Cybersecurity News, Awards, Webinars, eSummits, Research

money background from dollars usa. (Adobe Stock Images)

Most financial and insurance firms report security issues in production APIs

Steve ZurierJuly 19, 2023

Salt Security study says 17% of financial services and insurance companies experienced an API-related breach, and nearly 70% had rollout delays due to API security issues.

WHITEPAPER

Vulnerability management: A maelstrom of moving targets

PODCASTS

RESOURCES

FEATURED

2023 Women in IT Security: Call for nominations

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Critical infrastructure

Microsoft backtracks: Premium security logging is now free

Derek B. JohnsonJuly 19, 2023

Standard license holders will get access to more than 30 types of logging previously available to higher paying customers, and all logs will be stored for twice as long, 180 days, by default.

FEDERAL COMMUNICATIONS COMMISSION US CYBERSECURITY LABELING PROGRAM FOR SMART DEVICES

Device Security

FCC launches ‘U.S. Cyber Trust Mark’ labeling for IoT devices

Stephen WeigandJuly 19, 2023

At a White House press event, the FCC said it wants to help consumers purchase smart devices that are less vulnerable to cyberattacks.

Ransomware

FIN8 retools backdoor malware to avoid detection

Simon HenderyJuly 19, 2023

The long-established APT has developed a stealthy new variant of the Sardonic malware as it pivots from PoS attacks to ransomware.

The continued stream of newly disclosed companies impacted by the MOVEit HACK every day has many security experts asking where the bottom is, and when Cl0p may finally exhaust its pool of companies to extort. (Image Credit: Natalia Shabasheva via Getty Images)

Vulnerability management

The tail of the MOVEit hack may be longer than we realize

Derek B. JohnsonJuly 18, 2023

A significant minority of victims disclosed thus far do not appear to be direct users of MOVEit Transfer and had their data stolen via a third-party provider.

Vulnerability management

Patch Adobe ColdFusion zero-days, CISA urges security teams

Steve ZurierJuly 18, 2023

Security pros say Adobe’s most recent advisory covers the patches for all the most recent vulnerabilities discovered in the ColdFusion web development platform.