Derek B. Johnson SC Media

The tech giant’s new software security framework is a roadmap to help developers defend against common attacks at every link in the development and production chain.

Featured, Ransomware, Security News

Law enforcement raids ransomware group that counted US universities among its targets

By

Derek B. Johnson

June 16, 2021

One of the group’s most notable incidents took place earlier this year when they attempted to extort major companies like Shell, Qualys, Jones Day, Flagstar and others who utilized the Accellion file transfer system.

Cloud Security, Security News

Deloitte acquires online antifraud firm Terbium Labs

By

Derek B. Johnson

June 15, 2021

The startup creates digital fingerprints of sensitive data and uses machine learning to scan the open and dark web for signs of a breach.

Featured, Health Care, Security News

Security company exec and founder charged with facilitating cyber attack on Georgia hospital

By

Derek B. Johnson

June 11, 2021

Organizations often look to cybersecurity companies to protect them, but the Department of Justice and prosecutors in Georgia are pursuing criminal charges against a executive of a security company for aiding an alleged cyberattack on a Georgia medical center in 2018.

Malware, Security News

Can machine learning help detect zero day malware?

By

Derek B. Johnson

June 10, 2021

The models have limitations, but researchers reported improvements in detection across a wide range of malware families.

Cloud Security, Featured, Security News

As clouds get more complex, companies struggle to adapt legacy security tooling

By

Derek B. Johnson

June 9, 2021

2020 could be a tipping point for cloud adoption, but its bringing more complexity and causing companies to reevaluate their old security stack.

Cloud Security, Featured, Malware, Security News

New Siloscape malware targets Windows containers and highlights security pitfalls

By

Derek B. Johnson

June 7, 2021

By infecting an entire cluster, the malware’s reach can extend across multiple cloud applications and compromise entire databases.

Application Security, Featured, Security News

Will feds mandate third-party code reviews? Developers say it’s a bad idea

By

Derek B. Johnson

June 4, 2021

Some industry groups are warning the U.S. government that third-party testing or review would be overly intrusive and might not add much benefit, especially if the focus is on source code or earlier stages of the development process.

Derek B. Johnson

Most recent articles by Derek B. Johnson

Complex supply chain logistics are leaving defense contractors vulnerable

Lies my vendor told me: sorting through the deceptions and misconceptions in SIEM

A look at Google’s new project to boost security for open source (and other) software code

Law enforcement raids ransomware group that counted US universities among its targets

Security company exec and founder charged with facilitating cyber attack on Georgia hospital

Can machine learning help detect zero day malware?

Will feds mandate third-party code reviews? Developers say it’s a bad idea

MOST POPULAR