Buzzwords are a fact of life in the tech industry, especially in its more nebulous corners like cybersecurity. As the name implies, they crop up whenever buzz builds around the Next Big Thing. After a while many get overused, bleached out, watered down, or stretched to breaking point until they morph into the next buzzword. […]
Some days, it feels like every application and system out there is getting new functionality based on large language models (LLMs). As chatbots and other AI assistants get more and more access to data and software, it’s vital to understand the security risks involved—and prompt injections are considered the number one LLM threat. In his […]
According to a 2023 Cloud Computing Study, 92% of organizations already host a portion of their IT environment in the cloud, with 66% expected to increase spending on cloud computing over the next year. With an emphasis on building and deploying applications that leverage all the advantages of the cloud, cloud-native security can be an […]
The Common Vulnerability Scoring System (CVSS) has been in need of an update for some time, and in November 2023, CVSS v4.0 was officially released. This new version, designed to address the limitations of CVSS v3.1 and align with current cybersecurity trends, introduces significant changes. One key update is the inclusion of new supplemental metrics […]
As the saying goes, it’s tough to make predictions, especially about the future. And yet everyone tries—whether for planning or in the naive hope of not getting caught off-guard this time. While we do have our own modest tradition of end-of-year prediction posts on this blog, we look to the experts to help us make […]
In early December 2023, the U.S. Department of Health and Human Services published a concept paper outlining imperative new guidelines for healthcare organizations tackling cybersecurity. The publication comes on the tailwind of the Biden-Harris administration’s National Cybersecurity Strategy, building off of that momentum with a renewed focus on one of the nation’s most high-risk sectors. […]
It’s tempting to speak about security in binary terms: fixed or not fixed, patched or unpatched, secure or insecure. Reality, though, is more about shades of gray and probabilities than absolutes. It’s also about limited resources and endless prioritization—always with the awareness that the stakes are high and any security gaps you fail to address […]
Tool sprawl is a problem in all walks of the technology industry but can hit especially hard in cybersecurity. Losing track of the security toolset in your organization introduces inefficiencies that can hurt not only your security operations and incident response but also your application development and overall company performance. There are many examples of […]
Creating industry-leading products in application security goes beyond just developing a robust platform that delivers results without any distractions. It also involves focusing on customer experiences to build lasting relationships and provide added value to our tools. According to data from Salesforce, customer experience plays a significant role: 73% of consumers expect vendors to understand […]
In the military world, asymmetric warfare is where a large military force has to deal with far smaller and irregular opposition, like guerillas or other insurgents. So instead of facing off against a clearly visible enemy military unit, you could be surrounded by any number of smaller threats that remain hidden until an unexpected and […]
We hate spam, we obviously will not spam you!
Copyright © TSP 2024. All rights reserved. Designed by Enovate LLC
