Category: Cyber Defense Magazine

Now more than ever before, our healthcare data is under attack. Of all of the sensitive information available on the dark web, medical records are among the most expensive, costing on… The post A CISO’s Guide to Managing Cyber Risk in…

Read more →

The OWASP MAS project continues to lead the way in mobile application security. This article describes the resources and tools which have recently been added to OWASP MAS, which provides… The post Why The Open Web Application Security Project (OWASP)…

Read more →

Software supply chain attacks have emerged as a serious threat in the rapidly evolving field of cybersecurity, especially in medical devices. As these devices become more and more interconnected and… The post The Critical Role of Sboms (Software Bill of…

Read more →

It’s common knowledge in the cybersecurity industry that ransomware is on the rise, with median demands rising 20% year-over-year across virtually all industries. But it’s not only the ransom sums… The post Ransomware Tactics Are Shifting. Here’s How to Keep…

Read more →

Remote work is here to stay, with nearly a quarter of the U.S. workforce (22%) expected to be working remotely by 2025. In fact, 42% of office employees have stated they would… The post 12 Ways to Protect Your Business from Hackers…

Read more →

On almost a monthly basis, the US Cybersecurity & Infrastructure Security Agency (CISA) publishes advisories about the latest cybersecurity risks, attacks and vulnerabilities to help organizations defend and protect themselves… The post Boost Operational Resilience: Proactive Security with CORA Best…

Read more →

As cyber threats continue to rise, enterprises can rely on unexpected allies for support: their insurance brokers. Brokers are not only able to secure robust cyber insurance coverage, they are… The post More Than Sales… How Brokers Can Play a…

Read more →

Today, email-based attacks are increasingly sophisticated, however artificial intelligence (AI) can offer vital defense. With AI use, organizations can counteract advanced phishing, ransomware, and business email compromise (BEC) schemes that… The post Using Artificial Intelligence for Strengthening Email Security appeared…

Read more →

Identity’s New Frontier: How CISOs Can Navigate the Complex Landscape of Modern Access Management The cybersecurity battlefield has shifted. No longer are perimeter defenses and traditional identity management sufficient to… The post Innovator Spotlight: Oleria appeared first on Cyber Defense…

Read more →

The AI Security Frontier: Protecting Tomorrow’s Digital Landscape Cybersecurity leaders are facing an unprecedented challenge. As artificial intelligence transforms how organizations operate, a new breed of security solutions is emerging… The post Innovator Spotlight: Straiker appeared first on Cyber Defense…

Read more →

Continuous Vulnerability Management: The New Cybersecurity Imperative Security leaders are drowning in data but starving for actionable insights. Traditional penetration testing has become a snapshot of vulnerability that expires faster… The post Innovator Spotlight: Xcape appeared first on Cyber Defense…

Read more →

The Network’s Hidden Battlefield: Rethinking Cybersecurity Defense Modern cyber threats are no longer knocking at the perimeter – they’re already inside. The traditional security paradigm has fundamentally shifted, and CISOs… The post Innovator Spotlight: Corelight appeared first on Cyber Defense…

Read more →

Fast forward to today, and the importance of staying current with the latest tech trends can’t be overstated – it’s the difference between thriving and struggling to keep up. Professionals… The post Exploring Key Technology Trends for 2024 appeared first…

Read more →

In today’s rapidly evolving business landscape, software supply chain attacks are becoming increasingly common—and more sophisticated. The XZ backdoor attack, though largely contained, served as a stark reminder that the… The post Software Supply Chain Attacks appeared first on Cyber…

Read more →

Reinventing Browser Security for the Enterprise The Browser: Enterprise’s Biggest Blind Spot On any given day, the humble web browser is where business happens – email, SaaS apps, file sharing,… The post Innovator Spotlight: Seraphic appeared first on Cyber Defense…

Read more →

The Digital Battlefield: How AI is Reshaping Cybersecurity and Fraud Prevention Crocodiles aren’t the only predators lurking in the shadows anymore. Today’s most dangerous hunters wear digital camouflage, wielding artificial… The post Innovator Spotlight: Darwinium appeared first on Cyber Defense…

