Visibility: It's perhaps the single biggest security challenge for enterprises making their migration to multi-cloud environments. Jason Pfeiffer, Chief Strategy Officer of ReliaQuest, shares insights on how to address these issues upfront in cloud configuration.
U.S. President Joe Biden today signed a National Security Memorandum that aims to improve the cybersecurity of national security systems. The memo gives new powers to the NSA to oversee cybersecurity improvements such as the use of the multifactor authentication, encryption and endpoint detection services.
Modern organizations continue to embrace the convenience of hybrid work, but a lack of control over cloud apps introduces risks to sensitive data. A new Palo Alto Networks research, which analyzes data from more than 1,000 enterprises, reveals the top cybersecurity risks and modern trends that put organizations at the...
Proofpoint, which was acquired by private equity firm Thoma Bravo in 2021, has merged with Dathena, a New York-based AI data protection platform. Dathena's platform will address the need in Proofpoint's cloud management platform for safeguards against breaches and data exposure.
In today’s highly interconnected worlds, CISOs face a dual challenge: protecting data and
reporting to the Board of Directors. Log management has long been a tool in the CISO’s back
pocket, helping gain insight into potential security issues. However, the rise of cloud-based
infrastructures changes this, making...
The past two years have been a challenge for security leaders. 2020 started with COVID-19 and a pell-mell shift to remote work, and finished with the gut-punch of a major breach (SolarWinds) that put hundreds of organizations into frantic assess-and-remediate mode.
How are security leaders expected to patch today...
Researchers have identified a new wave of phishing attacks exploiting a vulnerability in the comments feature of Google Docs to deliver malicious phishing websites. It hit more than 500 inboxes across 30 tenants, with hackers using more than 100 different Gmail accounts, Avanan researchers say.
Alphabet's Google has purchased stand-alone security orchestration, automation and response vendor Siemplify for about $500 million in cash, to bolster the threat detection and response capabilities built into Google's Chronicle security analytics platform.
As healthcare entities set out to better secure cloud application development and management, there are several critical considerations they must not overlook. Key among these: "the need to move to a DevSecOps model in the first place," says Adrian Mayers, CISO of health insurer Premera Blue Cross.
Microsoft's Azure App Service had a security flaw, which researchers call "NotLegit," that kept your Local Git repository publicly accessible, according to a security blog from Wiz.io. The source code of customer applications written in Java, Node, PHP, Python and Ruby was exposed for four years.
The Cloud Security Alliance's new medical device incident response playbook aims to help healthcare entities plan for security incidents involving different types of devices, taking into consideration varying patient safety issues, say co-authors Christopher Frenz of Mount Sinai South Nassau and Brian Russell of...
This ebook explains how eBPF provides critical visibility that
engineers just can’t achieve via other means in distributed,
cloud-native environments. We discuss the role of eBPF in
providing crucial context that helps teams optimize not only
network performance, but also application performance. When
Modernizing your security operations can accelerate growth and eliminate risk — especially on your journey to the cloud. By having visibility across multicloud, hybrid and on-prem environments, you can better detect targeted attacks and malicious activity.
End-to-end visibility can:
Establish better security...