Ian Barker

The US Cybersecurity and Infrastructure Agency's (CISA) Secure Software Development Attestation Form rules come into force on June 11, 2024.

This requires software producers who work with the US government to adhere to and confirm the deployment of key security practices. But new research from Lineaje reveals that 80 percent of companies are not ready.

Continue reading →

A new report from CyCognito looks at the challenges faced by cybersecurity professionals in protecting web applications, which have become prime targets for cyberattacks.

Organizations maintain dozens, often hundreds, of custom web apps, developed in-house and by third-party partners. What's more over 60 percent update web applications weekly or more often.

Continue reading →

When the internet first emerged, the need for load balancers was mainly to optimize the growing use of PC servers and to support the surge in Web traffic. Their basic functionality was designed to pool server resources to meet this demand.

Load balancers have come a long way since, becoming broadly accepted as essential for evolving IT infrastructure and the exponential growth of apps.

Continue reading →

A new report reveals a disconnect between those in the C-suite and their eagerness to adopt AI coding tools compared to those actually using them who are cautious of AI.

The research from Snyk shows CTOs and CISOs are five times more likely than developers to believe AI coding tools pose no risk and twice as likely than developers to believe they are 'extremely ready' to adopt AI coding tools.

Continue reading →

Organizations have prioritized investment in SaaS security, with 70 percent establishing dedicated SaaS security teams, despite economic uncertainty and workforce reductions.

A new report from the Cloud Security Alliance (CSA), commissioned by cloud security specialist Adaptive Shield, also finds 39 percent of organizations are increasing their SaaS cybersecurity budgets compared to last year.

Continue reading →

New research from tech consultancy esynergy, which surveyed 700 business and tech leaders in the US and UK, finds 74 percent of organizations struggle to optimize cloud spend.

It also finds that 51 percent anticipate making a change to their cloud strategy in response to cost pressures. Increasingly they're looking at FinOps (financial operations) is to ensure that cloud resources are used efficiently.

Continue reading →

A new study reveals that 60 percent of security leaders in the UK cite account takeover attacks as one of the top four most concerning cyber threats.

The survey from Abnormal Security shows 75 percent of UK survey participants report that their organization has been impacted by an account takeover attack at least once over the past year.

Continue reading →

A new report from Deep Instinct shows that 97 percent of security professionals are concerned that their organization will suffer an AI-generated security incident.

In addition 75 percent have had to change their cybersecurity strategy in the last year due to the rise in AI-powered cyber threats, with 73 percent expressing a greater focus on prevention capabilities.

Continue reading →

Cloud costs have been rising of late, making it vital that enterprises get a grip on their cloud networks and ensure they’re optimizing them to get the best value.

We spoke to Atif Khan, CTO of infrastructure on demand company Alkira, to discuss how businesses can manage their cloud assets and keep spending under control.

Continue reading →

Early stage businesses face many challenges. Not least of these is selecting the right technology solutions, something made even more difficult by the emergence of new technologies.

We spoke to Paul Pluschkell, founder and CEO of StartupOS, to find out about how AI and other technologies can impact on new businesses.

Continue reading →

Businesses are keen to adopt new technologies in their quest for digital transformation but often face a maze of biased information and incomplete data that hampers the decision making process.

A new report from request for proposal (RFP) specialist Olive Technologies looks at trends and requirements from real-world RFPs, managed through the Olive platform, to help organizations make data-driven, unbiased decisions when selecting IT solutions.

Continue reading →

Two-thirds of organizations responding to a new survey list cyber risk concerns as the most important drivers for implementing a zero-trust strategy.

A new report from the Entrust Cybersecurity Institute, based on research by the Ponemon Institute, shows the pattern is even more pronounced in the US, with 50 percent of organizations citing cyber breach risk and 29 percent reporting the expanding attack surface for a combined total of 79 percent.

Continue reading →

Over 58,000 unique websites from around the world are vulnerable to data breaches and even complete takeovers according to new research.

The Cybernews research team has investigated publicly exposed environment files (.env) that should be kept private and protected at all costs. These files hold passwords, API keys, and other secrets that websites need to access databases, mail servers, payment processors, content management systems, and various other services.

Continue reading →

As organizations have come to rely more on the cloud, it's become an increasingly attractive target for cybercriminals seeking to steal data or extract ransoms.

In the past this has involved the use of malware, but as attackers get more sophisticated there’s a move towards different types of attack. We spoke to Shai Morag, SVP and general manager cloud security at Tenable, to discover more about these threats and how to tackle them.

Continue reading →

Leaked or stolen credentials remain a major cause of security breaches and reuse of passwords between accounts only compounds the problem.

Password manager company Dashlane is launching new automated tool to empower admins to proactively create a more security-conscious workforce and drive better credential security behavior across their organization, reducing the risk of credential theft.

Continue reading →