Could the internet of things be made more secure? A draft law in Britain would impose stronger cybersecurity regulations for manufacturers, importers and distributors of smartphones, TVs, toys and other "connected" digital devices, backed by the threat of fines of up to $13 million for noncompliance.
The findings from a penetration test can help you identify risks and gaps in your security controls. Charles Gillman offers tips to maximize the value of your next pen test and, in the process, deliver better results.
Security teams are dealing with more vulnerabilities than they can handle. Spreading these limited resources too thin can quickly lead to inefficiency and burnout. Don't waste precious time remediating vulnerabilities that pose little to no risk.
With risk-based vulnerability management, you'll know exactly...
Implementing a Risk-Based Vulnerability Management Solution is easier than you think. And, once you evolve to this proactive, strategic methodology, you can immediately begin reaping the benefits of a VM program that delivers the dynamic, continuous visibility you need to proactively manage risk and make strategic...
Tenable’s Security Response Team is taking a look back at the vulnerabilities and threats that made 2020 one of the most active years for security teams in recent memory. In our report, you'll learn the key insights you need to move forward in 2021 with confidence, such as:
The year's Top 5 vulnerabilities,...
Vulnerability assessment has been a security requirement for every major regulatory agency over the last 15 years. Yet, time and again, after-incident reports reveal that costly breaches, causing millions of dollars in damage, are a result of known vulnerabilities that went unpatched due to a lack of connection to...
In the era of digital-led growth, executives are looking to cybersecurity leaders for guidance in driving key business strategies. Yet, a communication gap persists between the worlds of business and security. Just four in ten security leaders are able to confidently answer the question, "How secure, or at risk, are...
The U.S. Cybersecurity and Infrastructure Security Agency on Wednesday issued a new directive - BOD 22-01 - requiring federal civilian agencies to patch vulnerabilities known to be actively exploited in the wild.
Roya Gordon of Accenture Security describes how rather than hunting for zero-day vulnerabilities, attackers are exploiting N-Day - or known - vulnerabilities. She also discusses how to better synthesize and act on threat intelligence.
Reporting security vulnerabilities to organizations with no disclosure policies can be fraught with tension. In the worst conflicts, security researchers could face lawsuits or even prosecution. Some experts say laws should provide a safe harbor for responsible security research.
In today’s world, cyberattacks are commonplace, and countless organizations have had to deal with the fallout of a breach. Luckily, there are many cybersecurity solutions that can help decrease risk, but how do you know if your organization’s security controls will be up to the task?
This is where penetration...
More credit unions now offer their members mobile applications and banking services to meet the tremendous demand and usage - no easy task. Meanwhile, security teams have also had to rapidly evolve to an influx of cyberattacks as the instances of security breaches continue to rise rapidly.
But how do you know if...
Now in its sixth year, the 2021 Open Source Security and Risk Analysis (OSSRA) report exposes vulnerabilities and license conflicts found in more than 1,500 codebases across 17 industries.
The report includes recommendations to help developers and consumers understand the software ecosystem they are a part of, as...
The Center for Internet Security (CIS) emphasizes continuous vulnerability management in its top 10 security controls. Given the complexity of the current digital landscape, many organizations face greater cyber-risk today. Adding to this woe is the rate at which vulnerabilities are burgeoning. The coverage of attack...
Vulnerability management is more than assessment scanning. It involves the understanding of risk and the integrating of people and processes to remediate the most sensitive assets in the network.
Explore this IDC Analyst Connection to delve deeper into:
State of device vulnerability management today
...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.
