#CybersecurityChallenges

Could Security Misconfigurations Become No. 1 in OWASP Top 10?

by

September 27, 2024 at 10:05AM The convergence of rising cyber threats, AI, remote work, and hybrid infrastructures presents significant cybersecurity challenges. Continuous threat exposure management and robust security solutions are imperative. Misconfigurations are a major vulnerability, with 80% of ransomware attacks attributed to common configuration errors. Automation and policy-as-code approach are recommended to mitigate human … Read more

Cyber Staffing Shortages Remain CISOs’ Biggest Challenge

by

September 10, 2024 at 03:17PM SecOps leaders face major challenges navigating the skills gap in cybersecurity and using commonly used tools. Command Zero’s report highlights the shortage of qualified cyber investigators, leading to overworked teams and increased threats. Additionally, the report discusses challenges posed by EDR/XDR, SIEM, and SOAR tools. It also emphasizes the need … Read more

Remote Work: A Ticking Time Bomb Waiting to be Exploited

by

August 26, 2024 at 10:33AM The challenges of hybrid work environments, including unsecured home networks and the use of unvetted software, pose significant security risks for organizations. Remote and hybrid workers may be susceptible to malware, phishing, and unauthorized access to corporate data. It is essential to implement measures such as limiting inbound network traffic, … Read more

AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco

by

July 30, 2024 at 10:00AM Cisco’s inaugural State of Industrial Networking Report highlights cybersecurity and artificial intelligence as top investment priorities for industrial organizations. Based on a survey of 1,000 individuals across 17 countries, the report reveals that 89% prioritize cybersecurity compliance. Significant investment in operational technology (OT) and increased spending on AI-enabled devices and … Read more

How Intelligence Sharing Can Help Keep Major Worldwide Sporting Events on Track

by

July 5, 2024 at 07:52AM Major worldwide sporting events like Olympics and the FIFA World Cup attract global interest, but also face cybersecurity threats. The 2024 Paris Olympic Games are expected to have 4 billion viewers. Such events have been targeted by cybercriminals in the past, making robust cybersecurity strategies and threat intelligence sharing essential … Read more

Rockwell’s ICS Directive Comes As Critical Infrastructure Risk Peaks

by

June 12, 2024 at 06:37PM With rising geopolitical tensions and cyber threats, Rockwell Automation advised customers to disconnect industrial control systems (ICS) from the internet to mitigate vulnerabilities. Cybersecurity experts warn of nation-state attacks targeting critical infrastructure, which face challenges due to online exposure and software vulnerabilities. Securing ICS assets and implementing offline measures are … Read more

Xona Raises $18 Million for OT Remote Access Platform

by

June 11, 2024 at 06:18AM Xona, a zero trust user access platform for industrial operations, has raised $18 million in a strategic funding round led by Energy Impact Partners. This brings their total raised to $32 million, and the funds will be used to enhance product development, expand the team, and create strategic alliances. The … Read more

Upleveling the State of SMB Cybersecurity

by

June 6, 2024 at 07:42AM Cybersecurity threats are increasingly targeting small and medium-sized businesses (SMBs), with 94% experiencing attacks in 2024, up from 64% in 2019. SMBs face challenges such as resource constraints, lack of awareness, and sophisticated threats. Managed Service Providers (MSPs) are rising as essential allies, offering expertise, services, and support to strengthen … Read more

It might take a decade to address SSC security, says infosec exec

by

May 3, 2024 at 01:36PM Varun Badhwar, CEO at Endor Labs, predicts that software supply chain vulnerabilities will become a major cybersecurity threat, with a vast majority of enterprise code derived from untrusted sources. He emphasizes the need for proper documentation, automation, and a thorough reevaluation of open-source risks. Badhwar predicts a lengthy process in … Read more

New Regulations Make D&O Insurance a Must for CISOs

by

March 19, 2024 at 01:05PM CISOs bear the responsibility for preventing cyberattacks but lack the authority to allocate funds for required technological defenses. The CISOs are currently responsible for preventing cyberattacks, but they lack the authority to allocate funding for the required technological defenses as per regulations. Full Article