Features
4 strategy game-changers for finding cybersecurity talent
Some CISOs are shaking up their staffing plans to address the challenges of recruiting, hiring and retaining cybersecurity workers – and finding success in their moves.
![locked phone and virtual data [mobile security]](https://images.idgesg.net/images/article/2018/02/mobile_security_thinkstock_490617284-100749265-small.3x2.jpg?auto=webp&quality=85,70)
In-app browser security risks, and what to do about them
Data security and privacy risks surrounding in-app browsers have been making headlines. These are the threats they pose and steps needed to minimize them.
How Azure Active Directory opens new authentication risks
Hybrid cloud identity and access management services add complexity and opportunity for attackers to network authentication processes, as recently demonstrated for Azure AD.
![A user reviews data and statistical models. [analytics / analysis / tracking / monitoring / logging]](https://images.idgesg.net/images/article/2020/08/user_reviews_data_tracking_monitoring_analytics_event_logging_analysis_threat_detection_by_laurence_dutton_gettyimages-1170687091_2400x1600-100855964-small.3x2.jpg?auto=webp&quality=85,70){kind=tracking}
Top 12 managed detection and response solutions
These MDR services offer human and machine monitoring of your network to identify and respond to the most likely threats.
Resolving conflicts between security best practices and compliance mandates
Sometimes the latest security best practices don't align with an organization's compliance templates. These are some of the areas where you might need an exception.
![Tech Spotlight > Cybersecurity [CSO] > Hands gesture in conversation](https://images.idgesg.net/images/article/2021/03/spot_cybersecurity_02_cso_hands_gestures_talking_by_rawpixel_cc0_abstract_security_by_jeff_hu_gettyimages-1221975486_hero-100879634-small.3x2.jpg?auto=webp&quality=85,70){kind=tracking}
Key takeaways from the Open Cybersecurity Schema Format
The OCSF looks to standardize and normalize the data that cybersecurity tools generate with the goal of making them work better together.
How Carrier’s product security team delivers the ‘right support for the right product’
Carrier CPSO John Deskurakis developed a framework for product security that works for the lifecycle of all products across all business lines
Russia-linked cyberattacks on Ukraine: A timeline
Cyber incidents are playing a central role in the Russia-Ukraine conflict. Here's how events are unfolding along with unanswered questions.
Why patching quality, vendor info on vulnerabilities are declining
It's getting harder to assess the impact of patching or not patching, and too many patches don't fully fix the problem. It's time to pressure vendors.
What is the cost of a data breach?
The cost of a data breach is not easy to define, but as more and more organizations fall victim to attacks and exposures, the financial repercussions are becoming clearer.
6 best practices for blue team success
Every stakeholder, from the CISO to even the red team, wants the blue team to succeed against simulated cyberattacks. Sticking to this advice will help make that happen.
7 critical steps for successful security onboarding
Creating a culture of security starts on day one, say veteran security leaders. Here’s their advice for making that initial security training more effective.
How ABM built a cohesive security program around zero trust
CISO Stephanie Franklin-Thomas advances ABM’s security program with a holistic approach to zero trust, putting equal emphasis on people, process, and technology.
Ransomware safeguards for small- to medium-sized businesses
Following these 40 safeguards from the Institute for Security and Technology will help protect SMBs from ransomware and other malware attacks.
Vulnerability eXploitability Exchange explained: How VEX makes SBOMs actionable
VEX adds context to software vulnerabilities to better inform risk assessment decisions.
3 ways China's access to TikTok data is a security risk
The security community weighs in on real-world scenarios in which China or other nations could operationalize data collected by online platforms and how to mitigate the risk.
Top 5 security risks of Open RAN
Open RAN enables interoperability among hardware, software, and interfaces used in cellular networks but also changes their attack surface.
Black Basta: New ransomware threat aiming for the big league
The Black Basta ransomware gang has reached a high level of success in a short time and is possibly an offshoot of Conti and REvil.
37 hardware and firmware vulnerabilities: A guide to the threats
Meltdown and Spectre raised the alarm over vulnerabilities that attackers can exploit in popular hardware and its firmware. This list, though not comprehensive, presents the most significant threats.
Most Popular
BrandPosts
Learn more-
Sponsored by Juniper Networks
-
Sponsored by Devo
-
Sponsored by Microsoft Security