November 14, 2023 at 02:30PM The text describes the author’s reflections on 100 straight quarters of profitability at Trend Micro. It highlights how the company’s conservative approach to spending has allowed them to give back to communities and support various charitable initiatives. The author expresses pride in being part of an organization that prioritizes non-revenue … Read more
November 10, 2023 at 10:03AM Executives need a profound understanding of cyber, data, and technology risks in today’s business landscape, especially during mergers and acquisitions (M&A). The significance of cybersecurity during M&A due diligence lies in evaluating the target company’s cybersecurity posture. Intangible assets, specifically digital assets, hold substantial value but are susceptible to breaches … Read more
November 6, 2023 at 03:28AM Zero day threats are security vulnerabilities that have been detected in a system or device but have not yet been patched by the vendor community. These threats can be targeted towards specific companies or applications and can cause significant damage, including financial losses. Relying solely on vendors to address these … Read more
November 3, 2023 at 10:14AM Attackers have been distributing spyware through modified versions of WhatsApp and Telegram, collecting private data from Android users. Kaspersky researchers detected 340,000 attempts to distribute the spyware through WhatsApp mods, with the real number of installations likely being higher. The majority of victims were in Azerbaijan, Yemen, Saudi Arabia, Egypt, … Read more
November 1, 2023 at 07:09AM Graylog, a SIEM and log management provider, has raised $39 million in funding from investors including Harbert Growth Partners, Piper Sandler Merchant Banking, and Silver Lake Waterman. The company’s centralized log management solution helps organizations capture, store, and analyze data from multiple sources, with additional security, compliance, and troubleshooting capabilities. … Read more
October 31, 2023 at 08:36AM The text discusses the growing cyber threats and the need for a “never trust, always verify” principle known as Zero Trust Network Access (ZTNA). It highlights the challenges of implementing ZTNA within the office and suggests using RBAC+ (Role Based Access Control) to extend ZTNA capabilities. It also emphasizes the … Read more
October 25, 2023 at 10:07AM Satellite systems play a critical role in communication, weather monitoring, navigation, and more, but they face numerous threats to their security and integrity. To address these challenges, a robust cybersecurity framework is needed, utilizing the NIST Cybersecurity Framework (CSF) steps: identify, protect, detect, respond, and recover. It is important to … Read more
October 25, 2023 at 09:21AM The Cybersecurity Resilience Quotient (CRQ) is a proposed industry-wide metric to assess and improve organizations’ cybersecurity resilience. It goes beyond traditional metrics by considering factors such as asset criticality, exposure, vulnerability, risk tolerance, architecture defensibility, business process vulnerabilities, and incident response preparedness. The CRQ can be used for benchmarking, risk … Read more
October 24, 2023 at 12:49PM Increased training and greater cybersecurity awareness have led to an 11% decrease in cyber threats in Kenya, according to the Kenya Computer Incident Response Team Coordination Centre (KE-CIRT/CC). Between July 2022 and June 2023, Kenya experienced over 855 million cyber threats, making it the third most targeted country in the … Read more
October 24, 2023 at 10:01AM Most countries fail to recognize cybercrime as a national security issue, despite its direct threat to critical infrastructure and citizens. National intelligence agencies are focused elsewhere, leaving private organizations vulnerable. To combat cybercrime effectively, nation-states should establish an international cybersecurity alliance, similar to NATO, to protect their people, infrastructure, and … Read more