vulnerability assessment

8 vulnerabilities found in macOS operating system Microsoft apps

Posted on by Admin
8 vulnerabilities found in macOS operating system Microsoft apps

Researchers from Cisco Talos have discovered 8 vulnerabilities in macOS operating system Microsoft apps. Through these vulnerabilities, a malicious actor can bypass an operating system’s permission model via existing permissions without requiring additional verification from the user. Successful attacks could grant a malicious actor any privilege already gained in the targeted application, such as sending emails, recording video and audio, or capturing pictures. According to the research, Microsoft considers these vulnerabilities to be a low…

Read More

AI arms race: Cybersecurity defenders in the age of evolving threats

Posted on by Admin
AI arms race: Cybersecurity defenders in the age of evolving threats

As web application cyberattacks surge, defenders are on the frontline of an ever-evolving battlefield. With adversaries leveraging artificial intelligence (AI) to sharpen their assaults, defenders face unprecedented challenges. However, AI isn’t just empowering attackers — it’s also emerging as a crucial ally for defenders. Organizations can use AI’s capabilities and implement strong security training to identify and neutralize threats.  Rest assured, the rise in web application attacks signifies a persistent shift rather than a passing…

Read More

Security leaders are facing a new wave of identity risks

Posted on by Admin
Security leaders are facing a new wave of identity risks

A study has found that increased technological and organizational complexity is contributing to new identity risks that security leaders must manage. The study, done by ConductorOne, surveyed more than 500 IT security leaders in the United States and found that increased complexity is driving new identity risks.  On the subject of technology complexity, the report found that hybrid IT environments are common. 76% of respondents reported that their company has a hybrid IT environment. 18%…

Read More

Misconfigurations drive 80% of security exposures

Posted on by Admin
Misconfigurations drive 80% of security exposures

A report from XM Cyber analyzes more than 40 million exposures in order to provide a thorough understanding of the current exposure landscape. The report found that 80% of exposures are caused by identity and credential misconfigurations. Out of these exposures, one-third of them put critical assets at risk of a breach. According to the report, a majority of the exposure is within an organization’s active directory, a critical component for connecting users to network…

Read More

3 tips to help bridge the gap between identity and security teams

Posted on by Admin
3 tips to help bridge the gap between identity and security teams

Every year, we see the lines continue to blur between IT, operations and security teams, with many functions traditionally sitting with the CIO that may be better suited with the CISO — or at least need a dotted line to the security team. One such function is identity. Identity and Access Management traditionally manages access to systems, databases, devices, the cloud, SASS applications, remote access, multi-factor authentication (MFA) and account privileges rather than focusing on…

Read More

False positives: Mitigating concerns from cybersecurity-minded users

Posted on by Admin
False positives: Mitigating concerns from cybersecurity-minded users

Author’s note: Views are my own. Enterprise organizations may require that their product adhere to strict security requirements or undergo extensive vendor due diligence at onboarding. Technical analysis of the product, code or software via scanning or testing is often a step in this process. While a security assessment is a crucial component of any vendor management program, security assessments of a product can sometimes indicate risk when there is no risk. A typical example…

Read More

Unveiling the power of external attack surface management

Posted on by Admin
Unveiling the power of external attack surface management

Verizon’s latest data breach report shows that 83% of attacks are carried out by external actors, exploiting vulnerabilities in companies’ network perimeters. At the same time, Gartner has identified External Attack Surface Management (EASM) as the top cybersecurity trend for the coming 5 to 10 years. So, what exactly is EASM, and why is it gaining such global prominence?  EASM is a cybersecurity approach that involves continuously monitoring and assessing a company’s publicly accessible digital assets for vulnerabilities….

Read More

Strengthening the cyber risk lifecycle

Posted on by Admin
Strengthening the cyber risk lifecycle

Strengthening the cyber risk lifecycle | Security Magazine This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more. This Website Uses CookiesBy closing…

Read More

Quantifying the risk of cybersecurity

Posted on by Admin
Quantifying the risk of cybersecurity

Quantifying the risk of cybersecurity | Security Magazine This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more. This Website Uses CookiesBy closing…

Read More

How to assess your organization’s application security

Posted on by Admin
How to assess your organization’s application security

How to assess your organization’s application security | Security Magazine This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more. This Website Uses…

Read More
1 2