Information security - Articles - Page 28

Fermin Serna joins Databricks as Chief Security Officer

August 30, 2021

Fermín Serna has been appointed Chief Security Officer (CSO) at Databricks, where he will lead Databricks' network, platform and user security programs, and governance and compliance efforts.

Azure customers warned of critical Cosmos DB vulnerability

August 30, 2021

A critical security vulnerability in Microsoft’s Azure cloud database platform – Cosmos DB – could have allowed complete remote takeover of accounts, with admin rights to read, write and delete any information to a database instance.

How executive order requirements will change the scope of business

President Biden’s executive order on improving the nation’s cybersecurity will impact device manufacturers—even those that don’t sell to the Federal government.

Eric Greenwald

August 30, 2021

President Biden’s executive order on improving the nation’s cybersecurity will impact device manufacturers—even those that don’t sell to the Federal government.

A back-to-school plan for reaching the next generation of cybersecurity professionals

Kayne McGladrey

August 30, 2021

Current cybersecurity professionals and educators can change the narrative, but only if we take individual responsibility to engage with others and be visible members of our communities. Otherwise, the issue of a lack of diversity in the field won’t address itself.

Critical F5 bug could lead to wide range of security vulnerabilities

August 27, 2021

F5 has fixed more than a dozen high-severity security vulnerabilities in its networking device, with one of them being elevated to critical severity and CVSS score of 9.9 under specific conditions. All vulnerabilities are part of this month’s delivery of security updates, addressing almost 30 vulnerabilities for multiple F5 devices.

Risk assessment needs a redo

Patrick Murray

August 27, 2021

Risk assessments aren’t being done the right way – and that can lead to multiple problems for businesses. It’s time for a risk assessment redo.

Tech companies pledge billions to bolster cybersecurity investments

August 26, 2021

Some of the country’s leading technology companies have committed to investing billions of dollars in strengthening cybersecurity defenses and in training skilled workers, the White House announced, following President Joe Biden’s private meeting with top executives.

Whack-a-mole is not remediation

Virtual patching can help you maximize cybersecurity ROI

Aviram Jenik

August 26, 2021

Vulnerability remediation can feel like an ever-escalating game of whack-a-mole. Security teams need to work smarter, not harder, to stay ahead of the onslaught of new vulnerabilities. Effective prioritization is a key step to identify the big rocks that need to be fixed first.

US State Department suffers cyberattack

August 25, 2021

Though not officially confirmed, the U.S. State Department was reportedly a victim of a cyberattack.

40% of all SaaS data is unmanaged, increasing insider and external threats

August 25, 2021

A new DoControl report, Quantifying the Immense Risk of Unmanaged SaaS Data Access, highlights how the vast amounts of unmanaged data in today’s enterprises have led to a growing number of insider and external threats to global organizations.