IT officials from Ukraine continue to call out alleged Russian cyberattacks. This comes as hacktivists have taken matters into their own hands in the digital underground. Also: NATO pledges additional cyber support, while President Joe Biden urges U.S. governors to bolster defenses.
The MITRE ATT&CK framework has been around for years, but we are now seeing it being adopted by organizations more as they realize the need for a strong IT security team and more funding is becoming available to increase the maturity of information security programs.
This framework helps organizations manage cyber...
If Russia uses hack attacks to support its invasion, would Western governments want to immediately attribute those attacks or disruptions? Enter a Thursday alert from the U.S. government warning that it is "aware of possible threats to U.S. and international satellite communication networks."
In their Security Operations Primer, Gartner has recently identified Attack Surface Management as one of the top security trends and priorities for 2022. In this webinar you will learn how to address this problem by combining ASM, Vulnerability Management and Threat Intelligence into a single solution.
Join us...
How do you get the data out of your infrastructure and applications in order to properly observe, monitor, and secure their running states while minimizing overlap, wasted resources, and cost?
This book introduces you to the concept of observability pipelines, which help slash costs, improve performance, and...
Independence with respect to observability means being able to choose the best tools and approaches. Challenges to this independence can come both externally and internally. Vendors, other teams, and budget concerns can restrict your choices and seek to control how you observe your systems. At the same time, different...
Which adversaries' attack techniques do enterprises need to prioritize? This question was the basis of a research project conducted in part by MITRE and partners such as Fortinet's FortiGuard Labs. Fortinet's Douglas Jose Pereira dos Santos discusses the value of high-resolution threat intelligence.
'Despite an arsenal of point products designed to block malware and threats and warn of vulnerabilities that can be exploited by attackers; it is no longer sufficient to rely on traditional defence techniques. While effective in some areas, these approaches are limited, with one of the most important gaps being the...
Insider risk and data loss prevention (DLP) are a top concern for organisations today. And it makes sense, with a distributed workforce and increasing reliance on technology, legacy, on-prem DLP technology hasn’t lived up to its promises.
That’s because data loss begins with people, whether careless, compromised...
As Russia's invasion of Ukraine continues, what should global CISOs and security teams do to ensure that their organizations stay protected? Beyond following cybersecurity agencies' guidance, experts offer advice on how to brief the board of directors, appeal for resources, support teams and more.
Why didn't Russia unleash major cyberattacks against Ukrainian critical infrastructure ahead of its invasion troop advance? While theories abound, some experts warn that, unfortunately, this war and its cost to human life is only set to get worse.
Fortinet's FortiGuard Labs has released its latest Global Threat Landscape Report, and it portrays adversaries who are increasingly more sophisticated and speedy and who are diversifying their attack techniques. Derek Manky tells why organizations need to respond by bolstering the cyber kill chain.
A question that keeps many CISOs awake at night is whether or not to pay in a ransomware attack.
In a vacuum, the guidance to withhold payment makes total sense. We don’t want to negotiate with
criminals. But when you need to get your business back online, a cost/benefit analysis takes effect, and
a company will...
CISA and the FBI issued a joint advisory pointing to Russian state-sponsored activity using WhisperGate and HermeticWiper malware to target Ukrainian organizations. CISA also updated the Shields Up webpage to include new recommendations for corporate leaders and actions to protect critical assets.
The industrial cyber threat landscape is constantly changing with new adversaries, vulnerabilities, and attacks that put operations and safety at risk.
The Dragos Year in Review summarizes what you need to know to protect your critical assets, including:
Findings from incident response and threat hunts
The...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.