Cloud Security June 10, 2020

How Threat Actors Are Adapting to the Cloud

4 min read - With organizations increasingly moving to cloud environments, cloud security is more critical than ever. Cloud environments often hold large troves of valuable and sensitive data that can put organizations and their customers at risk if they are breached. At the…

CISO June 1, 2020

Stronger Together — Building Cyber Resilience

3 min read - As new ways of work are coupled with a growing prevalence of malware and ransomware, cyber resilience has become top of mind in boardrooms around the world.

Risk Management May 12, 2020

Stick the Landing: 6 Steps to Broaden Your Cyber Resilience Web

4 min read - Cyber resilience is now critical to speeding remediation and boosting recovery after a security event. To stick the landing, enterprises must move beyond funnels and embrace web-based design.

Application Security May 7, 2020

Are Current Security Assurance Models Suitable for the Digital World?

3 min read - A proactive security assurance model is a key enabler for delivering an effective operating model that encompasses the protection of people, processes and technology.

Application Security April 29, 2020

Ad Hoc or Managed Penetration Testing: Which One Is Best for You?

4 min read - Due to legal regulations, internal policies, executive requests, and the desire to beat threat actors and avoid breaches, penetration testing is becoming a common practice.

March 10, 2020

Durham, North Carolina Shuts Down Phone System Following Ryuk Ransomware Attack

2 min read - The city of Durham, North Carolina temporarily disabled its phone system last weekend after suffering a Ryuk ransomware attack.

February 6, 2020

EKANS Ransomware Capable of Stopping ICS-Related Processes

2 min read - Security researchers have observed that EKANS ransomware has the ability to stop processes related to an organization's industrial control systems (ICS).

January 14, 2020

Microsoft Sway Domains Used in Phishing Campaigns to Create Bogus Landing Pages

2 min read - A phishing technique that makes use of Microsoft Sway could attack organizations even if they don't use the tool, security researchers warn.

Incident Response January 14, 2020

3 Lessons From the Incident Response Tabletops

3 min read - Here are three lessons I've learned about incident response from having run tabletop exercises within IBM and alongside our clients.

CISO January 1, 2020

Make These Security New Year’s Resolutions to Bolster Your Cybersecurity in 2020

5 min read - 2020 is here. Toss any bad habits and take on new goals this year by identifying critical outcomes, defining key metrics and implementing your security New Year's resolutions step-by-step.