Tenable

APRIL 26, 2024

1 - New version of MITRE ATT&CK adds guidance on generative AI, cloud threats Information about malicious use of generative AI tools. Advice about securing cloud environments. Dive into six things that are top of mind for the week ending April 26. Recommendations for protecting software development pipelines. elections With the U.S.

Security 71

Security Cloud Artificial Inteligence Generative AI 71

Synopsys

MAY 13, 2019

The post [Webinars] Tech due diligence, IAST, and government software appeared first on Software Integrity Blog. Learn about the magic of IAST, how to uncover the risks of APIs and web services in M&A, and how DoD and government agencies can mitigate software risks.

Technical Review 40

Technical Review Software Review Government Software 40

Tenable

MAY 10, 2024

Is the software your company wants to buy securely designed? 1 - How to assess if a tech product is secure by design Buying a securely designed digital product can lower your risk of breaches, simplify cyber defense efforts and reduce costs. A new guide outlines how you can find out. And much more!

Software Review 65

Software Review Weak Development Team Generative AI Software 65

Tenable

DECEMBER 30, 2022

As 2022 ends, we highlight important data points that shine a light on the trends, challenges and best practices that matter to cybersecurity leaders eager to boost their exposure management and reduce their organizations’ cyber risk. . Dive into six illuminating cybersecurity research findings of 2022. Tenable’s Log4j resource page.

Cloud 98

Cloud Technical Review Software Review Systems Review 98

Tenable

MARCH 15, 2024

Check out CISA’s latest best practices for protecting cloud environments, and for securely integrating on-prem and cloud IAM systems. So many benefits – and so many security challenges. Cybersecurity and Infrastructure Security Agency (CISA) published this week. And don’t miss the latest CIS Benchmarks. And much more!

Systems Review 69

Systems Review System Cloud Software Review 69

Tenable

DECEMBER 22, 2023

As we bid adieu to 2023, we highlight major trends that impacted cybersecurity professionals in the past 12 months. Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Cybersecurity teams were no exception.

Artificial Inteligence 75

Artificial Inteligence Technical Review Cloud Artificial Intelligence 75

Tenable

OCTOBER 21, 2022

21 | The problem with Gen Zers and Millennials | Global shortage of cybersecurity pros worsens | An informal poll about attack surface growth | Password usage drops a bit | And much more! This may sound counterintuitive but employees between ages 18 and 41 tend to be less careful regarding cybersecurity.

Technical Review 98

Technical Review Authentication Survey Government 98

Tenable

APRIL 21, 2023

Also, the SLSA supply chain security framework is ready. In addition, security worries hold back enterprise IoT adoption. Cybersecurity and Infrastructure Security Agency (CISA) turned its attention to how to better distribute software bills of materials (SBOMs). And much more!

Open Source 52

Open Source Software Review Technical Review Development Team Review 52

Tenable

NOVEMBER 24, 2023

Uncle Sam wants your input on the latest version of the “Secure Software Development Attestation Form” that federal agencies will use to assess the security of software vendors. government will evaluate the security practices of its software vendors – and offer your two cents. In addition, there’s a new zero trust certification.

Software Review 70

Software Review Software Insurance Software Development 70

Tenable

FEBRUARY 23, 2024

Plus, there’s a new generative AI governance checklist for tech and business leaders. And the White House seeks to boost ports' cybersecurity. This week, cybersecurity agencies from multiple countries, led by the Cyber Division of the U.K.’s Meanwhile, CISA wants water treatment plants to button up their cyber defenses.

Artificial Inteligence 66

Artificial Inteligence Artificial Intelligence Generative AI ChatGPT 66

Tenable

MARCH 29, 2024

The 52-page report, titled “ Managing Artificial Intelligence-Specific Cybersecurity Risks in the Financial Services Sector, ” touches on cybersecurity and fraud protection; fraud threats; the regulatory landscape; and major challenges and opportunities. This week, the U.K.

Systems Review 65

Systems Review Weak Development Team Banking System 65

Tenable

DECEMBER 1, 2023

Plus, a new survey shows generative AI adoption is booming, but security and privacy concerns remain. publish recommendations for building secure AI systems If you’re involved with creating artificial intelligence systems, how do you ensure they’re safe? And much more! That’s the core question that drove the U.S.

Artificial Inteligence 66

Artificial Inteligence Systems Review Government System 66

Tenable

FEBRUARY 16, 2024

Plus, JCDC will put special focus on critical infrastructure security in 2024. Meanwhile, CISA and OpenSSF shine a spotlight on the security of software package repositories. And scammers leveraged tech tools to steal $10 billion from U.S. Review ChatGPT 3.5’s Improve critical infrastructure’s cybersecurity foundation.

