CIO

MARCH 1, 2024

Unsurprisingly, the more data that is stored, accessed, and processed across different cloud architectures that typically also span different geographic jurisdictions, the more security and privacy risks arise. Securing from AI : Just like most new technologies, artificial intelligence is a double-edged sword.

Artificial Inteligence 299

Artificial Inteligence Innovation Generative AI Artificial Intelligence 299

CIO

OCTOBER 25, 2023

Between our research and dozens of conversations with customers and partners, there are a number of trends that we can expect to see this year, in 2024, and onward. Zscaler The risks of leveraging AI and ML tools As we discussed in a recent blog , the risks of using generative AI tools in the enterprises are significant.

Generative AI 334

Generative AI Artificial Inteligence Enterprise ChatGPT 334

CIO

MARCH 3, 2024

For its 2023 Security Priorities report, Foundry surveyed 790 IT security workers to understand their projects and priorities. Printers are often not subject to the rigorous security measures routinely applied to computing devices; for example, complex passwords and rigorous patching and software update regimes.

Survey 278

Survey Malware Infrastructure Report 278

Tenable

MARCH 6, 2024

Background On March 4, JetBrains published a blog post regarding two security issues affecting TeamCity On-Premises , a software solution for build management. In the March 4 release notes , no mention was made of what security issues were patched, however later in the day, a blog post regarding the release of TeamCity 2023.11.4

Authentication 113

Authentication Malware Energy Groups 113

Tenable

APRIL 12, 2024

Plus, a new survey shows cybersecurity pros are guardedly optimistic about AI. And the NSA is sharing best practices for data security. Cybersecurity and Infrastructure Security Agency (CISA) in its Emergency Directive 24-02 , sent to federal civilian agencies last week and made public this week. And much more!

Generative AI 116

Generative AI Malware Trends Government 116

Tenable

FEBRUARY 9, 2024

CVE Description CVSSv3 Severity CVE-2024-21762 Fortinet FortiOS Out-of-bound Write Vulnerability in sslvpnd 9.6 Medium FG-IR-23-397 Analysis CVE-2024-21762 is an out-of-bound write vulnerability in sslvpnd, the SSL VPN daemon in Fortinet FortiOS. and international agencies.

Malware 121

Malware Authentication Infrastructure Analysis 121

Tenable

JANUARY 31, 2024

Frequently asked questions for four CVEs affecting Ivanti Connect Secure and Policy Secure Gateways, with three of the vulnerabilities having been exploited in the wild as zero-days. Released January 10 CVE-2024-21887 Ivanti Connect Secure and Ivanti Policy Secure Command Injection Vulnerability 9.1

Policies 62

Policies Malware Authentication Software Review 62

Tenable

MARCH 8, 2024

Plus, a survey shows how artificial intelligence is impacting cybersecurity jobs. Source: “2023 Internet Crime Report” from the FBI’s Internet Crime Complaint Center, March 2024) Overall, ransomware losses skyrocketed 74% to almost $60 million, as attackers employed new tactics, such as pelting victims with multiple ransomware variants.

Infrastructure 114

Infrastructure Report Software Review Artificial Intelligence 114

Tenable

MARCH 12, 2024

2 Critical 57 Important 0 Moderate 0 Low Microsoft addresses 59 CVEs in its March 2024 Patch Tuesday release with no zero-day or publicly disclosed vulnerabilities. Microsoft patched 59 CVEs in its March 2024 Patch Tuesday release, with 2 rated critical and 57 rated as important. It was assigned a CVSSv3 score of 9.8

Windows 123

Windows Azure Authentication Infrastructure 123

Tenable

APRIL 26, 2024

1 - New version of MITRE ATT&CK adds guidance on generative AI, cloud threats Information about malicious use of generative AI tools. Advice about securing cloud environments. Dive into six things that are top of mind for the week ending April 26. Recommendations for protecting software development pipelines. elections With the U.S.

Security 71

Security Cloud Artificial Inteligence Generative AI 71

Tenable

APRIL 12, 2024

Background On April 12, Palo Alto Networks released a security advisory for a critical command injection vulnerability affecting PAN-OS, the custom operating system (OS) Palo Alto Networks (PAN) uses in their next-generation firewalls. Solution As of April 12, Palo Alto Networks has not provided patches for this vulnerability.

Network 118

Network Firewall Software Review Systems Review 118

Tenable

APRIL 25, 2024

Frequently asked questions about CVE-2024-20353 and CVE-2024-20359, two vulnerabilities associated with “ArcaneDoor,” the espionage-related campaign targeting Cisco Adaptive Security Appliances. CVE-2024-20359 Cisco ASA and FTD Software Persistent Local Code Execution Vulnerability 6.0 Who is the group behind ArcaneDoor?