Read more →

Quantum computing is coming. When? No one knows for sure. Some experts say 10 years, others say 15 to 20 years. Many believe quantum computers will be here even sooner…. The post Quantum Computing is Coming: Enterprises Need to Prepare…

Read more →

In an era where data security is paramount, current encryption algorithms are sufficient to safeguard sensitive information. However, the advent of quantum computing, especially in the hands of malicious actors,… The post Finding Agility in Post Quantum Encryption (PQC) appeared…

Read more →

Imagine a world where today’s encryption, the very foundation of digital trust, can be unraveled in seconds. This isn’t science fiction – it’s the promise and peril of quantum computing…. The post Unbreakable? Defending Data in A Quantum-powered World appeared…

Read more →

It’s that time of the year again– time to renew the corporate cyber insurance policy, and as the most senior cyber security professional in the company you are asked to… The post Your Cyber Policy is a Security Control: Why…

Read more →

In the world of cybersecurity, the adage “a fool with a tool is still a fool” serves as a potent reminder that technology alone, no matter how advanced, cannot compensate… The post A Fool with a Tool is still a…

Read more →

SMBs are particularly vulnerable to cyberattacks. Here are alarming statistics from SecureWorld that should make Small- to Medium-sized Businesses immediately review their cybersecurity protocols: 46 percent of cyber breaches target businesses with… The post AI In Small Business Cybersecurity: Affordable and Effective…

Read more →

The adage “content is king” holds particularly true for the entertainment industry. Millions of people across the globe pursue film, video streaming and musical content, making these digital assets incredibly valuable… The post Hollywood’s Battle Against Digital Threats appeared first on…

Read more →

Unless you’ve been living on a desert island or in a cave for the past several years, you’ve surely heard and read about the transformative power of Artificial Intelligence (AI)…. The post Artificial Intelligence Isn’t a Silver Bullet appeared first…

Read more →

Securing the Digital Frontier: How Micro Storage Technology is Rewriting Cybersecurity Protocols The physical security of digital assets has long been the forgotten stepchild of cybersecurity strategy. While CISOs obsess… The post Innovator Spotlight: SwissBit appeared first on Cyber Defense…

Read more →

The Future of Cyber Resilience The algorithms are hunting us. Not with malicious code, but with something far more insidious. During a recent Black Hat Conference roundtable hosted by Chuck… The post Innovator Spotlight: 360 Privacy appeared first on Cyber…

Read more →

Securing the Digital Frontier: How AI is Reshaping Application Security The software development landscape is transforming at breakneck speed. Developers now generate code faster than ever, but this acceleration comes… The post Innovator Spotlight: Harness appeared first on Cyber Defense…

Read more →

The automotive landscape has evolved dramatically, from mechanical marvels to sophisticated platforms on wheels driven by intricate computer systems. Surprisingly, these vehicles are governed by over 100 million lines of… The post Safeguarding the Code That Drives Modern Vehicles appeared…

Read more →

Cybersecurity DNS Security for a Safer Digital Life Whalebone is redefining how telcos, ISPs, and enterprises protect their customers in a world where every device is online and every click… The post Innovator Spotlight: Whalebone appeared first on Cyber Defense…

Read more →

Zero Trust: The Unsung Hero of Cybersecurity Cybersecurity professionals are drowning in complexity. Acronyms fly like digital confetti, vendors promise silver bullets, and CISOs find themselves perpetually playing catch-up with… The post Innovator Spotlight: OPSWAT appeared first on Cyber Defense…

Read more →

Network Visibility: The Silent Guardian of Cybersecurity Network complexity is killing enterprise security teams. Buried under mountains of configuration data, manual processes, and endless troubleshooting, cybersecurity professionals are drowning in… The post Innovator Spotlight: NetBrain appeared first on Cyber Defense…

Read more →

Data Security’s New Frontier: How Generative AI is Rewriting the Cybersecurity Playbook Semantic Intelligence™ utilizes context-aware AI to discover structured and unstructured data across cloud and on-prem environments. The “Content… The post Innovator Spotlight: Concentric AI appeared first on Cyber…

Read more →

Network Security Reimagined: How Portnox is Solving the NAC Nightmare Security professionals have long wrestled with network access control (NAC) solutions that promise more pain than protection.  Traditional NAC deployments… The post Innovator Spotlight: Portnox appeared first on Cyber Defense…

