Ian Barker

With DevOps gaining in popularity at many companies, the tension between speed and security is an ongoing issue. This tension exists because the common perception is that security slows down agile development and the CI/CD pipeline.

We spoke to Manish Gupta CEO of continuous application security platform ShiftLeft to discuss the dynamics within DevOps that create this tension and how IT organizations can achieve both speed and security.

Continue reading →

As the holiday season approaches and there's a consequent spike in the amount of money spent online, retail cybersecurity comes under the spotlight.

Bugcrowd is releasing its State of Retail Cybersecurity report that explores the vulnerabilities found among retailers over the last year. Among the key findings is that crowdsourced security adoption increased by 137 percent year on year.

Continue reading →

A new survey of enterprise IT operations leaders by infrastructure monitoring and management specialist OpsRamp reveals that 64 percent indicate DevOps is the most sought-after skill.

Other in-demand skills are cloud certifications (61 percent), industry knowledge (56 percent), data science (47 percent) and machine learning (44 percent).

Continue reading →

Cybersecurity company Webroot has released its third annual Nastiest Malware list which shows ransomware making a comeback in addition to other threats.

Phishing and botnets are still popular attack methods and threats across the board are also becoming more sophisticated and harder to detect.

Continue reading →

Mainframe systems are still essential to many organizations, but a new study reveals that as many staff with mainframe skills approach retirement almost two thirds of IT decision makers say the consequent loss of skills presents a big risk to their business.

The report from enterprise computing specialist LzLabs, based on research conducted by Vanson Bourne, shows 99 percent consider their organization's mainframe applications as important or critical to business operations, yet 93 percent also express serious concerns about the mainframe environment.

Continue reading →

Organizations face a greater range of cyber threats than ever before. The key to dealing with these threats is better intelligence about the latest vulnerabilities.

We spoke to Jay Prassl, CEO of cyber hygiene startup Automox, which has recently launched an open community to foster cyber hygiene best practices, to find out more about how crowdsourcing and information sharing can help reduce the corporate attack surface.

Continue reading →

A major problem for social media and other online businesses is the creation of spoof accounts. Guarding against these can be difficult but identity-as-a-service company Jumio has come up with a solution.

Jumio Go is a real-time, fully automated identity verification platform. It includes liveness detection to spot when photos, videos or even realistic 3D masks are used instead of actual selfies to create online accounts.

Continue reading →

A large majority of cybersecurity and risk management leaders (83 percent) believe that developments in 5G wireless technology will create challenges for their organizations.

A new report from UK-based cybersecurity specialist Information Risk Management (IRM) shows that among the top 5G-related concerns are greater risk of attacks on Internet of Things networks, a wider attack surface and a lack of security by design in 5G hardware and firmware.

Continue reading →

A Europe-wide survey of almost 600 successful businesses reveals that 61 percent of business leaders on the board of their company believe that in the war against cybercrime the hackers are more sophisticated than the software developers.

The study carried out for global network RSM by the European Business Awards also finds that 60 percent of these board members believe they may have been breached without them knowing and 73 percent consider themselves at risk from cybercrime.

Continue reading →

Cash App, the person-to-person (P2P) payment service application from Square is being targeted by a number of scams using Twitter and Instagram to lure victims.

It's easy to see why Cash App is a prime target, the app has been downloaded 59.8 million times since its 2013 launch, it's been name checked by popular rap artists, and some brands -- including Burger King -- have used it as part of marketing campaigns.

Continue reading →

Unless the information security industry can embrace greater diversity -- in gender, age, ethnicity, disabilities and experience -- it will face a stagnating workforce and be unable to keep up with a rapidly expanding skills gap according to a new report.

The Chartered Institute of Information Security (CIISec) finds that 89 percent of respondents to its survey are male, and 89 percent over 35, suggesting the profession is still very much in the hands of older men.

Continue reading →

The UK's National Cyber Security Centre has released its annual review for 2019 which sets out cybersecurity trends and looks at how the agency has been protecting consumers and businesses.

One of the most interesting findings is the list of most hacked passwords. 'Superman', exposed 333,139 times, and 'blink182', exposed 285,706 times, top the lists for fictional characters and musicians respectively. If you are a soccer fan, 'liverpool', exposed 280,723 times, is not a good password choice. But it's old favorite '123456', exposed more than 23 million times, that's top overall.

Continue reading →

Enterprise resource planning software is something that's usually been the preserve of large organizations. But the benefits of efficiently managing company financials, inventory, sales, and customer relationships that it can offer apply to all businesses.

Priority Software has recognized this and is launching a starter ERP package aimed at small and medium organizations.

Continue reading →

According to a recent Gartner report a third of successful attacks on enterprises will come via shadow It by 2020.

It's therefore more important than ever for organizations to understand the risks and properly assess the attack surface they present. Bugcrowd is launching a new Attack Surface Management (ASM) tool to allow them to do this.

Continue reading →

A focus on fixing new issues while neglecting ageing flaws leads to increasing security debt according to a new report.

The study -- the 10th such report from security testing specialist Veracode -- analyzed more than 85,000 applications across more than 2,300 companies worldwide and finds that fixing vulnerabilities has become just as much a part of the development process as improving functionality.

Continue reading →