Ian Barker

Over the years, security vendors have pushed companies to integrate their tools into the DevOps pipeline with the promise of being able to move faster and be more secure.

However, as businesses have matured their DevSecOps practices the more they have been hit by mountains of reported vulnerabilities and problems that have slowed them down. So, has DevSecOps failed in its promise? We talked to Eitan Worcel, CEO at Mobb, to find out.

Continue reading →

According to a new study, 89 percent of cybersecurity professionals agree that their company's sensitive data is increasingly vulnerable to new AI technologies.

The study of 700 respondents across cybersecurity roles, conducted by Vanson Bourne for Code42, also finds that 87 percent are concerned their employees may inadvertently expose sensitive data to competitors by inputting it into GenAI. In addition 87 percent are concerned their employees are not following their GenAI policy.

Continue reading →

Over 70 percent of respondents to a new survey say they feel their current security stack is highly effective against image-based and QR code phishing, however, 76 percent report being compromised by these types of attacks within the past year.

The study of 300 IT and security professionals across a variety of industries and geographies, from Osterman Research for IRONSCALES, shows almost 93 percent of IT and security professionals are aware of image-based phishing attacks targeting their organizations, and nearly 79 percent say the same about QR code attacks.

Continue reading →

A new study reveals that 97 percent of technology leaders find traditional AIOps models deliver limited value, leaving teams unable to tackle data overload.

The global survey of 1,300 CIOs and technology leaders in large organizations, carried out for Dynatrace, also finds that 88 percent of organizations say the complexity of their technology stack has increased in the past 12 months, and 51 percent say it will continue to increase.

Continue reading →

The biggest software development challenge in 2024 will be incorporating AI into the development process, according to a new report.

The Reveal survey of 585 software developers and IT professionals from Infragistics shows 40.7 percent name this as the top challenge followed by high workload (29.6 percent) and increased customer demands (29.2 percent).

Continue reading →

Towards the end of last year the American Airlines pilot union was hit with a ransomware attack. This is just one of a growing number of attacks targeting the aviation sector.

What makes the aviation industry such an attractive target and how can it protect itself? We spoke to Marty Edwards, deputy CTO for OT/IoT at Tenable, to find out.

Continue reading →

This week IBM, along with charitable partner United Nations Human Rights, and program affiliate the Linux Foundation, launches its 2024 Call for Code Global Challenge with the aim of encouraging developers to use generative AI technology to create solutions that improve equitable access to resources and opportunities for historically underserved and vulnerable people.

Participants will have access to a trial version of watsonx, IBM's AI and data platform with AI Assistants, as well as IBM Cloud technology and developer-friendly training and resources to help teams develop their solutions.

Continue reading →

When OpenTelemetry was first released in 2019, there was a good deal of excitement about the prospect of a single standard set of telemetry data for the entire modern software stack.

OpenTelemetry set out to make robust, portable telemetry a built-in feature of cloud-native software, and give developers and platform engineers a common mental model for all the telemetry types.

Continue reading →

Staff at various levels work in multiple cybersecurity functions according to the latest report from IANS research and recruitment specialist Artico Search.

It finds 42 percent have responsibilities that span multiple cybersecurity domains. Of the AppSec staff, 74 percent also contribute to product security and 67 percent are involved in identity and access management (IAM).

Continue reading →

There is an increasing level of crossover and connectivity between IT, operational technology (OT) and IoT assets, which raises the risk of cyberattacks originating in IT systems and then spreading into OT environments.

To help businesses address this risk Tenable is launching a new exposure management platform that provides holistic visibility into assets across IT and OT environments.

Continue reading →

A new study reveals that 92 percent of companies surveyed had experienced a breach in the past year due to vulnerabilities of applications developed in-house.

The report from Checkmarx shows that in recent years the responsibility for application security has shifted away from dedicated security teams and is now shared between AppSec managers and developers.

Continue reading →

Globally, the average number of DDoS attacks per customer grew by 94 percent in 2023, according to a new report from Radware.

"The technological race between good and bad actors has never been more intense," says Pascal Geenens, Radware's director of threat intelligence. "With advancements like Generative AI, inexperienced threat actors are becoming more proficient and skilled attackers more emboldened. In 2024, look for attack numbers to climb and attack patterns, like the shift in Web DDoS attacks, to continue to evolve."

Continue reading →

Businesses are dependent on data but extracting useful information in order to aid decision making, while ensuring it stays secure, can prove surprisingly difficult.

Cohesity Gaia, is the industry's first generative AI-powered conversational search assistant. Designed to help access organizations’ most important data to make smarter decisions faster, all while keeping data secure and compliant.

Continue reading →

Kubernetes is one of the most widely used container tools, but failure to accurately forecast resources leads to overprovision, waste and overspending.

A new report from Kubernetes automation platform CAST AI reveals high levels of underutilization are costing businesses more than necessary.

Continue reading →

As commercial adoption of cloud technologies continues, cloud-focused malware campaigns have increased in both sophistication and number.

A new report from Cado Security is based on analysis of real-world techniques employed by attackers using honeypot infrastructure. Last year Cado introduced 'Cloudypots', a new, more sophisticated, high-interaction honeypot system.

Continue reading →