Author: Admin

By Gal Helemski, co-founder and CTO, PlainID Today’s digital-centric enterprises need to manage a multitude of access rules across everything from repositories and directories to applications, increasing complexity levels. As a result, it is increasingly difficult to control and audit both authorizations and entitlement. What’s more, organizations worldwide have embraced remote and hybrid working environments. This means traditional security perimeters have expanded which has led to rising risk in data breaches. These scenarios reinforce the…

Software Security Requires Ongoing Vigilance Against New and Evolving Vulnerabilities  By Tim Kenney, Chief Operating Officer, SOOS Businesses Need Software and Today’s Software is Built with Open Source. Modern businesses need specialized software to run their organizations. Today, more than 90% of new software is built on open source components called packages.  Developers have access to an almost limitless array of open source packages to build their products, which has been transformational for the industry….

Microsoft is rolling back a recent change to block VBA macros by default, baffling many in the security community. Pictured: A Microsoft logo is seen during the 2015 Microsoft Build Conference on April 29, 2015, at Moscone Center in San Francisco. (Photo by Stephen Lam/Getty Images) In a move that has baffled much of the security community, Microsoft told Office 365 administrators Thursday that it would “roll back” a default block of VBA macros downloaded…

Aon recently disclosed that 145,889 of its North American customers had their sensitive information exposed in a large data breach. The British multinational financial services firm that sells a range of risk-mitigation products announced that hackers breached its systems “at various times” from December 29 2020 to February 26 2022. Aon disclosed the breach in a Securities & Exchange Commission filing in February. Further details were disclosed three months later, on May 26. In a…

The legal profession has been urged to stop advising clients to pay ransomware demands in a joint letter issued today by the UK’s National Cyber Security Centre (NCSC) and Information Commissioner’s Office (ICO). The open letter asked the Law Society to remind its members that they should not advise clients to pay ransomware demands when they fall victim to a cyber-attack. It emphasized that paying ransoms does not reduce the risk of future attacks on individuals or…

TOGAF is a longstanding, popular, open-source enterprise architecture framework that is widely used by large businesses, government agencies, non-government public organizations, and defense agencies. Offered by The Open Group, TOGAF advises enterprises on how best to implement, deploy, manage, and maintain enterprise architecture. The Open Group offers several options for those who want to be certified in the TOGAF 9. Earning a cert is a great way to demonstrate to employers that you are qualified…