3 Industries, 3 Security Programs
Security leaders from a media corporation, a commercial real estate company, and an automotive technology company share how they address…
When CISOs Are Ready to Hunt
This is what happens when a CISO gets tired of reacting to attacks and goes on the offensive.
Internet AppSec Remains Abysmal & Requires Sustained Action in 2023
A variety of initiatives — such as memory-safe languages and software bills of materials — promise more secure applications, but…
Omnibus bill defunds risky research involving ‘pathogens of pandemic potential’ in any ‘country of concern’
The spending bill passed by the Senate Thursday contains a provision limiting risky viral research involving "pathogens of pandemic potential"…
Container Verification Bug Allows Malicious Images to Cloud Up Kubernetes
A complete bypass of the Kyverno security mechanism for container image imports allows cyberattackers to completely take over a Kubernetes…
Videoconferencing Worries Grow, With SMBs in Cyberattack Crosshairs
Securing videoconferencing solutions is just one of many IT security challenges small businesses are facing, often with limited financial and…
What Kind of Data Gets Stolen When a Developer is Compromised?
What is the worst that can happen when a developer's machine is compromised? Depending on the developer's position, attackers gain…
Google WordPress Plug-in Bug Allows AWS Metadata Theft
A successful attacker could use the SSRF vulnerability to collect metadata from WordPress sites hosted on an AWS server, and…
Threat Modeling in the Age of OpenAI’s Chatbot
New technical chatbot capabilities raise the promise that their help in threat modeling could free humans for more interesting work.
Supply Chain Risks Got You Down? Keep Calm and Get Strategic!
Security leaders must maintain an effective cybersecurity strategy to help filter some of the noise on new vulnerabilities.