Why do some organizations" boards fail? It might be how directors perceive their expertise and responsibilities
While many of us can name a handful of CEOs, identifying directors serving on the boards of those same organizations is probably more challenging. The work of directors, whether they hold volunteer or compensated positions, is rarely publicized, and.....»»
BeyondTrust fixes critical vulnerability in remote access, support solutions (CVE-2024-12356)
BeyondTrust has fixed an unauthenticated command injection vulnerability (CVE-2024-12356) in its Privileged Remote Access (PRA) and Remote Support (RS) products that may allow remote code execution, and is urging organizations with on-premise install.....»»
Spider-Man: Beyond the Spider-Verse has found its directors
Spider-Man: Beyond the Spider-Verse finally has a positive update. Sony has named the directors for the third animated film in the Spider-Verse trilogy......»»
How cities are reinventing the public-private partnership: Four lessons from around the globe
Cities tackle a vast array of responsibilities—from building transit networks to running schools—and sometimes they can use a little help. That's why local governments have long teamed up with businesses in so-called public-private partnerships......»»
Many more men are dying on Australian roads than women
Men are killing themselves on the roads in large numbers. Currently, policymakers fail to recognize the different ways men and women use roads, and the resulting ways they are killed or injured......»»
With DORA approaching, financial institutions must strengthen their cyber resilience
The clock is ticking for financial institutions across the EU as the January 17, 2025, deadline for the Digital Operational Resilience Act (DORA) approaches. This regulation will reshape how organizations in the financial sector approach cybersecurit.....»»
Celigo Private Cloud enhances security and connectivity
Celigo introduced Celigo Private Cloud, a transformative solution offering enterprises fully private automation instances. Designed for businesses that prioritize enhanced security, control, and compliance, Celigo Private Cloud empowers organizations.....»»
Rubrik Turbo Threat Hunting accelerates cyber recovery
As organizations around the world struggle with extended downtime and revenue loss due to widespread cyberattacks, Rubrik announces Rubrik Turbo Threat Hunting. This new feature is designed to accelerate cyber recovery and enables organizations to lo.....»»
FuzzyAI: Open-source tool for automated LLM fuzzing
FuzzyAI is an open-source framework that helps organizations identify and address AI model vulnerabilities in cloud-hosted and in-house AI models, like guardrail bypassing and harmful output generation. FuzzyAI offers organizations a systematic appro.....»»
Tackling software vulnerabilities with smarter developer strategies
In this Help Net Security interview, Karl Mattson, CISO at Endor Labs, discusses strategies for enhancing secure software development. Mattson covers how developers can address vulnerabilities in complex systems, ways organizations can better support.....»»
Researchers turn coal into graphite for clean energy, electric vehicle batteries
Yesterday's polluting fuel could be transformed into a valuable material for tomorrow's electric vehicle batteries, thanks to a wide-ranging research project that utilizes expertise spanning the Department of Energy's Oak Ridge National Laboratory......»»
Exposed APIs and issues in the world’s largest organizations
In this Help Net Security video, Tristan Kalos, CEO of Escape, discusses the results of its 2024 State of API Exposure report. The study highlights significant API security gaps affecting Fortune 1000 organizations, with over 28,500 exposed APIs and.....»»
Industry expertise in audits leads to cost savings, quality boost: Study
Corporations that partner with auditors who specialize in the company's industry reap cost savings and get a better picture of their finances, which boosts investor confidence, a new study has found......»»
Why crisis simulations fail and how to fix them
In this Help Net Security interview, Allison Ritter, Head of Cyber Experiential Exercising at Cyberbit, shares her insights on the key differences between in-person and virtual cyber crisis simulations and what makes each approach effective. Ritter h.....»»
Attackers actively exploiting flaw(s) in Cleo file transfer software (CVE-2024-50623)
Attackers are exploiting a vulnerability (CVE-2024-50623) in file transfer software by Cleo – LexiCo, VLTransfer, and Harmony – to gain access to organizations’ systems, Huntress researchers warned on Monday. “We’ve discover.....»»
RSA expands phishing-resistant, passwordless capabilities
RSA announced expanded phishing-resistant, passwordless capabilities. Built to secure financial services organizations, government agencies, healthcare, and other highly-regulated industries from the most frequent and highest-impact attacks, these ne.....»»
Who handles what? Common misconceptions about SaaS security responsibilities
In this Help Net Security interview, James Dolph, CISO at Guidewire, addresses common misconceptions about security responsibilities in cloud environments, particularly in SaaS, and how these misunderstandings can lead to security risks. What common.....»»
Echoworx enhances secure access to encrypted messages
Echoworx announced the addition of 2-Step Verification (2SV) when using OAuth and Passkeys for authentication for encrypted messages. This latest enhancement offers organizations an additional layer of security, addressing the growing demand for iden.....»»
How to choose secure, verifiable technologies?
The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has published a guidance document titled Choosing Secure and Verifiable Technologies, compiled to assist organizations in making informed decisions when procuring.....»»
GenAI makes phishing attacks more believable and cost-effective
GenAI is a powerful tool that can be used by security teams to protect organizations, however, it can also be used by malicious actors, making phishing-related attacks a growing and concerning threat vector, according to Ivanti. Ivanti’s resear.....»»
When rescue from modern slavery does not mean freedom: Research flags harsh reality of post-rescue life
People freed from modern slavery are often cast into years of bureaucratic wrangling and legal limbo or forced back into exploitative work, highlighting the need for anti-trafficking organizations to give greater focus to post-rescue support, new res.....»»