Tag: risk management
294 articles
Verizon’s DBIR Reports 34% Increase in Exploited Vulnerabilities
Verizon’s DBIR reveals a 34% rise in exploited vulnerabilities, highlighting the growing cybersecurity threats organizations face today.
Socket Acquires Coana to Enhance Code Risk Accuracy
Socket acquires Coana to improve code risk accuracy, enhancing software security and reliability for developers and businesses alike.
Majority of CISOs Concerned Cybersecurity Threats Outpace Their Defenses
CISOs express growing concern that cybersecurity threats are evolving faster than their defenses, highlighting the urgent need for enhanced security measures.
Cyber Insurance Market Expected to Double by 2030: Breach Roundup
Cyber insurance market projected to double by 2030, driven by rising cyber threats. Stay informed with the latest breach roundup and insights.
The Intriguing Situation of Control Risks’ Altered Reports on Ex-NSO Shareholder’s Acquisitions in the U.S
Explore the intriguing case of Control Risks’ altered reports on ex-NSO shareholder acquisitions in the U.S., revealing potential implications and controversies.
CVE Program on the Brink of Defunding
The CVE Program faces potential defunding, raising concerns about its impact on community engagement and countering violent extremism efforts.
Concerns Rise as CVE Program Funding Faces Cuts in Cybersecurity
Concerns grow as funding cuts threaten the CVE program, jeopardizing vital cybersecurity efforts and the protection of critical digital infrastructure.
When Ransomware Attackers Discover Your ‘Insurance Policy’
Learn how ransomware attackers exploit your security weaknesses and the importance of safeguarding your data against potential threats.
Critical RCE Vulnerability Puts Gladinet’s Triofox and CentreStack at Risk
Critical RCE vulnerability exposes Gladinet’s Triofox and CentreStack to potential attacks, urging immediate security measures for users.
Siemens Solid Edge: Revolutionizing Design and Engineering Solutions
Discover Siemens Solid Edge, the cutting-edge software transforming design and engineering with innovative tools for enhanced productivity and collaboration.
US Bank Watchdog’s Sensitive Financial Files May Have Been Stolen
Sensitive financial files from the US Bank Watchdog may have been stolen, raising concerns over data security and potential impacts on consumers.
Oracle Confirms “Obsolete Servers” Hacked, Denies Cloud Security Breach
Oracle confirms that obsolete servers were hacked but denies any breach of its cloud security, ensuring customer data remains safe.
Transforming Compliance into a Strategic Advantage Through AI
Unlock strategic advantages by leveraging AI to transform compliance into a proactive, efficient, and innovative business asset.
Financial Metrics: The Key to Effective Compliance Beyond Dashboards
Discover how financial metrics drive compliance effectiveness, going beyond dashboards to enhance decision-making and risk management in your organization.
Surging Rise of Non-Human Identities: Uncovering Major Security Vulnerabilities
Explore the growing prevalence of non-human identities and the significant security vulnerabilities they pose in today’s digital landscape.
CISA Alerts on CentreStack’s Hard-Coded MachineKey Flaw Allowing RCE Exploits
CISA warns of a hard-coded MachineKey flaw in CentreStack, enabling remote code execution (RCE) exploits. Immediate action recommended.
AI and Cybersecurity: Insights from the 2025 Pulse Report
Explore key findings from the 2025 Pulse Report on AI’s role in enhancing cybersecurity measures and strategies for a safer digital landscape.
Fortinet Recommends Upgrading FortiSwitch to Address Critical Admin Password Vulnerability
Fortinet advises upgrading FortiSwitch to mitigate a critical admin password vulnerability, ensuring enhanced security and protection for your network.
Amazon EC2 SSM Agent Vulnerability Fixed Following Path Traversal Privilege Escalation
Amazon EC2 SSM Agent vulnerability fixed, addressing path traversal privilege escalation risks to enhance security and protect user data.
NIST Prioritizes Vulnerability Backlog by Deferring Pre-2018 CVEs
NIST prioritizes vulnerability management by deferring pre-2018 CVEs, focusing resources on more recent threats to enhance cybersecurity effectiveness.
CISA Alerts on Active Exploitation of CrushFTP Vulnerability
CISA warns of active exploitation of a CrushFTP vulnerability, urging immediate patching to protect systems from potential attacks.
Boards Encouraged to Adopt Updated Cybersecurity Guidelines
Boards are urged to implement updated cybersecurity guidelines to enhance protection against threats and ensure organizational resilience.
CISA Includes CrushFTP Vulnerability in KEV Catalog After Reports of Active Exploitation
CISA adds CrushFTP vulnerability to the KEV Catalog following reports of active exploitation, urging immediate attention and remediation.
AI Outperforms Human Red Teams in Phishing Simulations
Discover how AI surpasses human red teams in phishing simulations, enhancing security measures and improving threat detection efficiency.