Timely Questions for Log4j Response Now — And for the Future
EXPERT INSIGHT: How to assess your exposure to the vulnerability with a combination of asset inventory, testing, solid information sources,…
Time to Reset the Idea of Zero Trust
CISOs are increasingly drawn to the zero trust security model, but implementing a frictionless experience is still a challenge.
Is Data Security Worthless if the Data Life Cycle Lacks Clarity?
If you cannot track, access, or audit data at every stage of the process, then you can't claim your data…
Police: Tesla Shooting Suspect Ambushed Co-Worker In Parking Lot
FREMONT (CBS SF) — After arguing with a co-worker, a Tesla employee quit his job,...
Mobile App Developers Keep Fraudulent Traffic at Bay with Anti-Fraud API
The new API and SDK from Pixalate helps mobile developers avoid getting their apps delisted from app stores by detecting…
Log4j attackers switch to injecting Monero miners via RMI
Some threat actors exploiting the Apache Log4j vulnerability have switched from LDAP callback URLs to RMI or even used both…
Facebook disrupts operations of seven surveillance-for-hire firms
Facebook has disrupted the operations of seven different spyware-making companies, blocking their Internet infrastructure, sending cease and desist letters, and…
Rise in API-Based Attacks Underscore Investments in New Tools
Noname Security's Series C fundraising tips the startup to over $1 billion in valuation -- a sign that organizations are…
Original Fix for Log4j Flaw Fails to Fully Protect Against DoS Attacks, Data Theft
Organizations should upgrade ASAP to new version of logging framework released Tuesday by the Apache Foundation, security experts say.
Companies Must Assess Threats to AI & ML Systems in 2022: Microsoft
Most companies lack the proper tools to assess their vulnerability to threats facing their AI systems and ML pipelines, prompting…