Latest episode - listen now! (Yes, there are plenty of critical things to go along with Log4Shell.)
Read moreMore Log4j News
December 16 2021Log4j is being exploited by all sorts of attackers, all over the Internet:
At that point it was reported that there were over 100 attempts to exploit the vulnerability...
Read more
Dear Congress: It’s Complicated. Please Consider This When Crafting New Cybersecurity Legislation
December 16 2021As mandatory reporting bills work their way through the halls of Congress, what should businesses do to prepare for this pending legislation?
Read moreRise in API-Based Attacks Underscore Investments in New Tools
December 16 2021Noname Security's Series C fundraising tips the startup to over $1 billion in valuation, a sign that organizations are beginning to look for API security tools and investor are...
Read moreOrganizations should upgrade ASAP to new version of logging framework released Tuesday by the Apache Foundation, security experts say.
Read moreCompanies Must Assess Threats to AI & ML Systems in 2022: Microsoft
December 15 2021Most companies lack the proper tools to assess their vulnerability to threats facing their AI systems and ML pipelines, prompting Microsoft to release a risk assessment framework.
Read moreDept. of Homeland Security Launches ‘Hack DHS’ Program
December 15 2021A new bug bounty program aims to find potential security flaws within certain DHS systems and strengthen the department's security posture.
Read moreAnalysis: Log4j Vulnerability Highlights the Value of Defense-in-Depth, Accurate Inventory
December 15 2021The early lessons from Log4j indicate that key security principles can help better handle these high-risk software supply chain security incidents if teams have proper support.
Read moreMeta Expands Bug-Bounty Program to Include Data Scraping
December 15 2021Scraping bugs and scraped databases are two new areas of research for the company's bug-bounty and data-bounty programs.
Read moreCybereason Announces Availability of AI-Driven Cybereason XDR and EDR on Google Cloud Marketplace
December 15 2021Cloud-native platform automates prevention, detection, and response to cyberattacks.
Read more
Recent Comments