Read more →

The AI Threat Landscape: How Adaptive Security is Redefining Cyber Defense Cybersecurity professionals are facing an unprecedented challenge. The rise of generative AI has transformed attack vectors from theoretical risks… The post Innovator Spotlight: Adaptive Security appeared first on Cyber…

Read more →

The Silent Threat: Reimagining User Security in the Age of AI Cybersecurity professionals have long battled an invisible enemy: human vulnerability. Traditional security awareness training has become a predictable dance… The post Innovator Spotlight: Dune Security appeared first on Cyber…

Read more →

Introduction As agents become integrated with more advanced functionality, such as code generation, you will see more Remote Code Execution (RCE)/Command Injection vulnerabilities in LLM applications. However, LLMs can hallucinate… The post Fake (Hallucinated) Remote Code Execution (RCEs) in LLM…

Read more →

The Silent Threat: Why Your AI Could Be Your Biggest Security Vulnerability Imagine a digital Trojan horse sitting right in the heart of your organization’s most valuable asset – your… The post Innovator Spotlight: DataKrypto appeared first on Cyber Defense…

Read more →

In today’s rapidly evolving digital landscape, the challenges surrounding cybersecurity are growing exponentially. Industrial sectors, including energy, manufacturing, and utilities, are increasingly becoming targets for cyber threats, particularly as their… The post Harnessing Smart Digital Reality and Twinning for Next-generation…

Read more →

Cloud Security’s New Frontier: How Generative AI is Transforming Threat Detection The cybersecurity landscape is shifting beneath our feet. Traditional perimeter defenses are crumbling, and cloud environments have become increasingly… The post Innovator Spotlight: Skyhawk Security appeared first on Cyber…

Read more →

Continuous Pen Testing: The AI Revolution in Cybersecurity Cybersecurity leaders have long wrestled with a fundamental challenge: how to stay ahead of evolving digital threats while managing limited resources and… The post Innovator Spotlight: Plainsea appeared first on Cyber Defense…

Read more →

Security’s Silent Revolution: How StrikeReady is Transforming SOC Operations Security operations centers (SOCs) have long been the unsung heroes of cybersecurity, battling endless alerts and wrestling with fragmented toolsets. But… The post Innovator Spotlight: StrikeReady appeared first on Cyber Defense…

Read more →

Introduction: Addressing the Unavoidable Nature of Cyber Risk In a rapidly evolving cyber threat landscape, the need for sophisticated and multifaceted risk management has never been more apparent. While traditional… The post Beyond Prevention: How Cybersecurity and Cyber Insurance Are…

Read more →

Penlink’s CEO, Peter Weber, shares how leaders can reduce their odds of becoming yet another statistic through a debilitating cyber-attack by implementing the robust combination of digital evidence, open-source intelligence (OSINT),… The post Spotlight On Leadership: Bolstering Corporate Security with OSINT…

Read more →

The Threat Landscape According to the Identity Theft Resource Center, one billion people have been victims of a data breach in just the second quarter of 2024. Businesses must have… The post How Businesses Can Protect Themselves Against Data Breaches…

Read more →

Many organizations believe that implementing Data Loss Prevention (DLP) solutions can ease their data security and privacy policies implementation. However, when we are not aware of the challenges, we face… The post Strengthening your Data Loss Prevention (DLP) Program –…

Read more →

When it comes to rapidly scaling operational processing power and expanding digital storage, cloud platform solutions are unmatched. Offering unparalleled flexibility, cloud platforms have quickly become essential for businesses of… The post Ten Cloud-Agnostic Cybersecurity Tips for Protecting Your Data…

Read more →

BaaS on a Global Scale Banking-as-a-Service (BaaS) solutions bring exciting new revenue streams to the banking world. This partnership model enables many new digital banks to run on reduced customer… The post Banking-as-a-Service appeared first on Cyber Defense Magazine. This…

Read more →

Cyber claims have continued their upwards trend over the past year, driven in large part by a rise in data and privacy breach incidents. The frequency of large cyber claims… The post Data Privacy Claims on The Rise as Evolving…

