Most organizations use email as a basic communication method. Unfortunately, text-based email protocols are extremely vulnerable to hacking and email has become the primary vector for cyber attacks. Organizations that understand email security in detail can adopt email security options that are a good fit for their needs and resources. This article explores: What Is Email Security Best Options to Secure Business Email How Email Security Blocks Threats Bottom Line: Email Security What Is Email Security Email security is a concept that protects email accounts, servers, and communications from ..read more

AI has been the subject of a lot of hype in recent months, but one place where the hype is justified is cybersecurity. AI will completely remake the cybersecurity landscape — and create a lot of disruption in the process. To cut to the chase before we get into the details: AI will make security worse before it makes it significantly better, but at the cost of a lot of jobs. Read on for the full implications of all this. Security is the biggest challenge facing IT, and expect that to get worse in the near term. AI is likely to make hacks happen faster, whether that’s hacking training data so th ..read more

IT security buyers are consolidating vendors at an overwhelming rate, according to a speaker at this week’s Gartner Security & Risk Management Summit. In a session on cybersecurity market trends and growth opportunities, Gartner analyst and VP Neil MacDonald said 75% of security buyers are pursuing vendor consolidation, up from just 29% in 2020. “Customers want fewer providers,” he said. MacDonald’s talk was directed at vendors rather than buyers, and he cautioned them: “Don’t just throw a bunch of stuff together; make it work better.” Security Products Merge Into Platforms As part of that ..read more

A security information and event management (SIEM) system is about as complicated as a security tool can get, pulling in log and threat data from a wide range of sources to look for signs of a cyber attack. Not surprisingly, they can be challenging to manage. A recent Gurucul survey of over 230 security pros at the recent RSA Conference found that managing and configuring SIEM solutions can be an overwhelming task. More than 42 percent of respondents said it takes weeks, months, or longer to add new data sources to their SIEM, and over 30 percent said they don’t know how to do so. Almost 17 pe ..read more

The Domain-based Message Authentication, Reporting and Conformance (DMARC) standard for email authentication is adopted by all U.S. email domain providers and many corporate and government entities. DMARC addresses weaknesses in other email authentication standards to check for misleading “From” fields in emails and to improve tracking of potential spoofing campaigns. The standard enables email security solutions and internet service providers (ISPs) to filter in “good” emails and improve their ability to filter out “bad” emails. To understand the DMARC standard in more detail this article wil ..read more

At a high level, implementation of the Domain-based Message Authentication, Reporting and Conformance (DMARC) standard can be done simply and easily for outgoing mail by adding a text file to an organization’s DNS record. However, in practice, the messiness of modern organizations can complicate the process significantly and require an iterative approach to ensure no legitimate email senders suddenly become flagged as SPAM. The basic steps are: Publish a DMARC record with the DNS provider Monitor DMARC reports to capture legitimate senders that fail DMARC Modify SPF, DKIM, and DMARC as necess ..read more

In March, Microsoft announced its Security Copilot service. The software giant built the technology on cutting-edge generative AI – such as large language models (LLMs) – that power applications like ChatGPT. In a blog post, Microsoft boasted that the Security Copilot was the “first security product to enable defenders to move at the speed and scale of AI.” It was also trained on the company’s global threat intelligence, which included more than 65 trillion daily signals. Of course, Microsoft isn’t the only one to leverage generative AI for security. In April, SentinelOne announced its own imp ..read more

Confidential computing is a technology and technique that encrypts and stores an organization’s most sensitive data in a secure portion of a computer’s processor — known as the Trusted Execution Environment (TEE) — while it’s processed and in use. It’s a fast-growing cloud computing technique that has gotten buy-in and support from a variety of hardware, software, and cloud vendors. Read on to learn more about confidential computing, how it works, and how it benefits enterprise data security efforts. How Does Confidential Computing Work? Confidential computing is all about using technology to ..read more

A cloud workload protection platform (CWPP) shields cloud workloads from a range of threats like malware, ransomware, DDoS attacks, cloud misconfigurations, insider threats, and data breaches. CWPP solutions offer uniform visibility and management for physical computers, virtual machines (VMs), containers, and serverless applications, helping to protect resources optimized to run in a cloud-based application or service. In addition to boosting visibility and control over cloud workloads, utilizing a CWPP enables enterprises to strengthen their security posture and lower the risk of data breach ..read more