The company uses graph-based tools and algorithms to analyze the security posture of an organization’s cloud stack, identifying misconfigurations or problematic permission policies in order plot out the most likely avenues of attack.
Two popular Baidu apps collect data that can surreptitiously track a user’s location through Stingray devices or intercept phone calls and text messages.
The hunger many industries have to hand off more of their security and threat hunting work to algorithms is being offset by an increasingly complex landscape of internal and third party threat feeds, differing data standards and a general lack of cybersecurity maturity within many organizations.
While the potential for automating security functions remains vast and promising, a lack of data standardization and cyber maturity are keeping huge chunks of industry from taking advantage.
Meet ‘Pluton,’ a major move by the tech industry to avoid the same design oversights that led to attacks like Meltdown and Spectre.
At the core of the document is this message: a threat model that can’t be understood outside of the security team doesn’t make any company safer.
Shadow IT, malicious email attachments, bad hygiene and other “low hanging fruit” continue to plague many businesses, according to incident response data from Red Canary.
The U.S. must better equip its law enforcement organizations to deal with an explosion of cybercrime and meet public expectations, a new report from Third Way argues.
The acquisition represents a play to better protect sensitive customer information around the globe and stay in compliance with the increasingly fragmented privacy regulatory landscape.
The most relevant cyber threats of 2021 may not look dramatically different from previous years. But a remote workforce does shift the level of risk facing organizations.
