July 1, 2024 at 10:07AM Psychology professor Daniel Kahneman, known for “Thinking Fast and Slow,” emphasized two modes of thinking – immediate reactions and slow, logical consideration. CISOs face balancing long-term risk management with rapid IT changes. While traditional systems require methodical security measures, modern applications demand automatic, fast responses. Managing risk effectively involves incorporating … Read more
January 19, 2024 at 10:05AM The Cybersecurity and Infrastructure Agency (CISA) has released a 2023–2024 “CISA Roadmap for Artificial Intelligence” to ensure secure and trustworthy development and use of AI, aligned with the White House Executive Order 14110. The road map focuses on four goals including cyber defense, risk reduction, operational collaboration, and agency unification. … Read more
December 22, 2023 at 10:05AM The dynamic between software developers and security teams is crucial for a productive work environment. Shifting from a reactive to a proactive approach, organizations can enhance collaboration, leverage context for focused remediation, improve code dependency visibility, educate developers with the right tools, and foster a culture of continuous feedback for … Read more
December 20, 2023 at 08:27PM The perpetual battle between IT security improvements and evolving attacker exploits has traditionally focused on software advancements. However, emerging hardware security technologies, particularly advanced instruction set architecture (ISA) extensions, have the potential to revolutionize IT security. Collaborative open-source efforts are driving progress in this area and will play a crucial … Read more
December 11, 2023 at 11:08AM Researchers have linked the Sandman threat group, known for cyberattacks on telecom providers, to a growing network of Chinese government-backed advanced persistent threat (APT) groups. This assessment by Microsoft, SentinelLabs, and PwC reveals shared practices and overlaps in malware development, emphasizing the need for collaboration within the cybersecurity community. From … Read more