4分钟
Ransomware
3 Takeaways From the 2022 Verizon Data Breach Investigations Report
Our takeaways from Verizon's 2022 Breach Report suggest security pros should be doubling down on the big priorities, like ransomware 和 supply chain.
3分钟
网络安全
What's Changed for 网络安全 in Banking 和 Finance: New Study
The results of a new VMware study show a changing l和scape for cybersecurity in banking 和 finance.
5分钟
脆弱性 Management
How to Strategically Scale Vendor Management 和 Supply Chain Security
Here are simple changes that can help you provide more impactful supply chain security guidance 和 controls to decrease risk.
6分钟
云安全
InsightCloudSec 支持s the Recently Updated NSA/CISA Kubernetes Hardening Guide
The NSA 和 CISA recently updated their Kubernetes Hardening Guide. Here's how InsightCloudSec supports the updated guidance.
3分钟
Supply Chain Security
An Inside Look at CISA’s Supply Chain Task Force
在这个客座帖子中, Rapid7 customer Chad Kliewer writes about his experience on CISA's new task force created to enhance supply chain resilience.
4分钟
开源
Security at Scale in the Open-Source Supply Chain
Securing supply chains based on open-source software requires scalable vulnerability management 和 vigilant monitoring.
4分钟
英特尔威胁
What It Was Like to Attend Black Hat USA 2021 和 DEF CON 29 in Person
I attended Black Hat USA 2021 和 DEF CON 29, marking the fifth time that I made this annual pilgrimage to Las Vegas for cybersecurity professionals.
10分钟
Supply Chain Security
Securing the Supply Chain: Lessons Learned from the Codecov Compromise
This blog post is meant to provide the security community with defensive knowledge 和 techniques to protect against supply chain attacks involving continuous integration (CI) systems
2分钟
Emergent Threat 响应
Codecov Discloses Supply Chain Compromise
4月15日, code coverage 和 testing company Codecov announced a supply chain compromise in which a malicious party gained access to their Bash Uploader script 和 modified it without authorization.
5分钟
新闻
Update on SolarWinds Supply-Chain Attack: SUNSPOT, SUNSHUTTLE 和 New Malware Family Associations
New research has been published that expands the security community’s underst和ing of the breadth 和 depth of the SolarWinds attack.