One-fifth (20%) of organisations admit that an employee at their organisation has exposed company data using AI tools such as ChatGPT, according to new research from RiverSafe, a leading cybersecurity professional services provider. The findings were revealed in Underfunded and Under Reported: Threats, Breaches, and Budgets report, a survey of 250 UK CISOs conducted by independent polling agency Censuswide, which detailed the intersection of AI tools and cybersecurity. RiverSafe found that 75% of security leaders believe that insider threats pose a more significant risk tha ..read more

Chris Jacob, Global Vice President, Threat Intelligence Engineers, ThreatQuotient, says an ever-evolving threat landscape needs a structured and efficient risk-based process for managing vulnerabilities. It might surprise you to know that more than 70 new vulnerabilities are published every day. And, despite their risk-reducing value in helping SOC teams address these, vulnerability management solutions have drawbacks. Often, they only provide a snapshot of an organization’s vulnerabilities at a point in time. In fact, owing to their nature, vulnerabilities identified today may not exist tomor ..read more

KnowBe4, a provider of one of the world’s largest security awareness training and simulated phishing platforms, has announced it has entered into a definitive agreement to acquire Egress, a leader in adaptive and integrated cloud email security. Egress’ Intelligent Email Security suite provides a set of scaled, AI-enabled security tools with adaptive learning capabilities to help prevent, protect and defend organisations against sophisticated email cybersecurity threats. Further terms of the transaction were not disclosed. Organisations globally struggle to contain behavioural-based data ..read more

Renato Mirabili Junior, Information Security Consultant, Protiviti, makes the case for collaborative work to deal with new attacks and opportunities that AI can make available. One of the most talked about subjects today is AI and it is also one of the most studied areas due to a fascinating and peculiar feature: allowing tasks – previously exclusive to human beings – to be performed by machines through algorithms. In Brazil, for example, AI is the main topic of learning for 45% of Brazilians, according to the Workmonitor survey by Randstad, a recruitment and human resources company. The natio ..read more

Elevation of Privilege is the top vulnerability category for the fourth year running, accounting for 40% of all Microsoft vulnerabilities in 2023. BeyondTrust has released its 2024 Microsoft Vulnerabilities Report. Produced annually by BeyondTrust, this report analyses data from security bulletins publicly issued by Microsoft throughout the previous year and provides valuable information to help organisations understand, identify and address the risks within their Microsoft ecosystems. Each Microsoft Security Bulletin is comprised of one or more vulnerabilities, which apply to one or more Micr ..read more

NETSCOUT SYSTEMS has released findings from its 2H2023 DDoS Threat Intelligence Report that dissects trends and attack methodologies adversaries use against service providers, enterprises and end-users. The information cited in the report is gathered from NETSCOUT’s unparalleled Internet visibility at a global scale, collecting, analysing, prioritising and disseminating data on DDoS attacks from 214 countries and territories, 456 vertical industries and more than 13,000 Autonomous System Numbers (ASNs). Driven by tech-savvy and politically motivated hacktivist groups and an increase ..read more

Forcepoint has launched Forcepoint Data Security Posture Management (DSPM) – driven by AI to deliver real-time visibility, ease privacy compliance and minimize risks for data stored in multi-clouds and networks, including endpoints.  Forcepoint DSPM harnesses AI-mesh technology to swiftly identify data risks, empowering decision-making and safeguarding sensitive information by examining data context and content, prioritizing critical data types including intellectual property, personally identifiable information (PII) and medical records. Forcepoint DSPM automates security actions and con ..read more

BeyondTrust has been recognised as a leader in KuppingerCole Analysts AG’s 2024 Leadership Compass, Identity Threat Detection and Response (ITDR): IAM Meets the SOC. In addition to being recognised as an ‘Overall Leader’ in the report, BeyondTrust is also named as a leader in the Innovation, Product and Market categories. The KuppingerCole Leadership Compass is an independent research report with in-depth ratings and reviews to help identity and security leaders choose solutions that can have the most comprehensive impact on their cybersecurity programs. “BeyondTrust’s ITDR solution excels in ..read more

Coveware by Veeam will bring industry-leading cyber-extortion incident response services and proactive enterprise preparedness to Veeam’s existing ransomware protection and recovery capabilities. Veeam Software acquired Coveware, a leading provider in cyber-extortion incident response. It brings best-in-class ransomware recovery and first responder capabilities to further strengthen Veeam’s radical resilience solutions for customers. Coveware by Veeam will continue to operate as usual, providing incident response services to victims of cyber extortion attacks as well as working proactively wit ..read more

Dave Russell, Vice President of Enterprise Strategy, Veeam, sees stronger demand for zero trust frameworks which help businesses prepare for the inevitable cyberattack. Zero trust has gained significant traction in the information security industry and is being widely adopted by enterprises worldwide – with the UK and US leading the charge. Organisations across Asia Pacific (APAC) are quick to follow, with seven out of ten businesses planning to adopt zero trust this year. In 2024, we will see increased scrutiny on organisations to ensure zero trust is adopted beyond a ‘tick-box’ approach. Spe ..read more