Malware 69

Malware Analysis Groups Testing 69

Tenable

JANUARY 9, 2024

2 Critical 46 Important 0 Moderate 0 Low Microsoft addresses 48 CVEs in its January 2024 Patch Tuesday release with no zero-day or publicly disclosed vulnerabilities. Microsoft patched 48 CVEs in its January 2024 Patch Tuesday release, with two rated critical and 46 rated as important. Both vulnerabilities received CVSSv3 scores of 7.8

Windows 114

Windows Authentication Cloud Linux 114

N2Growth Blog

APRIL 19, 2024

Understanding the Economic Landscape of 2024 2024 presents us with a complex economic landscape where various challenges intersect. As a business leader in 2024, it is no longer optional but rather absolutely essential to leverage these digital tools.

Artificial Inteligence 162

Artificial Inteligence Artificial Intelligence Strategic Planning Machine Learning 162

Tenable

APRIL 19, 2024

Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. 1 - Multinational cyber agencies issue best practices for secure AI deployment Looking for best practices on how to securely deploy artificial intelligence (AI) systems? And don’t miss the latest CIS Benchmarks updates.

Artificial Inteligence 73

Artificial Inteligence Trends Technical Advisors Analysis 73

Palo Alto Networks

MARCH 27, 2024

{{interview_audio_title}} 00:00 00:00 Volume Slider 10s 10s 10s 10s Seek Slider “AI’s Impact in Cybersecurity” is a blog series based on interviews with a variety of experts at Palo Alto Networks and Unit 42, with roles in AI research, product management, consulting, engineering and more. Read our interview with Faraz Ahsan.

Artificial Inteligence 105

Artificial Inteligence Machine Learning Artificial Intelligence Policies 105

Tenable

JANUARY 12, 2024

Check out expert recommendations for deploying AI tools securely. 1 - How to ensure AI helps, not hurts, cybersecurity How can organizations use artificial intelligence (AI) in a way that’s safe and that benefits cybersecurity? In addition, cyber insurance demand is forecast to grow robustly. And much more!

Systems Review 71

Systems Review System Technical Review Development Team Review 71

Cloudera

MAY 10, 2024

Building an open data lakehouse with Iceberg delivers significant benefits increasing self-service access, ease of use, flexibility, and delivering unified security and governance for all data. With that in mind, we’re excited to share that Cloudera is a sponsor of this year’s Iceberg Summit 2024.

Analytics 99

Analytics Open Source Virtualization Government 99

Lacework

FEBRUARY 15, 2024

This blog features some content from our new eBook: 4 keys to cloud security for financial services. Download the eBook for more discussion on financial services industry trends and how these organizations can become cyber secure in 2024. Security talent pools are painfully small. Let’s face it.

eBook 62

eBook Artificial Intelligence Artificial Inteligence Healthcare 62

Palo Alto Networks

APRIL 19, 2024

On April 10, 2024 Palo Alto Networks Product Security Incident Response Team (PSIRT) learned of a suspicious exfiltration attempt at a customer site from Volexity's Steven Adair. Volexity and Unit 42 Threat Brief have more information about the type of malware seen in these attacks and indicators of threat activity.

Firewall 132

Firewall Systems Review Malware Software Review 132

Tenable

JANUARY 10, 2024

Two zero-day vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure have been exploited in the wild, with at least one attack attributed to nation-state actors. Background On January 10, Ivanti released a security advisory for two zero-day vulnerabilities that were exploited in-the-wild in limited, targeted attacks.

Policies 71

Policies Authentication Analysis Network 71

Darktrace

APRIL 23, 2024

Part 2: This blog discusses the impact of AI on the cyber threat landscape based on data from Darktrace’s State of AI Cybersecurity Report. Get the latest insights into the evolving challenges faced by organizations, the growing demand for skilled professionals, and the need for integrated security solutions.

Report 72

Report Organization Data 72

Palo Alto Networks

MARCH 12, 2024

Applied AI in cybersecurity has many unique challenges, and we will take a look into a few of them that we are considering the most important. One — Lack of Labeled Data Unlike many other fields, data and labels are scarce in the cybersecurity space and usually require highly skilled labor to generate. This is unique to cybersecurity.

Systems Review 108

Systems Review Training Study Malware 108

Ivanti

APRIL 9, 2024

For the fourth Patch Tuesday of 2024 there is more to consider than just what is being released on Patch Tuesday. There are a number of vendors who have released security updates leading up to Patch Tuesday, and more to come in the following weeks. For more information on updates, see the blog update and security advisory.

Windows 79

Windows Azure Systems Review .Net 79

Tenable

MAY 9, 2024

CVE Description CVSSv3 CVE-2024-21793 BIG-IP Next Central Manager OData Injection Vulnerability 7.5 CVE-2024-26026 BIG-IP Next Central Manager SQL Injection Vulnerability 7.5 Analysis CVE-2024-21793 is an OData Injection vulnerability in the BIG-IP Next Central Manager. Vulnerability Disclosed CVE Assigned Patched?

