Risk Archives - Cyber Security Minute

Google Partners With Insurers to Create Risk Protection Program

Issued by: Dark Reading

Google has teamed up with two major cyber-insurance providers, Allianz Global Corporate and Specialty (AGCS) and Munich Re, to create the “Risk Protection Program” for Google Cloud users. The program introduces a new Google Cloud security tool called Risk Manager, which gives businesses the ability to measure and manage their risk via Google Cloud and…

Software Security

How to cyber security: Software security is everyone’s responsibility

Issued by: Black Duck

Remember group projects in school? Teachers love them because they have less grading to do; in a class of 25 students, they might only need to look at 5 projects. For team members, team projects can be difficult, usually when individual motivation levels don’t match up. On the other hand, team projects can be rewarding…

Vulnerabilities

How the pandemic has accelerated existing risk trends

Issued by: Help Net Security

COVID-19 has reorganized the risk landscape for chief audit executives (CAEs), as CAEs have listed IT governance as the top risk for 2021, according to Gartner. Analysts said the pandemic is giving rise to new sets of risks while exacerbating long-standing vulnerabilities. Gartner conducted interviews and surveys from across its global network of client organizations…

Vulnerabilities

Risk professionals expect a dynamic risk environment in 2021

Issued by: Help Net Security

A majority of audit and risk professionals believe the risk environment will continue to be dynamic and unpredictable in 2021, rather than returning to more stable pre-pandemic conditions, an AuditBoard survey finds. The top risk they cited for the coming year was of “economic conditions impacting growth,” followed closely by “cybersecurity threats.” The responses also…

Vulnerabilities

Palo Alto Networks to Acquire Attack Surface Management Firm Expanse in $800 Million Deal

Issued by: Security Week

As its largest acquisition to date, Palo Alto will pay $670 million in cash and stock and approximately $130 million in equity awards. Expanse’s platform provides customers with a vulnerability map of externally exposed and untracked assets and helps evaluate and mitigate risk. Following the acquisition, Expanse’s attack surface management capabilities will be integrated into…

Vulnerabilities

The cybersecurity skills shortage is getting worse

Issued by: CSO

For the past four years, ESG and the Information Systems Security Association (ISSA) collaborated on a research project focused on the experiences, opinions, and careers of cybersecurity professionals (download this year’s report). At the risk of appearing like Chicken Little, I am quite alarmed. The security industry continues to address major issues with a combination…

Malware & Threats

How drones affect your threat model

Issued by: CSO

Most security leaders are unlikely to have drones on the list of threats they need to defend against on the cyber or physical security front. Drones can, however, introduce new risks that organizations need to recognize and address proactively, say security experts, even if an organization isn’t using them. A growing number of organizations have…

Application Security

Granting employees admin status is convenient but risky

Issued by: Help Net Security

One of your employees needs access to part of your customer database so he can fulfill an urgent reporting request. You’re busy and this employee is trustworthy, so you grant him administrative status. Simple solution, right? You’ll revoke it later when you’re done with the other 600 critical things you’re working on right now. Right?…

Software Security

CyberStrong platform updates allow customers to dynamically manage their risk posture

Issued by: Help Net Security

CyberSaint announced new updates to its flagship CyberStrong platform allowing customers to identify, measure, and dynamically manage IT and cybersecurity risks along the risk management lifecycle. These updates reinforce CyberSaint’s mission to enable organizations to manage cybersecurity as a business function by enabling agility, measurement, and automation across risk, compliance, audit, vendor, and governance functions…

Network Security

Worst passwords of 2019: Are you using one of them?

Issued by: Help Net Security

SplashData released their “Worst passwords of 2019” list, which includes the top 25 most dangerous and most commonly leaked passwords. In an interesting turn of events, password has for the first time in the list’s history been knocked out of the top two spots. “Invoking the name of the president or any other celebrity as…