Category: Cyber Defense Magazine

Cyber-Informed Engineering (CIE) is a new perspective on OT cyber risk – one that is being embraced by OT/engineering teams and IT/enterprise cybersecurity teams alike. This kind of consensus among IT… The post Cyber-Informed Engineering – A New Perspective on OT…

Read more →

I was thrilled to catch up with Checkmarx during Black Hat USA 2024.  Cloud development transformation has ushered in a host of expanding security challenges: the rising number of point… The post Publisher’s Spotlight: Checkmarx appeared first on Cyber Defense…

Read more →

The challenge of locating and utilizing data within organizations has become increasingly problematic. Despite the abundance of data available, much of it remains scattered, siloed, and unstructured, making it difficult… The post Innovator Spotlight: DataBee™ appeared first on Cyber Defense…

Read more →

I was thrilled to catch up with Horizon3.ai during Black Hat USA 2024.  Most attackers don’t break in, they log in. CrowdStrike’s 2023 Global Threat Report findings confirm that 71%… The post Publisher’s Spotlight: Horizon3.ai appeared first on Cyber Defense…

Read more →

The challenge of locating and utilizing data within organizations has become increasingly problematic. Despite the abundance of data available, much of it remains scattered, siloed, and unstructured, making it difficult… The post Innovator Spotlight: DataBee™ appeared first on Cyber Defense…

Read more →

Despite the increasing number of cybersecurity tools available, attacks continue to succeed at an alarming rate. Studies show that more than 70% of organizations only utilize 20% or less of… The post Innovator Spotlight: Reach Security appeared first on Cyber…

Read more →

Vulnerability management has become more critical than ever as the global cost of cybercrime is projected to reach $10.5 trillion annually by 2025. In a world where a cyberattack occurs… The post Innovator Spotlight: SecPod appeared first on Cyber Defense…

Read more →

As organizations increasingly rely on edge devices for data collection and processing, the risk of sensitive data breaches has escalated. The proliferation of traditional and emerging devices, such as IoT,… The post Innovator Spotlight: Cigent appeared first on Cyber Defense…

Read more →

As organizations face an escalating wave of cyberattacks, ransomware remains a top concern, with more than 91% of IT and security decision-makers admitting to having paid at least one ransom… The post Innovator Spotlight: ExtraHop appeared first on Cyber Defense…

Read more →

The rapid adoption of cloud technology has led to an explosion in complexity and vulnerability within modern infrastructures. In 2022, 45% of businesses reported cloud-based data breaches or failed audits,… The post Innovator Spotlight: Upwind appeared first on Cyber Defense…

Read more →

In today’s fast-paced digital world, data breaches have become the norm, not the exception. With data sprawled across cloud, on-prem, and hybrid environments, organizations face critical challenges in maintaining visibility… The post Innovator Spotlight: Normalyze appeared first on Cyber Defense…

Read more →

The rapid rise of generative AI (GenAI) has brought about both unprecedented opportunities and significant challenges for organizations, particularly in data protection. According to MIT research, 77% of organizations identify… The post Innovator Spotlight: Harmonic Security appeared first on Cyber…

Read more →

The rapid adoption of AI and Generative AI applications has unlocked tremendous potential, but it has also introduced significant security risks that enterprises must address. Gartner predicts that by 2025,… The post Innovator Spotlight: AppSOC appeared first on Cyber Defense…

Read more →

There are events in business and life that put everything else into perspective. Sometimes, these are moments of crisis, yet also moments of clarity; moments of shock, and moments of… The post From Crisis to Catalyst: A CEO’s Lessons Learned…

Read more →

I was thrilled to catch up with Cyera during Black Hat USA 2024. Over 90% of the world’s data was created in the last two years – making data the… The post Publisher’s Spotlight: Cyera appeared first on Cyber Defense…

Read more →

I was thrilled to catch up with Cranium during Black Hat USA 2024.  CISOs are feeling pressure from their CEOs and Boards to support these initiatives when they need more… The post Publisher’s Spotlight: Cranium appeared first on Cyber Defense…

Read more →

I was thrilled to catch up with Cranium during Black Hat USA 2024.  CISOs are feeling pressure from their CEOs and Boards to support these initiatives when they need more… The post Publishers Spotlight: Cranium appeared first on Cyber Defense…

