Outsourcing Security Without Increasing Risk
Few enterprises have all the cybersecurity skills and resources they need in-house, making outsourcing a necessity. How do they select,…
May 2024
Russia’s Turla APT Abuses MSBuild to Deliver TinyTurla Backdoor
A threat campaign luring users with malicious documents related to human rights and public notices is aimed at giving the…
Can Cybersecurity Be a Unifying Factor in Digital Trade Negotiations?
As we face continued headwinds on provisions like data flows and e-customs duties, further progress is both needed and achievable…
OpenSSF Siren to Share Threat Intelligence for Open Source Software
The Siren email mailing list will focus on operational impact and response, acting as a central location to provide information…
DoJ Shakes Up North Korea’s Widespread IT Freelance Scam Operation
Fraudsters based in the US and Europe indicted for helping North Korea's nation-state groups establish fake freelancer identities and evade…
Google Pitches Workspace as Microsoft Email Alternative, Citing CSRB Report
The new Secure Alternative Program from Google aims to entice customers away from Exchange Online and break Microsoft's dominance in…
Transforming CISOs Into Storytellers
Faced with chilling new SEC rules, chief information security officers are learning soft skills to help them better communicate cybersecurity…
CyberArk Picks Up Machine Identity Manager Venafi for $1.54B
The acquisition gives CyberArk new IoT identity and certificate life-cycle management, cryptographic code-signing, and other services to secure the enterprise…
Experts released PoC exploit code for RCE in Fortinet SIEM
Researchers released a proof-of-concept (PoC) exploit for remote code execution flaw CVE-2024-23108 in Fortinet SIEM solution. Security researchers at Horizon3’s…
OpenAI’s safety oversight reset (what it means)
EXECUTIVE SUMMARY: OpenAI is setting up a new safety oversight committee after facing criticism that safety measures were being deprioritized…