July 16, 2024 at 05:42PM BlueVoyant, a leading cybersecurity company, has launched an innovative Cyber Defense Platform integrating internal, external, and supply chain defense solutions. With AI-powered next-generation security operations, the platform offers detection & response, supply chain defense, digital risk protection, proactive defense, and cyber posture management. BlueVoyant has recently acquired Conquest Cyber and … Read more
July 16, 2024 at 08:23AM Organizations are prioritizing resiliency, aiming to operate during attacks and recover swiftly. Poor communication between stakeholders hinders response and recovery. Cytactic, a new cybersecurity startup, offers a software-as-a-service platform to consolidate crisis readiness, response, and recovery, streamlining information sharing and decision-making. Gartner emphasizes the importance of synchronized incident response preparation … Read more
July 8, 2024 at 02:07PM The cyber-insurance market has seen a significant decline in premium rates, making coverage more accessible to organizations of all sizes. Factors contributing to this decrease include a more competitive marketplace, improved cyber hygiene, and better risk assessment by insurers. Despite a rise in cyber-attacks, prices are expected to remain stable … Read more
July 2, 2024 at 07:22AM Cyberinsurance premiums have decreased by around 15% since 2022, as businesses have become more proficient at minimizing losses from cybercrime. Enhanced security measures such as multifactor authentication have aided in reducing insurance claims. However, the insurance industry’s cyclical nature suggests that lower premiums may not be a long-term trend. Industry … Read more
June 19, 2024 at 06:17AM Trend Micro’s MDR services achieved 100% detection in the MITRE Engenuity ATT&CK Evaluations for threats from menuPass and BlackCat/AlphV groups. The offering provides high-fidelity detection, actionable rates for major attack steps, and comprehensive visibility, effectively countering advanced persistent threats. Trend’s MDR combines AI and human threat expertise, proving to be … Read more
June 14, 2024 at 03:00AM Password exposure vulnerabilities in industrial control systems and operational technology pose significant risks. Hackers have targeted ICS systems using weak and default passwords, with examples including the Iranian government’s hijacking of systems at a water authority in Pennsylvania. To address these issues, experts recommend strong password management practices, encryption, and … Read more
June 13, 2024 at 05:33PM KnowBe4 announced its new Risk & Insurance Partner Program to address the rising cyber threats. The program offers exclusive discounts and aims to combine KnowBe4’s platform with partners’ cyber risk expertise. CEO Stu Sjouwerman emphasized the need to better protect customers from evolving cyber threats and encouraged interested parties to … Read more
June 13, 2024 at 01:25PM A proof-of-concept exploit for Veeam Recovery Orchestrator vulnerability tracked as CVE-2024-29855 has been released by security researcher Sina Kheirkha. The exploit allows unauthenticated access to the web UI with administrative privileges due to a hardcoded JWT secret. Veeam’s security bulletin suggests upgrading to patched versions and provides conditions required to … Read more
May 31, 2024 at 07:36AM Proton and Constella Intelligence found hundreds of British, French, and European Parliament politicians’ email addresses on dark web marketplaces. 918 addresses were leaked, with 68% of British MPs affected. Proton warned that using government email addresses for third-party services puts politicians and sensitive information at risk, as exposed passwords and … Read more
May 21, 2024 at 01:36PM The EPA states that nearly 70% of US community drinking water systems fail to comply with the Safe Drinking Water Act, including cybersecurity standards. The agency has announced plans to increase enforcement, as Russia and Iran have stepped up cyberattacks. The EPA has outlined top actions for securing water systems … Read more