Read more →

As manufacturing advances into the Industry 4.0 era, the integration of Information Technology (IT) and Operational Technology (OT) necessitates a comprehensive defense strategy tailored to the unique needs of industrial… The post Rethinking Cyber-Physical Systems Security in the Age of…

Read more →

I was thrilled to catch up with Bedrock Security during Black Hat USA 2024.  The surge in data volume from cloud and GenAI initiatives, coupled with escalating threats to enterprises’… The post Publishers Spotlight: Bedrock Security appeared first on Cyber…

Read more →

In November 2022, ChatGPT launched, bringing new possibilities and challenges. As AI and GenAI have grown in popularity and use, businesses have had to grapple with how to use the… The post The Hidden Threat of Shadow AI appeared first…

Read more →

I was thrilled to catch up with ForAllSecure during Black Hat USA 2024.  ForAllSecure is an organization of hackers, developers, and security professionals dedicated to research and innovation in the… The post Publishers Spotlight: ForAllSecure appeared first on Cyber Defense…

Read more →

I was thrilled to catch up with Endari during Black Hat USA 2024.  Endari partners with startups and SMBs to enhance their cybersecurity maturity, integrating proactive security measures into their… The post Publishers Spotlight: Endari appeared first on Cyber Defense…

Read more →

If your organization doesn’t already make security a pillar of its culture, this could be the year to start. That’s because the cybersecurity landscape is changing, due to factors including… The post Your Company Culture Can Become A Powerful Cybersecurity…

Read more →

Managed Services Providers (MSPs) are increasingly looking to provide cybersecurity services due to the demand from their current clients. Though the revenue potential is lucrative, the road for many MSPs… The post All-in-One: How Cynet is Revolutionizing Cybersecurity for MSPs…

Read more →

How To Balance the Two Sources In cybersecurity, threat intelligence covers a broad range of activities concerning collection, analysis, and dissemination of information on the current threat landscape. In terms… The post Internal And External Threat Intelligence appeared first on…

Read more →

Navigating the Cybersecurity Landscape: Achieving Impactful Wins Through Data, Collaboration, and Continuous Improvement Do not think of advocating for critical security investments as a single battle, but a drawn-out campaign… The post Getting Wins for Security Leaders: Strategies and Considerations…

Read more →

The resurgence of banking trojans has become a major cybersecurity concern for financial institutions and their customers. These malicious backdoor programs continue to evolve and succeed due to their ability… The post How To Respond to The Rise of Banking…

Read more →

In a major cybersecurity incident, National Public Data, a company that specializes in collecting and aggregating public records, has suffered a massive data breach that exposed 2.7 billion records. The… The post Massive Data Breach at National Public Data Exposes…

Read more →

As the healthcare sector becomes increasingly digital, it faces a growing threat from cybersecurity attacks. Recent years have seen a disturbing rise in data breaches, ransomware attacks, and other cyber… The post Addressing Cybersecurity Challenges in Healthcare: A Strategic Approach…

Read more →

I was thrilled to catch up with SquareX during Black Hat USA 2024. SquareX is a cybersecurity startup that specializes in enhancing browser security and privacy through innovative solutions. The… The post Publishers Spotlight: SquareX appeared first on Cyber Defense…

Read more →

I was thrilled to catch up with Syxsense during Black Hat USA 2024. Syxsense is a cybersecurity company that provides unified endpoint management and security solutions. The company specializes in… The post Publisher’s Spotlight: Syxsense appeared first on Cyber Defense…

Read more →

With ransomware attacks reaching unprecedented levels, businesses face tough decisions when their data is held hostage. While the temptation to pay the ransom to recover data quickly is strong, this… The post Choosing Security: Why Companies Should Reject Ransom Payments…

Read more →

I was thrilled to catch up with F5 during Black Hat USA 2024. Years ago, when I started an innovative e-commerce company, we used their Big IP product to load… The post Publishers Spotlight: F5 appeared first on Cyber Defense…

