The Old Ways of Vendor Risk Management Are No Longer Good Enough
Managing third-party risk in the SaaS era demands a proactive, data-driven approach beyond checkbox compliance.
Why Cybersecurity At The Olympics (And All Major Global Events) Shouldn’t Take A Backseat
Although the 2024 Summer Olympics brought more than 15 million visitors to Paris and generated $11 billion in economic activity,…
Senate confirms Kristi Noem as Trump’s Department of Homeland Security secretary
The Senate on Saturday confirmed Kristi Noem to lead the Department of Homeland Security, at a time when border security…
The Cyber Resilience Act: How Manufacturers Can Meet New EU Standards and Strengthen Product Security
Cybersecurity has become a leading priority for manufacturers of embedded systems and IoT devices. The rapid proliferation of these technologies,…
Employees Enter Sensitive Data Into GenAI Prompts Far Too Often
The propensity for users to enter customer data, source code, employee benefits information, financial data, and more into ChatGPT, Copilot,…
Trusted Apps Sneak a Bug Into the UEFI Boot Process
Seven system recovery programs contained what amounted to a backdoor for injecting any untrusted file into the system startup process.
CISA orders agencies to patch BeyondTrust bug exploited in attacks
CISA tagged a vulnerability in BeyondTrust's Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks, ordering…
Stolen Path of Exile 2 admin account used to hack player accounts
Path of Exile 2 developers confirmed that a hacked admin account allowed a threat actor to change the password and…
Treasury hackers also breached US foreign investments review office
Chinese hackers, part of the state-backed Silk Typhoon threat group, have reportedly breached the Committee on Foreign Investment in the…
Hackers steal ZAGG customers’ credit cards in third-party breach
ZAGG Inc. is informing customers that their credit card data has been exposed to unauthorized individuals after hackers compromised a…