Cybersecurity
RSS

Cybersecurity certifications: what's the worth?

Cybersecurity professionals to newcomers: Focus on vendor-neutral certifications

July 23, 2021

Cybersecurity professionals are far more likely to hold vendor-specific certificates than certifications from a vendor-neutral association or standards-based organization, according to the (ISC)²Cybersecurity Career Pursuers Study. But when asked which qualifications they would recommend to cybersecurity newcomers, professionals tend to prioritize vendor-neutral credentials.

5 minutes with Steve Grewal - Preparing for new data privacy regulations

Maria Henriquez

July 22, 2021

Steve Grewal, Cohesity Federal CTO and former U.S. Department of Education CISO/CTO/CIO, shares his insights into how organizations can leverage modern data management strategies and technologies to ensure they are prepared to reduce the impact of ransomware attacks while being ready for audit and reporting processes to remain compliant with increasing state-by-state regulations.

TSA announces new cybersecurity regulations for critical pipeline owners and operators

July 22, 2021

In response to the ongoing cybersecurity threat to pipeline systems, DHS’s Transportation Security Administration (TSA) announced the issuance of a second Security Directive that requires owners and operators of TSA-designated critical pipelines that transport hazardous liquids and natural gas to implement a number of urgently needed protections against cyber intrusions.

Creation of a customized college student cybersecurity awareness online learning solution

Stanley J. Mierzwa Brian Lau Cary Harr Garvin Tam Iassen Christov Bruno Soares Lima

July 22, 2021

Let's explore the overarching benefits of implementing a student cybersecurity awareness program at your higher-education institution.

Senators introduce cyber incident notification act

July 22, 2021

Leaders of the Senate Intelligence Committee and other bipartisan lawmakers have formally introduced legislation requiring federal contractors and critical infrastructure groups to report attempted breaches following moLeaders of the Senate Intelligence Committee and other bipartisan lawmakers have formally introduced legislation requiring federal contractors and critical infrastructure groups to report attempted breaches following months of escalating cyberattacks. nths of escalating cyberattacks.

MITRE Engenuity releases first ATT&CK evaluations for industrial control systems security tools

July 21, 2021

MITRE Engenuity released results from its first round of independent MITRE Engenuity ATT&CK Evaluations for Industrial Control Systems (ICS). The evaluations examined how cybersecurity products from five ICS vendors detected the threat of Russian-linked Triton malware.

New research shows growing risk of data exposure

Along with insider threats related to a potential "Great Resignation," Netskope report covers increased cloud application security risks, from malware delivery to third party plugins

July 21, 2021

Netskope revealed new research showing the continued growth of malware delivered by cloud applications and also the potential for critical data exfiltration tied to employees departing their jobs, among a range of increasing cloud application security risks.

MosaicLoader malware targets software pirates

July 21, 2021

Bitdefender security researchers discovered a new malware strain spiking in their telemetry. The malware, which Bitdefender named MosaicLoader, is a downloader that can deliver any payload to the infected system. During their investigation, Bitdefender found that MosaicLoader threat actors used the following tactics to hinder researchers' malware analysis efforts and to increase their attacks' rate of success:

Going passwordless: Future-proofing your digital identity

Dr. Mohamed Lazzouni

July 21, 2021

In this article we will delve further into the many risks to today’s digital identity solutions. We will also review the benefits of alternatives to passwordless authentication solutions using biometrics, and ultimately where the future of identity security could be heading long-term.

US formally accuses China of Microsoft hack

July 20, 2021

The United States, the European Union, NATO and other world powers on Monday accused the Chinese government of an array of malicious cybersecurity incidents, blaming its Ministry of State Security (MSS) and hackers for the security attack on Microsoft's email server disclosed in early March 2021.

Retail security professionals are facing an increasingly complex array of security challenges — everything from organized retail crime to evolving cyber-physical threats and public safety concerns.

Cybersecurity
RSS

Cybersecurity professionals to newcomers: Focus on vendor-neutral certifications

5 minutes with Steve Grewal - Preparing for new data privacy regulations

TSA announces new cybersecurity regulations for critical pipeline owners and operators

Creation of a customized college student cybersecurity awareness online learning solution

Senators introduce cyber incident notification act

MITRE Engenuity releases first ATT&CK evaluations for industrial control systems security tools

New research shows growing risk of data exposure

MosaicLoader malware targets software pirates

Going passwordless: Future-proofing your digital identity

US formally accuses China of Microsoft hack

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

Cybersecurity RSS

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

Cybersecurity
RSS