Read more →

Fundamental and Foundational to InfoSec and Regulatory Compliance is Capturing all Packets. Figure 1.  Endace High-Performance Packet-capture Appliance Endace specializes in always-on, hybrid-cloud packet capture, addressing the challenge of ensuring… The post Publishers Spotlight: Endace appeared first on Cyber Defense…

Read more →

The concept of “defense in depth” dates back to ancient times, epitomized by the ramparts, draw-bridge, towers, and battlements surrounding a medieval castle.  Cybersecurity’s adaptation of the idea — multiple… The post Defense in Diversity: A Strategy for Robust Cybersecurity…

Read more →

Supply chains are the pulse of our global economy. When they falter, the effects can ripple through industries — impacting production lines, delivery schedules, company performance, and, ultimately, customer satisfaction…. The post Lead with simplicity: A guide for strengthening security…

Read more →

When I go to BlackHat I’m always looking for cyber innovation across many vectors including cyber resilience artificial intelligence and most importantly compliance. This year I met up with Lalit… The post Publishers Spotlight: DigitalXForce appeared first on Cyber Defense…

Read more →

In the digital age, the dark web has emerged as a clandestine marketplace for illicit activities, including the sale of stolen data, illegal software and various forms of malware. The proliferation of these marketplaces poses significant threats to personal, corporate and national security. As… The post Shedding Light on The Dark Web: Enhancing Cybersecurity…

Read more →

Cybersecurity is the cornerstone of organizational stability and resilience today. Despite its critical importance, budgetary allocations often fall short due to competing priorities. Mimecast recently surveyed 1,100 CISOs and information… The post Maximizing Cybersecurity Impact Within Budget Constraints appeared first…

Read more →

It is firmly established that there is no such thing as 100% security – in fact, a security breach is not a matter of ‘if’ but ‘when.’ In other words, risk will always exist, and businesses… The post The Undeniable but Often Overlooked Human Element of…

Read more →

Recently, the cybersecurity world has been rattled by a series of critical vulnerabilities discovered in Ivanti Connect Secure VPN software. In the wake of these ongoing vulnerability issues, Ivanti has… The post Transparency in Cybersecurity: The Importance of Accurate Vulnerability…

Read more →

Within the last few weeks, the major AI competitors OpenAI, Google, and Microsoft unveiled several new products and capabilities of their platforms. Perhaps, most notable was OpenAI’s ability to now… The post Balancing the Scales: Addressing Privacy, Security, and Biases…

Read more →

I have now had the privilege of attending RSA for over 20 years, yet this conference never grows old! My RSA 2024 started on Sunday, speaking with a group of… The post The Art of Possible: Redefining Cybersecurity in the…

Read more →

Introduction Operational Technology (OT) devices, integral in controlling and monitoring industrial processes, have become prime targets for cyberattacks. Since late 2023, there has been a notable increase in attacks on… The post Safeguarding The Backbone: The Critical Imperative to Protect…

Read more →

The Federal OT footprint – from military base operations to their public utilities, from postal operations to NASA missions – is immense, which means the potential cyber attack surface is… The post Who’s Minding the Store? Why Operational Technology Security…

Read more →

Data security and consumer trust go hand-in-hand in our evolving digital world There’s no doubt that data is a catalyst of growth, forcing companies to increasingly rely on it to… The post The Value of Trust: How Companies Can Harness…

Read more →

Since 2021, the Biden Administration has been consistently talking about the limitations of a purely voluntary approach to cybersecurity for critical infrastructure, and the need for a strategic shift. Among… The post It Is Time for Smart Cyber Requirements for…

Read more →

About fifteen years ago, DevOps radically overhauled the world of software engineering. Previously, the development process had been defined by sometimes maddening delays, as development teams waited for operations teams… The post Looking Past DevOps: AI, ClickOps and Platform Engineering…

Read more →

In an alarming revelation, Kaiser Foundation Health Plan reported a data breach impacting over 13 million individuals. For years, there has been an unspoken but critical vulnerability in the healthcare… The post The Kaiser Data Breach Should Be a Wake-Up…

Read more →

It doesn’t take much to guess why cybercriminals increasingly target banking applications including emerging fintech and trading as their prime targets – cybercriminals have and continue to be largely financially-motivated…. The post How to Best Secure Banking Applications – Top…

