

MY TAKE: Agile cryptography is coming, now that ‘attribute-based encryption’ is ready for prime time

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers

Security Roundup March 2024

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

Top 5 Strategies for Vulnerability Mitigation

The Role IaaS Providers Play in Elevating Security Posture

Security Roundup September 2022

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

What Is a SaaS Security Checklist? Tips & Free Template

NIS2 Framework: Your Key To Achieving Cybersecurity Excellence

Spotlight Podcast: Global Audit Finds Small Firms struggle with Password Hygiene

7 Things Every CISO Needs to Know About PKI

Spotlight on Cybersecurity Leaders: Krista Arndt

CISA warns of potential critical threats following attacks against Ukraine

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Cyber Insurance and the Changing Global Risk Environment

CASB: Decisive Role of Cloud Access Security Brokers

HITRUST vs. HIPAA: Ensuring Data Security and Compliance

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Stay Connected