Protect your clouds

December 6, 2024 at 04:18AM The 2024 IBM Cost of the Data Breach Report reveals that 40% of data breaches from March 2023 to February 2024 involved data stored in multiple environments, including the cloud. SANS offers best practices to help safeguard your cloud infrastructure effectively. **Meeting Takeaways:** 1. **SANS Best Practice Guidance:** – Participants … Read more

AI Configuration Best Practices to address AI Security Risks

December 4, 2024 at 11:13PM AI adoption is increasing among organizations for productivity and new business opportunities, but security often lags behind. The article outlines AI security risks, including prompt injection and model theft, suggesting best practices to mitigate these risks, such as configuring sensitive information filters and disabling public access to AI resources. ### … Read more

Virtual Event Today: Cyber AI & Automation Summit

December 4, 2024 at 07:55AM The Cyber AI & Automation Summit, hosted by SecurityWeek today, December 4th, from 11AM – 4PM ET, focuses on AI’s transformative role in cybersecurity. Key topics include practical AI applications, risk reduction, and automation challenges, featuring expert speakers and product demos in an interactive online format. **Takeaways from SecurityWeek’s Cyber … Read more

7 PAM Best Practices to Secure Hybrid and Multi-Cloud Environments

December 4, 2024 at 07:42AM The text discusses the challenges and risks associated with multi-cloud and hybrid environments, emphasizing the importance of privileged access management (PAM). It highlights best practices for PAM, including centralized access controls, limiting resource access, implementing role-based access, adopting zero trust principles, and ensuring proper credential management to enhance security and … Read more

World Tour Survey: IT Operations’ Hands-on Defense

December 3, 2024 at 02:24PM Cybercriminals are enhancing their attacks using generative AI, increasing risks for businesses. A survey of over 750 cybersecurity professionals reveals rising concerns among IT operations teams regarding operational blind spots and prioritization of vulnerabilities. Effective communication with security operations is vital for addressing these challenges and ensuring security protocols are … Read more

Vendors Unveil New Cloud Security Products, Features at AWS re:Invent 2024

December 3, 2024 at 09:06AM At AWS re:Invent 2024, new cloud security products were announced including AWS’s incident response service and enhanced threat detection for Amazon GuardDuty using AI. Wiz launched Wiz Defend for real-time threat detection, while Sweet Security introduced a unified platform. Skyhawk Security announced interactive detection capabilities for suspicious activities. ### Meeting … Read more

AWS Launches New Incident Response Service

December 3, 2024 at 06:55AM Amazon Web Services (AWS) launched a new incident response service that aids security teams in faster threat response and recovery using machine learning. It automates triage and analysis of security signals, offers preconfigured notifications, and allows collaboration with third-party vendors. The service is available in 12 AWS regions globally. ### … Read more

AWS unveils cloud security IR service for a mere $7K a month

December 2, 2024 at 08:36PM Amazon Web Services (AWS) has launched a new incident response service, combining automation and human intervention, with a starting price of $7,000 per month. The service offers 24/7 support, threat analysis, and centralized tools for managing security incidents, available in 12 global regions. Pricing increases with AWS spending tiers. ### … Read more

AWS Launches Incident Response Service

December 2, 2024 at 12:50PM AWS has launched a new Security Incident Response service that automates security incident management. It integrates with Amazon GuardDuty and third-party solutions for incident triage and alerts, offering continuous support from AWS’s Customer Incident Response Team. The service features self-service tools and dashboards for performance monitoring and enhanced incident handling. … Read more

Cybersecurity M&A Roundup: 49 Deals Announced in November 2024

December 2, 2024 at 11:37AM In November 2024, a record 49 cybersecurity M&A deals were announced, contributing to a total of 178 deals in the first half of the year, the slowest since 2021. Notable acquisitions include Belden’s purchase of Voleatech, Bitsight’s acquisition of Cybersixgill, and CrowdStrike’s buy of Adaptive Shield. ### Meeting Takeaways: Cybersecurity … Read more