RSS_Virtulization

Four years ago, when CloudHealth Secure State founders were researching the cloud market, it was hard to ignore the growing list of companies that ended up in the news headlines due to simple misconfiguration mistakes leading to massive data breaches. A closer look revealed that the security teams in many of these companies had tools, but were struggling with cloud visibility. They were getting the security alerts but didn’t know where to focus their resources…

Cryptocurrency, most notably Bitcoin, has become increasingly popular and valuable in recent years and with it have come a number of associated security risks, according to a pair of security experts speaking at the 2021 RSA Conference on May 19. Kenneth Geers, external communications analyst at Very Good Security, used the first part of the presentation to explain the history of money and why the US dollar has emerged as the world’s dominant reserve currency. “Good money…

Commentary: It’s progress that President Biden’s executive order recognizes the need to secure open source software. What it doesn’t do is address the best way to accomplish it. Image: iStockPhoto/maxkabakov It was just a matter of time before David Recordon’s impact on the U.S. federal government would be felt. Shortly after President Biden took office, he named Recordon the White House Director of Technology, coming a few years after Recordon ran open source initiatives at…

Cybersecurity and biases are not topics typically discussed together. However, we all have biases that shape who we are and, as a result, impact our decisions in and out of security. Adversaries understand humans have these weaknesses and try to exploit them. What can you do to remove biases as much as possible and improve your cybersecurity posture across all levels of your organization? Cybersecurity personnel have many things to address and decisions to make…

By Srinivas Mukkamala, Co-Founder and CEO, RiskSense Vulnerability management doesn’t always get the attention it needs until it’s too late. Vulnerability management is siloed and is slow to adapt to digital transformation and the associated attack surface risk. Applications, software-as-a-service, cloud, containers, open-source and DevOps continuous integration and development all need to be assessed in order to achieve cohesive visibility into risk. These pitfalls allow exposure points that adversaries leverage to infiltrate. In worst-case scenarios,…

Insights into Ransomware attacks, how they spread in industrial networks, and how to prevent them from happening. By Michael Yehoshua, VP of Global Marketing, SCADAfence Since the outbreaks of Wannacry & NotPetya ransomware attacks in 2017, we’ve been witnessing daily occurrences of attacks affecting OT networks that originated on the IT side. The U.S. National Security Agency (NSA) also highlighted this issue for this very simple reason. It works. Ransomware Works That’s the simplest way to explain why incidents…

Security expert says non-fungible tokens are a really exciting possibility for artists, but they can be stolen. He offers some ways to keep them secure. TechRepublic’s Karen Roby spoke with Rick McElroy, principal cybersecurity strategist with VMware Carbon Black, about security concerns with non-fungible tokens. The following is an edited transcript of their conversation. SEE: The CIO’s guide to quantum computing (free PDF) (TechRepublic) Karen Roby: Rick, set the stage first for what NFTs are….

NFTs pose a new security challenge: A cybersecurity expert explains Length: 5:52 | May 19, 2021 Criminals can launder money through NFTs and even steal them. One expert says there are some ways to keep yours safe. Source link

By Peter Stephenson, PhD, CISSP (lifetime), FAAFS (2015-16) Let’s face it, folks… when it comes to interdicting and stopping a cyberattack we’re tortoises racing the hare. When the adversary unleashes an automated attack on multiple locations of our organizations, by the time we can respond effectively using current-generation tools the damage has been done. Current generation tools – those that depend upon too much human interaction, are based upon databases of recently discovered threats, and…

SSH keys can be used in Linux or operating systems that support OpenSSH to facilitate access to other hosts without having to enter a password. Here’s how to do it. Image: Funtap/Shutterstock I work in a largely Linux shop, and I frequently have to hop on numerous remote systems to do my job. Logging in the traditional way with my ID and password can be cumbersome, and when working with scripting to deploy files or…