Ian Barker

A new survey, which polled 200 CISOs from companies with annual revenues exceeding $500 million, highlights growing concerns across a number of areas.

The study from Portnox finds worries around the effectiveness of zero trust, the limitations of multi-factor authentication (MFA), and a looming threat to job security amidst an increasingly complex cybersecurity landscape.

Continue reading →

Though organizations and their users have greatly benefited from hybrid environments and SaaS applications, dispersed workforces have also created unforeseen risks that are increasingly difficult to secure.

The average enterprise user has more than 50 passwords not protected by single sign-on (SSO), each representing a point of risk if not properly monitored and secured.

Continue reading →

A new report from Abnormal Security reveals a rise in targeted email compromise attacks on the healthcare sector.

Vendor email compromise (VEC) attacks on the sector have consistently trended upward, recording a 60 percent increase between August 2023 and August 2024. The sector's reliance on long-term vendor relationships is being exploited through VEC, where cybercriminals impersonate trusted vendors to bypass traditional email security and trick employees.

Continue reading →

Ransomware attacks target industries across the board, but they're of particular concern in the healthcare sector where an attack can mean not only data is at risk but lives too.

We spoke with Amitabh Sinha, chief strategy officer and co-founder of Workspot, to discuss the productivity and patient care aspects of these attacks as well as how modern ransomware recovery strategies can help to ensure mission-critical operations can continue, even during an attack.

Continue reading →

Browser Guard, the free browser extension from Malwarebytes, has added some new features aimed at enhancing users' privacy and protecting their identity online.

Users will now receive a pop-up alert if a website they visit was involved in a recent breach, offering the ability to click and scan their digital footprint to evaluate if private information was exposed.

Continue reading →

The increased need for real-time analytics is driven by the rise of the on-demand economy, where consumer expectations for immediate access to products, services, and information are transforming how businesses operate and compete.

We spoke to Kishore Gopalakrishna, co-founder and CEO of StarTree, to discuss the need for real-time data capabilities, the strategic utilization of real-time data to enhance operational efficiency and competitiveness, and the essential technology and operational considerations for building a robust analytics infrastructure.

Continue reading →

A new report from Red Canary finds 87 percent of respondents have been impacted by a security incident they were unable to detect and neutralize in the past year, resulting in data compromise, outages, fines, audit failures and reputational damage.

Based on a study of 700 cybersecurity leaders it finds 73 percent say their attack surface has widened in the past two years, by an average of 77 percent, with 64 percent admitting to having knowledge deficits around securing new technologies.

Continue reading →

New research from email security company IRONSCALES finds near-ubiquitous concern surrounding the security implications of deepfakes while only 42 percent of respondents feel very confident about their organization’s ability to defend against deepfake-enabled attacks.

Based on a survey of over 200 IT processionals the report finds 94 percent have some level of concern surrounding deepfakes, and 74 percent say they are 'very concerned.'

Continue reading →

Using AI can increase the speed of code development, but it comes with an increased risk of bad code seeping into codebases.

Clean code solutions company Sonar is releasing two new features, Sonar AI Code Assurance and Sonar AI CodeFix. These deepen Sonar's commitment to improving the developer experience and increasing developer productivity to support the delivery of better code.

Continue reading →

A new report reveals that 71 percent of security operations center practitioners worry they will miss a real attack buried in a flood of alerts, while 51 percent believe they can't keep pace with the increasing number of security threats.

The report from Vectra AI shows 47 percent of SOC practitioners don't trust their tools to work the way they need them to work, while 54 percent say the tools they work with actually increase the SOC workload instead of reducing it.

Continue reading →

A new report finds that 80 percent of manufacturing companies have critical vulnerabilities putting them at high risk for exploitation.

The study of 5,000 manufacturing companies by Black Kite finds 69 percent of companies analyzed have exposed credentials in the last 90 days.

Continue reading →

Around a quarter of businesses don't know where their sensitive data is according to a new report from Normalyze and the Enterprise Strategy Group (ESG).

As enterprises move more operations to the cloud, the volume and exposure of sensitive data stored in public cloud services is also rapidly increasing. Despite efforts by security teams to manage data risks, many organizations lack clarity on where data is located, how sensitive it is, and who has access to it.

Continue reading →

The first half of this year has seen a 43 percent increase in the number of application-layer attacks and a 30 percent increase in volumetric attacks, especially in Europe and the Middle East, according to the latest threat report from NETSCOUT.

The attacks involve a range of threat actors, including hacktivists, targeting critical infrastructure in the banking and financial services, government and utilities sectors.

Continue reading →

To mark the start of this year's Cybersecurity Awareness Month, Dashlane has published its latest report into global password health which shows that although the share of reused passwords has dropped it remains worryingly high.

The share of password reuse remains between 40 and 50 percent across regions worldwide, putting individuals and companies at greater risk of account takeover.

Continue reading →

Businesses are increasingly adopting AI and large language models in search of greater efficiency and savings. But these tools also present risks when it comes to cybersecurity.

We spoke to Aqsa Taylor, director of product management at Gutsy, to learn more about these risks and what organizations can do to address them.

Continue reading →