CISA Director Easterly to Leave When Trump Assumes Presidency
Jen Easterly, who took over as CISA director in 2021, will step down in January when Donald Trump takes over as president, creating an uncertain future for the critical cybersecurity agency and the country's larger security posture in an increasingly complex cyberthreat environment ... Read More
Barracuda Networks Report Sees Sextortion Becoming More Personalized
A report published by Barracuda Networks warns that sextortion attacks are getting even more personal and payment demands have increased ... Read More
Zero-Day Exploits Surge in 2023, Cisco, Fortinet Vulnerabilities Targeted
Nathan Eddy | | 0-day, cisa, cisco, Citrix, cyber threat actors, five eyes, Fortinet, SBD, vulnerability, zero-dayA report from the Five Eyes cybersecurity alliance, released by the CISA, highlights the majority of the most exploited vulnerabilities last year were initially zero-day flaws, a significant increase compared to 2022 when less than half of the top vulnerabilities were zero-day exploits ... Read More
Palo Alto Networks Issues AI Red Alert
SANTA CLARA, Calif. — With great promise comes potential peril. And while artificial intelligence (AI) is looked upon as a panacea for enterprises, it also poses an existential security threat. “We stand at the intersection of human ingenuity and technological innovation, where the game of cybersecurity has evolved into a ... Read More
NIST Clears Backlog of Known Security Flaws but Not All Vulnerabilities
NIST, the embattled agency that analyzes security vulnerabilities, has cleared the backlog of known CVEs that hadn't been processed but needs more time to clear the entire backlog of unanalyzed flaws ... Read More
These 20 D-Link Devices Have Critical RCE Bug — but NO Patch NEVER
Richi Jennings | | CVE-2024-10914, D-Link, D-Link Corporation, D-Link NAS Devices, D-Link vulnerability, D-Link zero day, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iot, NAS, network storage device, SB Blogwatch‘Bobby’ flaw flagged WONTFIX: Company doesn’t make storage devices now; has zero interest in fixing this catastrophic vulnerability ... Read More
PlatformEngineering.com: Strengthening Security in the Software Development Lifecycle
The Techstrong Group is thrilled to announce the launch of PlatformEngineering.com, a new platform dedicated to advancing the platform engineering discipline. This addition to the Techstrong family—including Security Boulevard—promises to be a critical resource for organizations seeking to enhance their software delivery pipelines while ensuring robust security measures. The Intersection ... Read More
Insurance Firm Introduces Liability Coverage for CISOs
National insurance firm Crum and Forster is offering a professional liability program for CISOs who are facing growing regulatory pressures and sophisticate cyberattacks but often are not covered by their organizations' D&O policies ... Read More
Fortinet Extends Generative AI Reach Across Portfolio
Fortinet today extended the reach of its generative artificial intelligence (AI) capabilities to include support for its network detection and response (NDR) and cloud native application protection platform (CNAPP) ... Read More
Permiso Adds Three More Open Source Cybersecurity Tools
Permiso today made available three additional tools under an open-source license that make it simpler to secure cloud computing environments ... Read More