ChatGPT 70

ChatGPT Software Review Analysis Infrastructure 70

Tenable

OCTOBER 27, 2023

Check out how organizations’ enthusiasm over generative AI is fueling artificial intelligence adoption for cybersecurity. Also, why boards of directors feel more comfortable with cybersecurity. business and IT pros involved in cybersecurity. business and IT pros involved in cybersecurity. And much more!

Artificial Inteligence 63

Artificial Inteligence Artificial Intelligence Technical Review Backup 63

Ivanti

APRIL 4, 2024

To Ivanti’s Valued Customers and Partners, Our organization strives to produce the most secure solutions for Everywhere Work. Events in recent months have been humbling, and I want you to hear directly from me about the actions we are taking to ensure we emerge stronger, and our customers are more secure. And there is more to come.

Technical Review 109

Technical Review Development Team Review Systems Review Software Review 109

Tenable

DECEMBER 8, 2023

Meanwhile, the OpenSSF published 10 key principles for secure software development. Cybersecurity and Infrastructure Security Agency (CISA) issued a clarion call for software makers to use so-called “memory safe” programming languages. Plus, malware used in fake browser-update attacks ballooned in Q3. And much more!

Software Review 67

Software Review Software Malware Software Development 67

Tenable

JUNE 2, 2023

Plus, find out why securing identities is getting harder than ever – and how to fix it. Also, how a cloud security framework can help you – a lot. In addition, check out nifty SaaS security tips. Check out a hair-raising warning from AI experts. And much more! The good news?

Security 52

Security Technical Review ChatGPT Cloud 52

Tenable

SEPTEMBER 15, 2023

Tasked with securing your org’s new AI systems? Plus, open source security experts huddled at a conference this week – find out what they talked about. That’s the topic of the paper “ Securing AI: Similar or Different? published by Google’s Cybersecurity Action Team. ” published by Google’s Cybersecurity Action Team.

Open Source 113

Open Source Systems Review System Software Review 113

Tenable

MARCH 24, 2023

Learn about a new guide packed with best practices recommendations to improve IAM systems security. Plus, cybersecurity ranks as top criteria for software buyers. 1 - Best practices to boost IAM security from CISA and NSA Feel like your organization could boost the security of its identity and access management (IAM) systems?

Security 52

Security ChatGPT Transportation Software Review 52

Tenable

SEPTEMBER 8, 2023

Life is getting harder for cybersecurity pros, but there are ways to improve working conditions. Meanwhile, there’s a new, free attack-emulation tool for OT security teams. 2 - OT security teams get new adversary-emulation tool Are you tasked with securing your organization’s operational technology (OT) systems?

Technical Review 67

Technical Review Systems Review Software Review Survey 67

Tenable

DECEMBER 15, 2023

A group that includes the Cloud Security Alliance, CISA and Google is working to compile a comprehensive collection of best practices for secure AI use. Meanwhile, check out a draft of secure configuration recommendations for the Google Workspace suite. Dive into six things that are top of mind for the week ending December 15.

Groups 71

Groups Industry Hardware Software Review 71

Tenable

DECEMBER 9, 2020

For many global policymakers, the transformative impact of the COVID-19 pandemic has reinforced the need to adopt new cybersecurity and privacy policies. The COVID-19 pandemic and resulting global economic downturn represent new challenges for government security leaders. Brazil data security and Latin America regional influence.

Security 98

Security Policies Technical Review Systems Review 98

Ivanti

OCTOBER 4, 2022

Okay, I’ll admit it – I probably get more excited for Cybersecurity Awareness Month than most people. It has been 18 years since the first Cybersecurity Awareness Month, but this one feelsparticularly important. And perhaps, we are getting back to the fundamentals of cybersecurity rather than chasing the shiniest possible objects.

Technical Review 93

Technical Review Video Software Review Guidelines 93

CIO

AUGUST 1, 2022

Trying to explain secure access service edge (SASE pronounced ‘sassy’) and zero trust can be exasperating when you’re making the case for business leaders to invest in new products and infrastructure. Both SASE and zero trust are fast-evolving security concepts, creating somewhat of a moving target. Transformative explanations.

WAN 187

WAN Firewall Network Technical Review 187

CIO

JUNE 6, 2023

OpenAI’s ChatGPT has made waves across not only the tech industry but in consumer news the last few weeks. While there is endless talk about the benefits of using ChatGPT, there is not as much focus on the significant security risks surrounding it for organisations. Businesses are racing to implement policies to limit ChatGPT usage.

