Ian Barker

New research from Ivalua shows more than half (53 percent) of procurement and supplier management processes have yet to be digitized.

This is creating inefficiencies, with procurement teams estimating they are wasting 22 percent of their time each year dealing with paper-based or manual processes.

Continue reading →

The latest biannual Cyber Threat Intelligence Report from Critical Start reveals the top 10 cyber threats, including a rise in phishing attacks using QR codes are on the rise with bad actors masquerading as Microsoft security notifications.

Since May this year a major campaign has seen emails with a QR code embedded inside a PNG image or a PDF attachment. This has been aimed across industries with the energy sector being hardest hit -- one US energy company received 29 percent of all emails in the campaign.

Continue reading →

A new survey of 205 IT security decision makers highlights mounting concerns over the use of AI, and deepfakes in particular, as 68 percent of respondents express concerns about cybercriminals using deepfakes to target their organisations.

The study from Integrity360 finds 59 percent also agree that AI is increasing the number of cyber attacks, which aligns with the change in attacks that have been noticeable over the past year as 'offensive AI' is being used for tasks such as malware creation.

Continue reading →

While some might argue that generative AI is eliminating the need for certain jobs, it's also increasing the need for new roles and skills such as 'prompt engineering'.

With many people looking to upskill in this area to produce better results from AI tools like ChatGPT, and some companies creating new roles to stay ahead of AI's fast-paced developments, we spoke to Mike Loukides, vice president of content strategy for O'Reilly Media, to find out more about prompt engineering and why it’s important.

Continue reading →

The most recent average CISO total compensation increase was 11 percent, down from 14 percent the previous year. This year, 20 percent of CISOs did not receive a raise, double the number of a year ago.

Research released today from IANS Research and Artico Search finds that the share of CISOs with bigger retention bonuses and equity packages also declined to 12 percent (from 21 percent) and to eight percent (from 24 percent), respectively.

Continue reading →

We reported earlier today that businesses are struggling with IoT device connectivity, another report out today shows that securing these devices is a major problem too.

The study for Keyfactor, conducted by Vanson Bourne, finds 97 percent are struggling to secure their IoT and connected products to some degree.

Continue reading →

A new report finds 86 percent CISOs are turning to generative AI in order to alleviate skills gaps and talent shortages on the security team, filling labor-intensive and time-consuming security functions and freeing up security professionals to be more strategic.

The study from Splunk shows 35 percent are using generative AI for positive security applications and 61 percent say they will likely use it within the next 12 months. On the other side of the coin 70 percent believe that generative AI could give cyber adversaries more opportunities to commit attacks

Continue reading →

A new report finds that IoT success is being jeopardized with just one percent of respondents achieving better than 98 percent connectivity levels on average across their devices.

The study, by connectivity solutions specialist Eseye, shows that only 16 percent of respondents are achieving more than 95 percent connectivity. Mission-critical IoT devices -- medical equipment for example -- require near-100 percent connectivity and the fact that companies are prepared to accept poor performance is concerning.

Continue reading →

New research to coincide with Cybersecurity Awareness Month finds that 34 percent of Brits admit that they have given up following cybersecurity best practice because it feels like an impossible task.

The study from Thales surveyed over 2,000 UK citizens and finds an alarming level of consumer apathy when it comes to keeping themselves safe online.

Continue reading →

Today's application security landscape is complex and can lead to teams spending a lot of time hunting down vulnerabilities. Add in the move to cloud-based development and there's an even higher volume of code to deal with

We spoke to Shahar Man, CEO at Backslash Security, to learn more about what AppSec needs to look like in this world and how it ties in with greater use of the cloud.

Continue reading →

October, as you might have noticed, is Cybersecurity Awareness Month. Now in its 20th year, this aims to bring the public and private sectors to work together to raise awareness about the importance of cybersecurity.

As always industry experts are keen to use the event to offer views on the security landscape, here we round up some of their comments.

Continue reading →

In today's increasingly digitally-centered organizations, the development of products, services, and solutions increasingly depends on the implementation of Application Programming Interfaces (APIs).

APIs have become the building blocks of modern business applications and are critical to digital transformation -- so much so that API security has become a boardroom issue.

Continue reading →

The UK's Competition and Markets Authority (CMA) is launching a market investigation into the supply of public cloud infrastructure services in the UK. Between them, Amazon and Microsoft enjoy a combined market share of 60-70 percent of Britain's cloud computing industry.

This follows a referral by telecoms regulator Ofcom which has expressed concerns around egress fees, discounts -- which may incentivize customers to use only one cloud provider, and technical barriers to switching.

Continue reading →

AI is making its way into more and more areas of life and work. In some areas though, particularly scientific research, it's vitally important to ensure the accuracy of results.

Norwegian company Iris.ai has developed a method to measure the factual accuracy of AI-generated content -- testing precision and recall, fact tracing, and extraction.

Continue reading →

Ransomware is being deployed within one day of initial access in more than 50 percent of engagements, according to research from Secureworks Counter Threat Unit.

In the last 12 months the median dwell time identified in the annual Secureworks State of the Threat Report has fallen from 4.5 days to less than one day. In 10 percent of cases, ransomware was even deployed within five hours of initial access.

Continue reading →