Eskenzi PR ad banner Eskenzi PR ad banner

Insight

Alan Radford

The past decade has seen cybersecurity barge its way into the mainstream. A meteoric rise in attack rates during COVID-19, major incidents such as the Colonial Pipeline attack, and an increasingly tense geopolitical landscape have all contributed to cybersecurity’s current position at the top of global news feeds. As cybercrime infects every facet of our daily lives, and technological advancements do little to stop the spread, many security professionals are turning to traditional solutions for...

Read more
API Security: Best Tools and Resources

Every organisation is facing a multitude of security challenges. These range from getting the basics right, like ensuring the correct firewall is in place, to higher-level challenges, such as API security and data privacy.   One of the greatest challenges facing organizations these days is a comprehensive approach to API security. With an expanding number of APIs in use, and added complexity arising from service oriented architecture (SOA,) the cloud, and containers/Kubernetes, enabling full life-cycle...

Read more

If you are looking to advertise your business online, then you might be wondering: Is SEO better than paid ads? Paid ads and SEO both promote brands on the SERP, but how do they compare? SEO aims to boost your website's organic ranking in search engine results pages, while PPC promotes your site content via keyword phrases. Ultimately, both methods have their advantages and disadvantages. Learn the pros and cons of each type of marketing...

Read more
One Identity Guest Blog – The password checklist

By Dan Conrad, Security team lead at One Identity   It is not a secret that passwords are not a particularly secure method of protection, furthermore in a world where multifactor authentication is becoming the norm, talking about password hygiene seems a little dated but still, according to the Verizon 2021 Data Breach Investigations Report, credentials are the route to data breaches in 61% of incidents.      In an ideal world, and increasingly in reality, any...

Read more
Jack Lindsay IT Security Guru

Cloud security is the umbrella that holds within it: IaaS, PaaS and SaaS. Gartner created the SaaS Security Posture Management (SSPM) category for solutions that continuously assess security risk and manage the SaaS applications' security posture. With enterprises having 1,000 or more employees relying on dozens to hundreds of apps, the need for deep visibility and remediation for SaaS security settings is only getting more critical. The top pain points for SaaS security stem from:...

Read more
Jack Lindsay IT Security Guru

It’s unfortunate, but true: SaaS attacks continue to increase. You can’t get around it, COVID-19 accelerated the already exploding SaaS market and caused industries not planning on making a switch to embrace SaaS. With SaaS apps becoming the default system of record for organizations, it has left many struggling to secure their company’s SaaS estate. CISOs and security professionals work to limit this burgeoning threat landscape, however, it’s a work in progress.   One slight misconfiguration...

Read more
Jack Lindsay IT Security Guru

There is often confusion between Cloud Access Security Brokers (CASB) and SaaS Security Posture Management (SSPM) solutions, as both are designed to address security issues within SaaS applications. CASBs protect sensitive data by implementing multiple security policy enforcements to safeguard critical data. For identifying and classifying sensitive information, like Personally Identifiable Information (PII), Intellectual Property (IP), and business records, CASBs definitely help. However, as the number of SaaS apps increase, the amount of misconfigurations and...

Read more
vulnerability

This week, smart vulnerability management provider Edgescan has published the findings of its 2022 Vulnerability Statistics Report, which for the 7th year running offers a comprehensive view of the state of vulnerability management globally. The report reveals that organizations are still taking nearly two months to remediate critical risk vulnerabilities, with the average mean time to remediate (MTTR) across the full stack set at 60 days. High rates of “known” (i.e. patchable) vulnerabilities which have...

Read more
AT&T Cybersecurity grows SASE offering by adding Palo Alto Networks

Many organisations have been considering a network transformation initiative to support the adoption of SaaS, cloud-based applications, and an increasingly remote workforce. Given the connectivity needs of a remote workforce - and knowing a hybrid workforce is here to stay - many IT teams have had to make sudden changes in the way workers connect to corporate systems that could introduce new cyber risks and vulnerabilities.   When developing a security strategy for supporting a hybrid...

Read more
Lessons Learned From the 2022 NPM Corruption

Marak Squires is the maintainer of the ‘colors’ and ‘faker’ libraries. The two projects accumulate ~23 million weekly downloads and support ~23,000 projects. In January of 2022, he intentionally introduced an infinite loop that bricked every project relying on either one of these libraries. Consequently, GitHub suspended the developer’s account. The justification provided by the developer is one of retaliation to “Fortune 500s (and other smaller sized companies)” who extensively rely on cost-free and community-driven...

Read more
Page 11 of 22 1 10 11 12 22