Read more →

In a world where transactions occur smoothly across borders and platforms, the need for robust fraud and risk management strategies has become critical. As technology advances, so do the tactics used by… The post Reduce Fraud Risk with Effective Identity Verification appeared…

Read more →

 Unifying IT Management and Security with ManageEngine In today’s digital landscape, IT can feel like juggling flaming torches, one wrong move and the consequences can be costly. From managing endpoints,… The post Innovator Spotlight: ManageEngine appeared first on Cyber Defense…

Read more →

Your team’s ability to identify phishing attempts in their inboxes has the potential to make or break your entire security posture, which is why having an effective training program in… The post Cyber Security Simulation Training Mistakes That CISOs Must…

Read more →

Phishing isn’t what it used to be. It’s no longer fake emails with bad grammar and sketchy links. With AI, modern phishing attacks have become slicker, more convincing, and dangerously… The post Why Enterprises Need Preemptive Cybersecurity to Combat Modern…

Read more →

After a brief lull in ransomware attacks following the LockBit disruption earlier this year, ransomware attacks spiked again in the second quarter of 2024 and are showing no signs of abating. Extortion… The post With Ransomware Attacks Surging, Eliminate Silos and Tap…

Read more →

A business ecosystem is a borderless entity. Where organizations operate across vast, global networks, achieving a comprehensive view of their digital operations is a major challenge. Security leads, faced with… The post You Can’t Protect What You Can’t See appeared…

Read more →

Securing the Browser’s Blind Spot By Victoria Hargrove, CDM Reporter What CSide Does Most security stacks fortify servers, databases, and internal apps. CSide (Client-side Development, Inc. aka c/side) targets the… The post Innovator Spotlight: CSide appeared first on Cyber Defense…

Read more →

Cross-domain solutions (CDS) consist of the secure exchange of information between security domains. This type of solution, which emerged as a technological answer to the need to share data between… The post Cross-domain Solutions: The Present and Future of a…

Read more →

In a significant step to secure the defense industrial base (DIB), the Department of Defense (DoD) has officially released the long-anticipated Cybersecurity Maturity Model Certification (CMMC) Final Rule, which was… The post CMMC 2.0 Final Rule Released – Get Prepared…

Read more →

Driving through the quiet, endless beauty of the Nevada desert, I let the raspy voice of Jim Morrison carry me forward. “The End” played as the final song before I… The post Black Hat Ignites Under Vegas Lights appeared first…

Read more →

There’s a lot of noise around compliance. New regulations seem to pop up every year, each promising to fix the ever-growing list of security problems that come with the digital… The post Is the Cyber Resilience Act the Biggest Thing…

Read more →

Cybersecurity has emerged as a critical and ongoing battle against a dynamic and pervasive global threat. The landscape is evolving rapidly, with adversaries increasingly gaining ground in this ongoing struggle…. The post Cybersecurity Wake-Up Call: Why All Businesses Must Prepare…

Read more →

We live in an era where your next big idea could come from an employee working out of a cafe in Tokyo or on the beach in Bali. The digital… The post Digital Nomads and Cybersecurity: Navigating the New Frontier…

Read more →

Among the variety of cyber-attacks that we witness happening around us, Zero-day attacks are remarkably insidious in nature. Due to the fact that these attacks exploit the unknown vulnerabilities, zero-day… The post Don’t Wait Too Long to Patch: How Organizations…

Read more →

The cybersecurity landscape is constantly evolving, and security operations centers (SOCs) are feeling the pressure to stay ahead of increasingly sophisticated attackers. Numerous SOCs struggle to keep pace with the… The post Empowering The Soc: Stop Detecting Potential Threats, Start…

Read more →

The term “In the Wild” is broadly used to refer to any activity that has been observed outside of a controlled environment. It’s an important metric in security because criminals… The post Data Is a Dish Best Served Fresh: “In…

Read more →

The battle against cybercrime continues to be a significant topic for organizations across all industries, however the threat to the health care industry is possibly the most serious. Financial losses… The post Healthcare Organizations at Risk: Managing Human Vulnerability in…