ChatGPT 212

ChatGPT Software Review How To Technical Review 212

Tenable

JUNE 16, 2023

Check out the NCSC’s advice about proper configuration in cloud security. Also, don’t miss OWASP’s revised list of top API security risks. 1 – NCSC: Configuration is key for cloud security The U.K.’s 1 – NCSC: Configuration is key for cloud security The U.K.’s Plus, a detailed guide about LockBit ransomware.

Cloud 52

Cloud Authentication Internet Disaster Recovery 52

Tenable

JUNE 1, 2022

What can we do to further harden the cybersecurity of power plants, fuel pipelines, water treatment plants and similar facilities? . As someone who worked as an ICS engineer – tasked with building, maintaining and troubleshooting industrial control systems – before specializing in OT cybersecurity, the issue is near and dear to my heart.

Infrastructure 98

Infrastructure Technical Review Transportation Systems Review 98

Synopsys

APRIL 3, 2020

Learn why application security vulnerabilities are a serious consideration in tech due diligence and how to evaluate your security risk in M&A transactions. The post [Webinar] Are You Acquiring the Next Big Breach? appeared first on Software Integrity Blog.

Technical Review 52

Technical Review Software Review Applications Software 52

Tenable

JULY 26, 2023

Check out the invaluable advice from a panel of experts from the insurance, legal and cybersecurity fields. Obtaining a policy has become more difficult in today’s cyberthreat landscape, with insurers asking for much more data about your cybersecurity processes and controls. The reasons are varied.

Insurance 52

Insurance How To Technical Review Analytics 52

Tenable

MARCH 27, 2023

EPA released new regulations that require states to assess cybersecurity risks at drinking water systems and ensure these systems have sufficient cyber protections. More information can be found here. 1 Checklist Category Tenable Solution Account Security (1.1-1.7) Here’s what you need to know — and how Tenable can help.

Systems Review 52

Systems Review System Technical Review Survey 52

Tenable

FEBRUARY 3, 2023

Also, check out our ad-hoc poll on cloud security. issues framework for secure AI Concerned that makers and users of artificial intelligence (AI) systems – as well as society at large – lack guidance about the risks and dangers associated with these products, the U.S. Plus, how organizations are balancing AI and data privacy.

ChatGPT 52

ChatGPT Artificial Intelligence Artificial Inteligence Technical Review 52

Tenable

JANUARY 19, 2024

Cybersecurity and Infrastructure Security (CISA) agency and the Federal Bureau of Investigation (FBI) said this week. To mitigate this risk, the agencies recommendations include: Using drones built with secure-by-design principles, such as those manufactured in the U.S.

Infrastructure 71

Infrastructure Malware Government Technical Review 71

Tenable

NOVEMBER 11, 2022

Get the latest on staffing challenges; nation-state assaults on critical infrastructure; supply chain security tips; ransomware weak links; Kubernetes security; and more! . 1 - Cybersecurity budgets rise, but hiring remains a challenge. Cybersecurity budget breakdown and best practices ” (TechTarget). “ and Canada.

Budget 52

Budget Software Review Weak Development Team Small Business 52

Tenable

DECEMBER 9, 2022

It was at around this time last year that the discovery of the zero-day Log4Shell vulnerability in the ubiquitous Log4j open source component sent shockwaves through the worlds of IT and cybersecurity. . 2 - OWASP’s top 10 CI/CD security risks. How long will this Log4Shell problem linger? Back in July, the U.S.

Software Review 52

Software Review SMB Malware Development Team Review 52

Tenable

JANUARY 5, 2024

Plus, new granular configuration recommendations for securing Microsoft 365 are out. 1 - NIST categorizes cyberattacks against AI systems Are you involved with securing the artificial intelligence (AI) tools and systems your organization uses? In addition, the cost of cyber incidents is rising. And much more!

Artificial Inteligence 70

Artificial Inteligence Systems Review System Generative AI 70

Tenable

OCTOBER 14, 2020

The future belongs to cybersecurity leaders who can align their objectives with an understanding of business risk. I've been working in cybersecurity for 20 years. I've been on the technical end performing penetration tests and malware analysis. We have to be equally fluent in the languages of technology and business.

Technical Review 102

Technical Review Study Metrics Organization 102

Tenable

DECEMBER 2, 2022

Get the latest on Log4Shell’s global remediation status; the need for metaverse security rules; a shutdown of “pig butchering” domains; tips for secure IoT products; an informal poll about AD security; and more! . Cybersecurity and Infrastructure Security Agency (CISA). Log4j guidance from the U.S.

IoT 52

IoT Systems Review Guidelines Technical Review 52