Hot Topics

Governance, Risk & Compliance

cloud security, cloud, cloud environment, data privacy, data protection, cloud security teams, security, cloud-native, Palo Alto Dell zero trust Network Security multi-cloud zero-trustQualys multi-cloud Wi-Fi 6 access point zero-trust cloud security remote data protection

Securing the Future: Navigating the Complexities of Cloud Security

| | AI solutions, Cloud, Cloud Security, Phishing
Cloud environments are complex, and can create a difficult territory for security and IT teams to monitor and comprehend ...
Security Boulevard
cloud security, cloud, cloud environment, data privacy, data protection, cloud security teams, security, cloud-native, Palo Alto Dell zero trust Network Security multi-cloud zero-trustQualys multi-cloud Wi-Fi 6 access point zero-trust cloud security remote data protection

Navigating the Complexities of Data Privacy: Balancing Innovation and Protection

| | Data Privacy, data protections, GDPR, regulations
As the digital landscape expands exponentially, so do efforts to safeguard personal data, notably through regulations and other actions ...
Security Boulevard
2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional

2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional

| | Blog Posts, Compliance Operations, risk management
Each year, we ask over 1,000 IT and GRC professionals about their priorities for the coming year and operational aspects, like changes to budgets, staffing, challenges, and much more. What we found ...
Hyperproof
Scary skeletons

Telegram Privacy Nightmare: Don’t Opt In to P2PL

| | 2-step verification, 2fa, 2FA apps, 2FA bypass, 2FA Flaws, 2FA/MFA, Access control and Identity Management, Cloud MFA, digital identity verification, iam, ID verification, MFA, , mfasecurity, Multi-Factor Authentication (MFA), P2P, SB Blogwatch, SMS, SMS messages, SMS Toll Fraud, Telegram, Telegram app, two-factor-authentication.2fa, Verify 2FA
Scary SMS shenanigans: Avoid Telegram’s new “Peer-To-Peer Login” program if you value your privacy or your cellular service ...
Security Boulevard

Get Clean, Stay Clean, Optimize – The Cure for Distressed IGA Deployments

| | Access Governance, application access governance, IGA, risk management
Gartner recently released a report titled “Avoid These Top 5 Mistakes When Deploying IGA” by analyst Brian Guthrie. In the report, Gartner estimates that 50% of IGA deployments are in “distress.” The ...
Pathlock
generative AI security, Microsoft AI cybersecurity

Embrace Generative AI for Security, But Use Caution

| | AI, Automation, Cybersecurity, generative AI, threat detection
Generative AI will be a net positive for security, but with a large caveat: It could make security teams dangerously complacent ...
Security Boulevard
data, compliance, audit Box data security, management, organizations, GDPR, Strike Force privacy, vendors, RFPs, cloud, data security DLP Iran DUMPS Conti Hackers Sandbox government HackerOne IBM data security

Cybersecurity a Top Priority for Audit Committees

| | Audit, Compliance, Cybersecurity, Deloitte, governance, risk
Audit committees consider cybersecurity their primary oversight focus as the SEC enforces tougher cyberattack disclosure regulations ...
Security Boulevard

Log Formatting Best Practices for Improved Security

| | Blog, security log management, security operations
In the event of a security breach, logs play a crucial role in understanding the ...
Blog – Coro Cybersecurity
a PRC flag flies in a stiff breeze

China Steals Defense Secrets ‘on Industrial Scale’

| | china, china espionage, China-linked Hackers, Chinese, Chinese Communists, chinese government, chinese hacker, Chinese hackers, Chinese Intelligence, Chinese state-sponsored hacking group, Chinese Threat Actors, ConnectWise, ConnectWise Vulnerabilities, CVE-2022-0185, CVE-2022-3052, CVE-2023-22518, CVE-2024-1709, Data Stolen By China, Dawn Calvary, f5, F5 BIG-IP, F5 BIG-IP vulnerability, Genesis Day, gov.uk, Mandiant, MSS, MSS Hackers, Peoples Republic of China, PRC, PRC Espionage, SB Blogwatch, ScreenConnect, Teng Snake, uk, UNC302, UNC5174, Uteus, Xiaoqiying
UNC5174 ❤ UNC302: CVSS 10 and 9.8 vulnerabilities exploited by Chinese threat actor for People’s Republic ...
Security Boulevard
The Splunk Platform

Splunk, Azure, or Sentinel for FedRAMP/NIST Compliance

| | Compliance
Whenever a business wants to work with the federal government, they are going to have to comply with certain frameworks to guarantee that, as part of the federal supply chain, it is ...
Ignyte
Load more