Read more →

Dealerships handle sensitive information, such as credit applications and personal financial records, daily. A data breach can lead to profound consequences for both the dealership and its customers. Dealerships can… The post How Dealerships Can Protect Their Customers’ Financial Data…

Read more →

Phishing isn’t what it used to be. It’s no longer fake emails with bad grammar and sketchy links. With AI, modern phishing attacks have become slicker, more convincing, and dangerously… The post Why Enterprises Need Preemptive Cybersecurity to Combat Modern…

Read more →

Your team’s ability to identify phishing attempts in their inboxes has the potential to make or break your entire security posture, which is why having an effective training program in… The post Cyber Security Simulation Training Mistakes That CISOs Must…

Read more →

Software is the invisible infrastructure of our world, powering everything from critical systems to everyday devices. But its ubiquity makes it a prime target. The question is not just how… The post How Secure Is the Software Supply Chain? Less…

Read more →

The figures are appalling – 60% of small businesses fail within six months of a cyber-attack. Cyber attackers are all around us, and they leave devastating scars. Modern enterprises are… The post How to Develop a Business Continuity Plan for…

Read more →

The week of August 4th, I had the opportunity to attend two exciting conferences in the cybersecurity world: Black Hat USA 2025 and Squadcon which were held in Las Vegas…. The post Vegas, Vulnerabilities, and Voices: Black Hat and Squadcon…

Read more →

According to recent study by Research Nester, the global insider threat protection market Size was valued at USD 4 billion in 2023 and is predicted to surpass more than USD 38 billion… The post Insider Threat Protection Market Size Worth USD 38…

Read more →

The healthcare industry, one of the most targeted for data breaches, is facing an escalating crisis. According to the White House, cyberattacks against the American healthcare system rose 128% from 2022… The post Managing Technical Sprawl to Enhance Security of Healthcare…

Read more →

Generative artificial intelligence (AI) continues to be a hot topic as pundits, media outlets and entrepreneurs consider the opportunities presented in industries ranging from health care to finance. Although there… The post Navigating the Legal Landscape of Generative AI: Risks…

Read more →

The bad actors are capitalizing on cutting-edge technologies as any of their activities must leave some footage within an ICT infrastructure, so far. The good indicator of such actions could… The post Need Of Counterintelligence in Combating Transnational Crime and…

Read more →

Securing the Future of AI Powered Coding:  Where Speed Meets Risk The rise of AI powered coding tools like Cursor and Windsurf have kicked off what many are calling the “vibe… The post Innovator Spotlight: Backslash Security appeared first on Cyber…

Read more →

by Gary Miliefsky, Publisher, Cyber Defense Magazine Every year, Black Hat showcases not just the latest innovations and products from the cybersecurity industry but also the presence of major government… The post Federal Agency Makes Steampunk Appearance at Black Hat…

Read more →

Customer support is crucial throughout information technology, and nowhere more so than cybersecurity. As customers defend their environments from sophisticated, well-funded adversaries and an ever-evolving threat landscape, cybersecurity vendors become… The post The Importance of Customer Empathy and Direction in…

Read more →

Digital transformation is occurring across all industries at an unprecedented rate. IDC revealed that worldwide spending on IoT will surpass $1 trillion in 2026 with AI spending following this trend as it is projected… The post Securing The Flow of Data In The Era…

Read more →

In 2025, a simple online search can lead to more than just information—it could expose you to the latest trend in cybercrime: malvertising. This evolved form of online deception has… The post The Dark Side of Digital Advertising: Cyber Threats…

Read more →

A disaster recovery plan is essential for businesses operating remote or hybrid workforces. The need for these plans has increased as more companies shift to decentralized teams. Remote employees are… The post 7 Considerations for Disaster Recovery Plans for Remote…

Read more →

As ransomware attacks increase in frequency and sophistication, businesses of all sizes will grapple with a critical decision: to pay or not to pay. What was once considered an extraordinary… The post Shaping A Future-Proof Cybersecurity Strategy in The Era…

Read more →

Zero trust frameworks challenge traditional perimeter-based security models by adopting a “never trust, always verify” approach. Unlike legacy security systems, zero trust requires continuous identity verification, strict least-privilege access controls,… The post Zero Trust: A Strong Strategy for Secure Enterprise…

