July 18, 2024 at 08:21AM Join an upcoming webinar, “Turn Developers into Allies: The Power of Security Champion Programs,” to bridge the gap between developers and security. Learn about tactics to foster collaboration, effective communication, creating a culture of champions, and measuring success. The webinar features security experts from Mend.io, Yahoo, and Fortra. Register now … Read more
June 7, 2024 at 03:50PM Microsoft’s controversial Windows Recall, which takes snapshots of a user’s screen, uploads the images on the device, and analyzes them using OCR, has raised security concerns. After criticism, Microsoft will now offer Recall as an opt-in service, beef up data security, and require Windows Hello enrollment and presence proof for … Read more
June 5, 2024 at 04:00PM Karamba Security announced that BYD, a major EV manufacturer, has adopted its VCode software to create a Software Bill of Materials (SBOM) for electronic control units, enhance supply-chain security, and meet cybersecurity regulation UN R155. The tool aims to help manufacturers identify and address cybersecurity issues before production and comply … Read more
April 29, 2024 at 07:53AM The UK’s PSTI Act 2022 introduces strict regulations on smart device manufacturers to enhance security and combat cybercrime. It emphasizes minimum security standards, forbids easily discoverable default passwords, and mandates providing a contact for security concerns. However, experts argue that it falls short compared to EU standards. Non-compliance may result … Read more
December 4, 2023 at 05:19PM Zatik Security, a recent startup, announced Zack Glick as CTO and outlined partnerships to enhance cybersecurity for small to medium-sized businesses. Glick, formerly of Amazon Web Services, adds cloud security prowess to the team, supporting Zatik’s mission to offer tailored, high-quality security guidance. Clear Takeaways from Meeting Notes: 1. **New … Read more
November 20, 2023 at 09:33AM Johnson Controls has released patches for a critical vulnerability found in some of its industrial refrigeration products. The flaw, known as CVE-2023-4804, could allow unauthorized access to debug features. Impacted products include control panels used in the food and beverage industry worldwide. The patches fix the vulnerability that could potentially … Read more
November 17, 2023 at 05:08PM VicOne and Block Harbor have unveiled an integrated workflow-based system for the automotive industry that provides cybersecurity intelligence. The system improves the efficiency of software updates in vehicles and manages growing cybersecurity threats. It allows automakers to quickly assess risks and take appropriate actions. The solution also enables testing of … Read more
October 24, 2023 at 01:47PM Secure-by-design software development emphasizes the need to incorporate security considerations from the beginning. Small companies often struggle to access and afford application security expertise, resulting in insecure software. Zatik, a consulting firm founded by Kymberlee Price and Jon Callas, aims to provide fractional security consulting services to help startups and … Read more