Recently, Veracode analyzed the security debt and application risk management in the public sector. The report found that security debt, defined as flaws that remain unfixed for over a year, exists in 59% of applications in the public sector, compared to the overall rate of 42%. Public sector organizations tend to accumulate more security debt, […]
Proofpoint released a report that surveyed 1,600 CISOs worldwide in order to shed light on their experiences, insights and predictions. The report found that 70% of CISOs feel vulnerable to a material cyberattack; however, only 43% feel unprepared to manage a cyberattack. A notable finding from the report is that a majority of CISOs are […]
WD Associates recently announced a data security incident. They discovered suspicious activity on certain workstations and servers within their environment. An investigation found that certain files on WD’s network were accessed or taken by an unauthorized party between February 1, 2023 and February 9, 2023. The investigation revealed that the accessed files contained personal information […]
Healthcare cybersecurity and ransomware attacks were examined in a recent report by Software Advice. The report revealed that over a quarter of ransomware attacks directly impact patient care, leading to disrupted medical services, lost data, and compromised patient safety. The report also highlighted that the majority (87%) of data held in medical practices today is […]
A recent report from Swimlane investigates the impact of the changing regulatory landscape on security budgets and compliance strategies. The report surveyed 500 cybersecurity decision-makers in the United States and the United Kingdom, focusing on enterprises with 1,000 or more employees. According to the report, 93% of organizations have reassessed their cybersecurity strategies due to […]
A report from HP Wolf Security reveals that cybercriminals are employing overdue invoice scams, open redirects, and Living-off-the-Land (LotL) tactics to evade cybersecurity measures. The report examines actual attacks observed in Q1, highlighting significant campaigns such as cat-phishing, Windows Background Intelligent Transfer Service (BITS) exploitation, and HTML smuggling. Attackers utilized open redirects in cat-phishing schemes, […]
A recent study has shown that the increasing complexity of technology and organizations is leading to the emergence of new identity risks that need to be managed by security leaders. Conducted by ConductorOne, the study surveyed over 500 IT security leaders in the US and found that rising complexity is giving rise to new identity […]
As of April 2024, the ransomware groups Alphv and LockBit have ceded the top spot to a smaller ransomware group. A report by GuidePoint Security investigates ransomware trends as well as ransomware group activity, finding that Play has taken the top spot for April. When accounting for victim volume, the report notes that LockBit (the […]
Security incident response was recently examined by Cado Security, revealing that almost 90% of organizations experience damage before effectively containing and investigating incidents. Challenges and complexities result in 23% of cloud alerts going unresolved by organizations. The study indicates that 82% of organizations find it necessary to utilize multiple platforms and tools for cloud investigations. […]
If it walks like a duck and quacks like a duck, it’s still not a duck unless it has an application/duck Content-Type header Web design was a lot simpler 20 years ago. You had an invisible table over the whole height and width of the page, a few GIF images, and optionally some HTML. There […]
We hate spam, we obviously will not spam you!
Copyright © TSP 2024. All rights reserved. Designed by Enovate LLC