Ian Barker

Friction and lack of communication between development and security teams can lead to problems in software development and testing.

How can we bridge the gap between developer and security teams and help them see that they have common goals? We spoke to Scott Gerlach, CSO and co-founder of StackHawk, the company making web application and API security testing part of software delivery, to find out.

Continue reading →

Bots have been around for a long time, but they're now much more sophisticated, capable of mimicking human behavior, evading detection, and perpetrating a wide range of malicious activities.

A new report from CHEQ shows that latest bots are able to scrape data without permission, inflate engagement metrics, commit fraud, and compromise the security and integrity of websites, mobile apps, and APIs.

Continue reading →

Observability is key to allowing organizations to manage their systems effectively, helping improve performance, cut workloads and save money.

Grafana has released its latest Obervability Survey, based on responses from over 300 industry practitioners which shows that 70 percent of teams are using four or more observability technologies.

Continue reading →

For the second year running managing cloud spending is the top challenge facing organizations, according to the latest Flexera State of the Cloud Report.

The survey of over 750 respondents shows more than a quarter of them spend over $12 million a year on cloud (29 percent), and 22 percent spend that much on SaaS.

Continue reading →

The pandemic led to a dramatic shift in working patterns with many more people working from home or spending less time in the office.

Recently though we've been seeing more calls for staff to go back to the office. So, have working patterns changed for good and if so how can productivity levels be maintained with remote working? We talked to Mark Cresswell, co-founder and executive chairman of Scalable Software, to find out.

Continue reading →

The nature of the modern world means that we all have lots of different accounts to manage various services.

Protecting all of these can be a challenge and you can end up with lots of different tools like password managers, VPNs, anti-virus tools and more. It also leads to people getting lazy and reusing passwords.

Continue reading →

Kaspersky's annual spam and phishing report, released today, shows its anti-phishing system thwarted over 709 million attempts to access phishing and scam websites in 2023 -- a 40 percent increase over 2022.

There's also been a surge in attacks spread via messaging platforms, including 62,127 phishing attempts on Telegram -- a 22 percent increase from the year before. AI platforms, social media services, and cryptocurrency exchanges are the other most-exploited channels.

Continue reading →

Around half of organizations have experienced a significant increase in their audit budget expenditures due to poor IT asset inventory data.

Research carried out by YouGov for Oomnitza shows 56 percent of companies report that the data accuracy of their configuration management database (CMDB) is only 85 percent or less with insufficient levels of process automation.

Continue reading →

New research from Civo finds 64 percent of users of AWS, Microsoft Azure, and Google Cloud have seen an increase in cloud costs in the last 12 months.

This comes at a time when public cloud services are coming under scrutiny from the Competition and Markets Authority for their billing and pricing tactics.

Continue reading →

A new survey of 150 IT security and data science leaders shows that 98 percent of enterprises consider at least some of their AI models crucial to their business success, and 77 percent identified breaches to their AI in the past year.

Yet the study from HiddenLayer shows only 14 percent of IT leaders say their respective companies are planning and testing for adversarial attacks on AI models.

Continue reading →

New research from email security provider EasyDMARC finds that 25 percent of e-commerce retailers expect to see a notable drop in email deliverability following Yahoo and Google's email authentication policy changes.

Both Google's sender guidelines and Yahoo's sender requirements and recommendations have stated that failure to comply with the new sending standards could negatively impact email delivery. For e-commerce providers that rely on email as a marketing and customer communications channel, these measures could negatively impact customer engagement and sales.

Continue reading →

Over the years, security vendors have pushed companies to integrate their tools into the DevOps pipeline with the promise of being able to move faster and be more secure.

However, as businesses have matured their DevSecOps practices the more they have been hit by mountains of reported vulnerabilities and problems that have slowed them down. So, has DevSecOps failed in its promise? We talked to Eitan Worcel, CEO at Mobb, to find out.

Continue reading →

According to a new study, 89 percent of cybersecurity professionals agree that their company's sensitive data is increasingly vulnerable to new AI technologies.

The study of 700 respondents across cybersecurity roles, conducted by Vanson Bourne for Code42, also finds that 87 percent are concerned their employees may inadvertently expose sensitive data to competitors by inputting it into GenAI. In addition 87 percent are concerned their employees are not following their GenAI policy.

Continue reading →

Over 70 percent of respondents to a new survey say they feel their current security stack is highly effective against image-based and QR code phishing, however, 76 percent report being compromised by these types of attacks within the past year.

The study of 300 IT and security professionals across a variety of industries and geographies, from Osterman Research for IRONSCALES, shows almost 93 percent of IT and security professionals are aware of image-based phishing attacks targeting their organizations, and nearly 79 percent say the same about QR code attacks.

Continue reading →

A new study reveals that 97 percent of technology leaders find traditional AIOps models deliver limited value, leaving teams unable to tackle data overload.

The global survey of 1,300 CIOs and technology leaders in large organizations, carried out for Dynatrace, also finds that 88 percent of organizations say the complexity of their technology stack has increased in the past 12 months, and 51 percent say it will continue to increase.

Continue reading →