IT Security Archives

CISOs, leadership, security third-party supply chainCISO role

CISOs Look to Establish Additional Leadership Roles

Nathan Eddy | November 20, 2024 | CISO, compensation, ians, IT Security, recruiting

According to an IANS survey of more than 800 CISOs, roles such as business information security officers (BISOs), chiefs of staff and heads for privacy, program management and data protection are among ...

Security Boulevard

DocUSign, APIs, phishing, spam, business email, CrowdStrike Microsoft

Hackers Exploit DocuSign APIs for Phishing Campaign

Nathan Eddy | November 5, 2024 | api, DocuSign, IT Security, Phishing, wallarm

Cybercriminals are exploiting DocuSign’s APIs to send highly authentic-looking fake invoices, while DocuSign’s forums have reported a rise in such fraudulent campaigns in recent months. Unlike typical phishing scams that rely on ...

Security Boulevard

CISA, cyber threats, Seal of the Cybersecurity & Infrastructure Security Agency

CISA Strategic Plan Targets Global Cooperation on Cybersecurity

Nathan Eddy | November 1, 2024 | cisa, Cybersecurity, global, IT Security, training

The Cybersecurity and Infrastructure Security Agency (CISA) introduced its inaugural international strategic plan, a roadmap for strengthening global partnerships against cyber threats ...

Security Boulevard

Halloween, threats, phishing, holiday attacks

Spooky Spam, Scary Scams: Halloween Threats Rise

Nathan Eddy | October 29, 2024 | BitDefender, e-commerce, IT Security, Phishing, Spam, Threat

Halloween-themed spam has risen sharply this season, with Bitdefender reporting that 40% of these emails contain malicious content designed to scam users or harvest personal data. In the first half of October ...

Security Boulevard

SaaS, AI tools, vulnerabilities, applications, security, AppOmni, SaaS, security, cybersecurity, SaaS, Palo Alto, third-party vendors, SaaS security, CISO, SSPM, SaaS security, SentinelLabs AppOmni Valence SaaS security Thirdera SaaS management SSPM CISOs SaaS

Majority of SaaS Applications, AI Tools Unmanaged

Nathan Eddy | October 24, 2024 | AI Security, Grip Security, IT Security, SaaS Security

Unmanaged software as a service (SaaS) applications and AI tools within organizations are posing a growing security risk as vulnerabilities increase, according to a report from Grip Security ...

Security Boulevard

Traceable AI, API security, APIs, Wallarm, Akamai, APIs, API security, threat modeling, ICS, VPNs, APIs, risk, left-of-bang, threats, vulnerabilities, XDR, zero-trust, attack, XDR API Skyhawk Security modeling threat CosmicStrand insider threats Threat Modeling - Secure Coding - Cybersecurity - Security

API Vulnerabilities Jump 21% in Third Quarter

Nathan Eddy | October 23, 2024 | api, API security, GenAI, IT Security, wallarm

Application programming interface (API) vulnerabilities surged 21% in the third quarter, with cloud-native infrastructure increasingly targeted by cybercriminals, according to Wallarm’s Q3 2024 API ThreatStats report ...

Security Boulevard

Survey Surfaces Depth and Scope of Identity Management Challenge

Michael Vizard | October 21, 2024 | breaches, Cybersecurity, IT Security, Permiso Security, survey

A survey of 510 IT security and risk practitioners finds 93% have access to a comprehensive inventory of human and non-human identities across their IT environments, with 85% having a clear line ...

Security Boulevard

CIOs Sound Alarm on Network Security in AI Era

Nathan Eddy | October 10, 2024 | AI, CIO, CISO, IT Security, network, security

The increasing integration of AI and bandwidth-heavy applications is complicating network environments and making them a greater focus for C-suite leaders, according to a report by Extreme Networks ...

Security Boulevard

Sevco, Apple, DMA, EU, A green worm on a juicy red apple

iPhone Mirroring Flaw Could Expose Employee Personal Information

Nathan Eddy | October 9, 2024 | Apple, iPhone, IT Security, mirroring, Mobile, Privacy

A flaw in Apple's mirroring feature within the iOS 18 and macOS Sequoia software updates compromises personal privacy when used on work Macs, according to a report from Sevco Security ...

Security Boulevard

skills, security, threats, skills gap, cybersecurity, jobs, Snyk talent, boards, skills, SASE cybersecurity skills gap remote workforce

Critical Skills Gap in AI, Cloud Security

Nathan Eddy | October 7, 2024 | AI, Cloud, IT Security, security, upskilling, visibility

There is a growing disconnect between the increasing sophistication of cybersecurity threats and the preparedness of IT teams to combat them, according to an O’Reilly study of more than 1300 IT professionals ...

Security Boulevard