October 1, 2024 at 07:27AM Generative AI has transformed enterprise productivity but poses data leakage risks. A guide by LayerX offers security measures to balance innovation and security, highlighting steps for security managers: mapping AI usage, restricting personal accounts, prompting users, blocking sensitive data input, and restricting GenAI browser extensions. This nuanced approach allows reaping … Read more
September 30, 2024 at 10:48PM The U.S. Department of Justice has charged a U.K. national, Robert Westbrook, with executing a fraudulent scheme that allowed him to gain unauthorized access to corporate executives’ Microsoft 365 accounts, enabling him to generate millions in profits through securities fraud. Westbrook could face up to 20 years in prison and … Read more
September 16, 2024 at 01:21PM SecurityWeek will host the 2024 Attack Surface Management Summit as a fully immersive virtual event on September 18th. The summit will focus on foundational strategies for protecting corporate assets through reducing attack surface. Join leading cybersecurity experts to explore trends, challenges, and innovations in Attack Surface Management. Register for free … Read more
July 23, 2024 at 06:28AM Specops Software addresses the inherent security risks in traditional employee onboarding methods by offering a First Day Password feature with Specops uReset. This tool eliminates the need to share initial passwords and empowers new employees to create secure passwords through a verified system. By using this method, organizations can significantly … Read more
May 3, 2024 at 06:57AM SaaS applications are dominant in the corporate world, but they pose new security risks. LayerX’s guide “Let There Be Light: Eliminating the Risk of Shadow SaaS” addresses the challenges of unauthorized SaaS app usage, suggesting mitigation practices and comparing security controls. It recommends secure browser extensions as the most comprehensive … Read more
May 2, 2024 at 10:05AM The corporate IT landscape is shifting due to SaaS adoption and BYOD practices, providing flexible work options. However, integrating personal devices into corporate systems brings security challenges. Mobile device management and secure remote access are key solutions, along with implementing extra controls like antivirus protection and network access control to … Read more
April 10, 2024 at 02:31AM Google has introduced Chrome Enterprise Premium, targeting corporate users with AI-enhanced security features for $6 monthly per user. Gartner’s prediction about browsers becoming an enterprise platform by 2030 is becoming a reality, prompting a reevaluation of browser monetization. Chrome already offers strong security, but the Premium version provides additional AI-driven … Read more
April 8, 2024 at 02:12PM Home Depot confirmed a third-party vendor inadvertently exposed some employees’ personal details, including names and email addresses. The retailer’s disclosure follows a data dump by a crook on BreachForums. While the intrusion didn’t affect business operations or customer data, the stolen info could be used for credential theft. The same … Read more
April 3, 2024 at 10:03AM Integrating cybersecurity into our corporate and individual mindsets can effectively thwart hackers, ensuring greater security for all. From the meeting notes, the key takeaway is that integrating cybersecurity into corporate and individual thinking can increase the level of difficulty for hackers and create a safer environment for everyone involved. Full … Read more
March 27, 2024 at 10:10AM Ransomware evolution in the past months includes LockBit’s blog takedown, BlackCat’s exit, and smaller groups emergence. The ecosystem functions as a complex supply chain with RaaS dominating large groups. Affiliate competition and recent takedowns are shifting the landscape, potentially leading to ecosystem fragmentation. Corporate security recommendations include extensive monitoring, patching … Read more