Read more →

Introduction In today’s fast-evolving threat landscape, traditional breach detection systems often fall short in providing early warnings. CISOs are under pressure to not only respond to alerts faster but also… The post Winning the Breach Intelligence Race: How CISOs Can…

Read more →

The Internet of Things (IoT) has evolved from a visionary concept into a global reality. With over 38 billion connected devices projected by 20301, the IoT ecosystem has expanded into… The post Why Certification is Critical for Securing the Future…

Read more →

2025: A Year of Faster, Smarter Cyber Threats As we move deeper into 2025, cyber threats are not only multiplying they’re evolving. From AI-generated phishing emails to personalized scams and… The post Where AI Meets Cybersecurity: Navigating 2025’s Top Threats…

Read more →

In an era dominated by apps and on-demand everything, convenience was once king. However, a new national consumer survey by Talker Research, commissioned by Trua, reveals that the tide is turning. Consumers are… The post Verified Trust Is the New Currency: Why Digital…

Read more →

Digital identities continue proliferating throughout modern organizations and are a significant target for bad actors. Stolen identities and privileged access credentials account for most data breaches. In fact, identities and… The post The Power of Identity Analytics to Transform Your…

Read more →

Why Businesses Must Upgrade to Quantum-Safe Encryption Before It’s Too Late Cybersecurity has always had to keep pace with the evolution of cyberattacks. These attacks started gaining prominence in the… The post Quantum Threat Is Real: Act Now with Post…

Read more →

With 7.9 billion email accounts worldwide and 4.3 billion active users, emails now play an essential role in fraud detection and identity verification. Businesses leverage email not just for communication but also as… The post Stopping Fraud: What Does Email Got to Do…

Read more →

By Gary Miliefsky, Publisher of Cyber Defense Magazine Black Hat, the cybersecurity industry’s most established and in-depth security event series, has once again proven why it remains the go-to gathering… The post Black Hat USA 2025 – AI, Innovation, and…

Read more →

When systems go dark and become unavailable, consumers and operators may feel frustration, panic, and anger. When there is disruption to energy and utilities that affects homes, businesses, and entire… The post The Looming Domino Effect of Cyberattacks on Energy…

Read more →

There are a few universal rules that apply in the ongoing cybersecurity arms race between attackers and security companies. The first, and most important rule, is that technological evolution that… The post The Limitations of Agentic AI in Cybersecurity: Why…

Read more →

Black Hat USA 2025 was nothing short of groundbreaking. The show floor and conference tracks were buzzing with innovation, but one theme stood above all others – the rapid advancement… The post AI Takes Center Stage at Black Hat USA…

Read more →

Statistics shared by the World Economic Forum in 2024 show healthcare and finance to be the top two industries most targeted by cybercriminals. The data held by companies in those industries is… The post The Inevitable AI Breach? Predicting Data Theft Through…

Read more →

Key Trends Driving Cloud Computing in 2025 Smarter Cloud Tools with AI Artificial Intelligence (AI) and Machine Learning (ML) have become embedded into core cloud offerings. In fact, A Gartner… The post The Impact of Cloud computing in 2025 appeared…

Read more →

GitGuardian’s 2025 State of Secrets Sprawl Report reveals an alarming expansion of credential exposure across enterprise environments, with collaboration tools emerging as a critical yet overlooked vulnerability. Secrets Sprawl Reaches… The post The Hidden Danger: Secrets Sprawl Beyond the Codebase…

Read more →

The Current Landscape of Automotive Cybersecurity Modern vehicles are essentially computers on wheels. With up to 100 million lines of code and a growing number of wireless interfaces — from… The post The Future of Automotive Cybersecurity Safeguarding the Next…

Read more →

AI is transforming the way work gets done across industries. But while it improves business efficiencies, it also arms cybercriminals with highly effective tools. These bad actors use AI to… The post The AI Threat: How Enterprises Can Defend Against…

Read more →

Telecommunications service providers (TSP) are foundational to the functioning of our modern technical society, serving as the conduit through which many critical infrastructure sectors maintain communication, coordination, and control. While… The post Telcom Security: The Intersection of Critical Infrastructure appeared…

Read more →