Read more →

SIEM & SOAR Solutions for Data Security Solutions Data breaches have become a significant threat to organizations of all sizes, even those equipped with robust security measures. As cybercriminals become… The post Mitigating Data Breaches with AI-Driven Security Solutions appeared…

Read more →

Financial Gain and Geopolitical Strategy Ransomware attacks have evolved from mere cybercriminal activities to sophisticated operations serving dual purposes: financial gain for attackers and advancing the geopolitical objectives of adversarial… The post The Dual Nature of Ransomware Attacks appeared first…

Read more →

“The best supply chain attack execution ever seen” might sound like yet another hyperbole designed to attract attention, except in the case of the recent XZ Utils case, it was… The post The Other Lesson from the XZ Utils Supply-Chain…

Read more →

Once upon a time, when we used to have to go to physical stores to get the products we needed, there was no such thing as the retail “last mile”… The post Eliminating the Last Mile Between Security Data and…

Read more →

Major Cyber Threats Powered by AI Many have embraced artificial intelligence as a new paradigm, with some even going so far as to call it the “revolution of work.” Unfortunately,… The post Artificial Intelligence in 2024 appeared first on Cyber…

Read more →

Behavioral detection and response is not a new concept, and the top three detection and response players command a combined market capitalization of $100 billion. But the rise of cloud… The post Unlocking the Power of Behavioral Cloud Native Threat…

Read more →

As we move towards the summer and the promise of sunnier weather, it’s worth noting that the cybersecurity industry has seen more rain than sunshine recently. A slew of high-profile… The post Sheltering from the Cyberattack Storm appeared first on…

Read more →

The massive Snowflake breach disclosed recently, involving hundreds of millions of stolen customer records, is a stark wake-up call for organizations to proactively manage their SaaS security. No doubt the… The post Changing the Passive to Active: Updating SaaS Cybersecurity…

Read more →

Single Sign-On (SSO) serves as the linchpin connecting corporate networks, facilitating seamless access to various web applications without the need for repeated login credentials. However, there are several untold challenges… The post Deep Dive: Unveiling the Untold Challenges of Single…

Read more →

Responsibly Adopting Technology to Improve Law Firm Productivity Lawyers face incredible pressure in their jobs to perform accurately and quickly. Thankfully, technology has been introduced that now allows legal professionals… The post How the Newest Tech Changes Cybersecurity Needs in…

Read more →

Identity governance and administration (IGA) is a critical part of modern business. It’s one of the single most important pieces of creating and balancing a productive and secure work environment…. The post 5 Reasons IGA Programs Fail appeared first on…

Read more →

“In a quaint village nestled between rolling hills and dense forests, a young apprentice named Eli was learning to throw pottery from a master potter. On the first day by… The post The First 10 Days of a vCISOs Journey…

Read more →

In a groundbreaking move, the first state in the U.S. has passed comprehensive legislation aimed at protecting consumers from the potential risks associated with AI. The new Utah Artificial Intelligence… The post Pioneering the New Frontier in AI Consumer Protection…

Read more →

The scale of identity exposure has increased significantly, with over 90% of surveyed organizations reporting an identity-related breach within the last year. These attacks have long-lasting consequences – SpyCloud’s 2024 Identity Exposure Report found… The post Digital Identities Have Evolved — Cyber Strategies Should…

Read more →

In the contemporary technological landscape, the allure of advanced artificial intelligence (AI) systems often captivates the collective imagination of the tech industry and beyond. Stories of deepfakes, such as the… The post Stop Chasing the AI Squirrel and Patch… Just…

Read more →

The Crucial Role of Cyber-Resilient Microgrids The vulnerability of major metropolitan power grids to natural disasters has become a pressing concern, but mother nature isn’t the only thing threatening our… The post Guardians of the Grid: Cyber-Secure Microgrids and the…

Read more →

DeepKeep, the leading provider of AI-Native Trust, Risk, and Security Management (TRiSM), empowers large corporations that rely on AI, GenAI, and LLM technologies to manage risk and protect growth. Our… The post Spotlight on DeepKeep.ai appeared first on Cyber Defense…