Research 70

Research Authentication Report Analysis 70

Hacker Earth Developers Blog

MARCH 19, 2024

Integration : Seamless integration with other systems, such as Learning Management Systems (LMS) or Human Resource Information Systems (HRIS), can streamline workflows and enhance efficiency. Data Security : In an era of heightened data privacy concerns, robust security measures are a must to protect sensitive information.

Technical Review 130

Technical Review Recruiting Software Review Software 130

Hacker Earth Developers Blog

MARCH 19, 2024

Integration : Seamless integration with other systems, such as Learning Management Systems (LMS) or Human Resource Information Systems (HRIS), can streamline workflows and enhance efficiency. Data Security : In an era of heightened data privacy concerns, robust security measures are a must to protect sensitive information.

Technical Review 130

Technical Review Recruiting Software Review Software 130

DevOps.com

MARCH 14, 2024

As the year rolls on, here are a few key DevOps trends, from Apple Silicon to remote work to security, to watch for in 2024.

Trends 131

Trends DevOps Continuous Delivery Social 131

Tenable

JANUARY 23, 2024

CVE Description CVSSv3 CVE-2024-0204 Fortra GoAnywhere MFT Authentication Bypass Vulnerability 9.8 Its discovery is credited to security researchers Mohammed Eldeeb and Islam R Alater. The figures presented in this chart are representative of a data snapshot on January 23, 2024. ai published a blog post analyzing CVE-2024-0204.

Authentication 62

Authentication Research Groups Analysis 62

TechEmpower CTO

DECEMBER 11, 2023

In fact, you might have to secure them from diverse people/firms. Our blog post 53 Questions Developers Should Ask Innovators has a list of questions any good development team would ask. Some offer specialized skill sets like expertise in a particular programming language or framework, or specific domain knowledge.

Software Development 295

Software Development Software Review Company Software 295

Tenable

MARCH 1, 2024

Check out what’s new in NIST’s makeover of its Cybersecurity Framework. Also, how to assess the cybersecurity capabilities of a generative AI LLM. 1 - NIST’s Cybersecurity Framework 2.0 1 - NIST’s Cybersecurity Framework 2.0 The Cybersecurity Framework at 10.and And the most prevalent malware in Q4. And much more!

Artificial Inteligence 73

Artificial Inteligence Malware Generative AI Government 73

Perficient

FEBRUARY 28, 2024

Adobe Summit 2024 is right around the corner, and we’re excited to sit down with the executive director of marketing applications at Morgan Stanley Dorothy Joseph on March 27 at 11:30 A.M Register for the Exclusive Fireside Chat With Morgan Stanley If you’re attending Adobe Summit 2024, make sure to include this lunch session on your agenda.

Digital Marketing 109

Digital Marketing Analytics Marketing Industry 109

Palo Alto Networks

OCTOBER 5, 2023

With an ever-growing attack surface in an increasingly interconnected world, there has never been a more critical time to educate and train a cybersecurity workforce with the advanced skills required for meaningful jobs that complement technological innovation. JR Gumarin presents at the 2020 in-person Secure the Future competition.

Technical Review 115

Technical Review Education Transportation Network 115

Tenable

OCTOBER 6, 2023

A SANS Institute survey found that budgets for ICS/OT security have shrunk, and advises on how to do more with less. In addition, CISA’s Cybersecurity Awareness Month campaign challenges tech vendors to build safer products. For more information about ICS/OT security, check out these Tenable blogs and videos: “ Three U.S.

Budget 65

Budget Report Survey Open Source 65

N2Growth Blog

APRIL 11, 2024

This planning secures the organization’s future by training competent leaders and fosters a culture of development that can make an organization an employer of choice. In the 2024 business environment, organizations must have a clear succession plan to ensure a smooth leadership transition.

Trends 176

Trends Artificial Inteligence Technical Review Artificial Intelligence 176

Tenable

DECEMBER 22, 2023

As we bid adieu to 2023, we highlight major trends that impacted cybersecurity professionals in the past 12 months. Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Cybersecurity teams were no exception.

Artificial Inteligence 75

Artificial Inteligence Technical Review Cloud Artificial Intelligence 75

Tenable

SEPTEMBER 15, 2023

Tasked with securing your org’s new AI systems? Plus, open source security experts huddled at a conference this week – find out what they talked about. That’s the topic of the paper “ Securing AI: Similar or Different? published by Google’s Cybersecurity Action Team. ” published by Google’s Cybersecurity Action Team.

Open Source 113

Open Source Systems Review System Software Review 113