Read more →

Cybersecurity threats continue to grow, with the threat landscape constantly evolving and hackers employing increasingly sophisticated and unpredictable methods. With an ongoing cybersecurity skills shortage, the need for Managed Service… The post Latest WatchGuard Report Reveals Rise in Threat Actors…

Read more →

The cybersecurity landscape is a battlefield, but the biggest threats don’t always come from external hackers. As a seasoned warrior in this space, I’ve seen countless founders, brimming with passion… The post The Pitfalls (and How to Avoid Them) for…

Read more →

Evolving landscape of LLM Security The emergence of Large Language Models (LLMs) has revolutionized the capabilities of artificial intelligence, offering unprecedented potential for various applications. However, like every new technology,… The post Security Threats Targeting Large Language Models appeared first…

Read more →

As the ransomware threat landscape continues to wreak havoc on industries across the nation, healthcare providers all over the country are having difficulties receiving payment due to an attack that… The post Healthcare Industry Under Siege: Latest String of Ransomware…

Read more →

Unraveling Human Factors in Data Breaches Data spillage is a term used to describe the exposure of sensitive or classified information outside an organization’s designated boundary of network or safety… The post The Role of Human Error in Data Spillage…

Read more →

Security a Top Concern During 2024 Election ‘Super-Cyle’ With an unprecedented ‘super-cycle’ of elections in 2024, almost half the world’s population will go to the polls before the year is… The post The Morphing of Misinformation in a Super Election…

Read more →

Artificial intelligence is an ever-evolving subject; year by year, its landscape is expanding to different industries, and the outcome of its optimization is noteworthy. One of the prominent tech giants,… The post Overcome AI-Oriented Phishing Attacks with These Sure-Fire Strategies…

Read more →

Fraudsters leverage complex phishing scams in attempt to gain control over organizations’ Meta accounts A sophisticated phishing campaign is targeting businesses of every size in an attempt to compromise Facebook… The post New Phishing Campaign Using AI generated Emails, Human…

Read more →

The recent cyber attack on the Ministry of Defence, which compromised the personal information of UK military personnel, serves as a stark warning for organisations across the globe and reinforces… The post Why the MoD Breach Calls for a Cybersecurity…

Read more →

Countdown to October 2025 As the cybersecurity landscape continues to evolve and become more complex, international regulations are similarly following suit to keep pace and set a benchmark to mitigate… The post How to Prepare for ISO 27001:2022’s Threat Intelligence…

Read more →

Optimizing IT team collaboration hinges on recognizing their unique team challenges, such as siloed knowledge and communication barriers, as well as the different working styles of product managers, software engineers,… The post Optimizing IT Team Collaboration – An Innovative Approach…

Read more →

Leveraging Artificial Intelligence to Enhance Cybersecurity Defenses Artificial Intelligence has become essential for safeguarding digital resources in cybersecurity. As organizations strive to defend against pragmatic threats, AI offers crucial risk… The post AI and Cybersecurity: Mitigating Risks and Safeguarding Digital…

Read more →

AI. Artificial Intelligence. One acronym, two words that seem to have reshaped the landscape of cybersecurity. At the 2024 RSA Conference, it was ubiquitous: stamped on almost every booth’s showcase,… The post RSA Conference 2024: Exploring our Current Cybersecurity Realities…

Read more →

AI in Action: Real-World Breakthroughs and Innovations Attending the RSA Conference for the first time was an incredible experience! Ever since I began my journey in cybersecurity, attending the RSA… The post RSA Conference 2024 Highlights: Cutting-Edge Cybersecurity Innovations appeared…

Read more →

Ransomware has become a growing threat in our new hybrid world. It encrypts a victim’s files, rendering them inaccessible, and demands a ransom payment for the decryption key. This can… The post The Scourge of Ransomware appeared first on Cyber…

Read more →

Healthcare and technology increasingly intersect in today’s world, and cybersecurity has become a primary concern for many companies. However, the recent attack on Change Healthcare serves as a harsh reminder… The post Strengthening Cybersecurity – Transforming in the Age of…

Read more →

By Mike Fleck, Head of Product Marketing at DigiCert Digital trust is at the core of what makes internet connected experiences valuable. Whether we’re making an e-commerce purchase, signing a […] The post Is Your Organization a Laggard or a…

Read more →

By Vira Shynkaruk, Cybersecurity Content Expert, UnderDefense Making the right call on cybersecurity solutions is paramount for businesses, especially now, when they are constantly under siege from cyberattacks. The critical […] The post Comparing MDR vs SIEM: Which Is Better…

Read more →

By Jacques de la Riviere, CEO, Gatewatcher Few prefixes excite the cybersecurity market as much as ‘state-sponsored.’ The label immediately conjures images of well-equipped, highly-resourced teams targeting high-profile organisations and […] The post Rogue Nations: An Assessment of State-Sponsored Cyberattacks.…

Read more →

By Gary Barlet, Federal Chief Technology Officer, Illumio At its core, the paradox of artificial intelligence (AI) in cybersecurity lies in conflicting uses. On one hand, malicious actors harness AI […] The post The AI Arms Race Shaping Federal Cyber…

Read more →

By Adam Bennett, CEO, Red Piranha Cyberattacks are on the rise and it’s crucial for organizations to have a reliable security system that can detect and respond to threats in […] The post Get 10x more Visibility across APTs with…

Read more →

Strategies to Safeguard Critical Infrastructure Against Cyber Threats By Andrea E. Davis, Founder and President of The Resiliency Initiative I started my career in emergency management in 1999. At the […] The post A National Imperative – Cyber Resiliency appeared…

Read more →

By Andy Hilliard, CEO of Accelerance Every business owner knows how important cyber security is. Headlines of attacks, leaks and breaches of customer data, payment information, intellectual property and more […] The post How and When to Know You Need…

Read more →

Exploring the Dark Web: Essential Insights Revealed By Elena Thomas, Digital Content Strategist, SafeAeon Inc. The internet is like a huge iceberg: there is a hidden layer below the top. […] The post Understanding the Dark Web: What You Need…

Read more →

“Protect The Most Vulnerable at Their Most Vulnerable Times” By Jim Ford, Founder and CEO, PatientLock® and JurisLock™ In the spring of 2018, my (then) pregnant wife and I went […] The post Special Cybersecurity Considerations for Medical and Legal…

Read more →

🚨🔍 Don’t miss out on the Hunt for Volt Typhoon event! 🌐💻 Join us to explore cutting-edge cyber tactics, innovative defense strategies, and the latest in threat detection. Perfect for […] The post How to Hunt for Volt Typhoon Malware…

Read more →

Cybersecurity as a Service Market By Aashi Mishra, Content Writer, Research Nester The increased internet usage, all across the globe, is giving rise to cybercrime cases. Cybercrime is any unlawful […] The post Cybersecurity as a Service Market: A Domain…

Read more →

By Elaina Farnsworth, Co-founder & CEO — SkillFusion The surging popularity of electric vehicles (EVs) is marking a strong push toward overall sustainability for the United States. However, as EV […] The post How Improving EV Charging Infrastructure Can Bolster…

Read more →

By Kenneth Moras Introduction: In today’s interconnected business environment, reliance on innovative vendors and open source solutions is inevitable. However, these supply chains also stand on the frontline in the […] The post Navigating the Perilous Waters of Supply Chain…

Read more →

By Joseph Hladik, Cyber Group Lead, Neya Systems From perception and sensing to mapping and localization, both off-road and on-road autonomous vehicles rely heavily on software and connectivity to operate […] The post The Challenge of Combatting Threats Against Autonomous…

Read more →

By Milica D. Djekic The progress distribution is a slow and time-consuming process that normally might take decades and sometimes centuries in order to deliver a betterment for many to […] The post Emerging Technology Review and Needs appeared first…

Read more →

By Dan K. Anderson vCISO and On-Call Roving Reporter, Cyber Defense Magazine In my travels and works one of the most difficult challenges for Security is achieving good relations and […] The post Spotlight on Scribe Security appeared first on…

Read more →

Navigate the threat intelligence market’s journey through the digital domain and how it integrates to provide a better solution. By Deboleena Dutta, Junior Content Writer, Research Nester In today’s digitally […] The post Combating Cyber-attacks with Threat-Intelligence appeared first on…

Read more →