John Fokker, principal engineer & head of cyber investigations at Trellix, joins the podcast to talk about attack trends on the front lines.
IT management company SolarWinds, more than a year and-a-half after it was discovered that popular software was compromised via a malicious update, has unveiled a new secure software development process in a move to make the company a model for enterprise software security. SolarWinds’ “Next-Generation Build System” includes both new software development practices and technology […]
A report by insurance broker Marsh and tech giant Microsoft looks at how cyber risk is viewed by various functions and leaders within organizations, specifically cybersecurity and IT, risk management and insurance, finance and executive leadership. While all functions have common interests around cyber risks, the report finds that they often act independently. All departments […]
The IT industry and the U.S. government have outlined a 10-step plan to ensure the security of open-source software and the IT supply chain after a series of supply chain attacks and open-source software vulnerabilities were discovered in recent years. The plan is designed to secure the production of open-source software, improve vulnerability discovery and […]
Cybersecurity services provider Mandiant has released its M-Trends 2022 report, based on data from the company’s investigations between October 2020 and the end of 2021, and it shows that while cyber defenses and techniques are improving, attackers are also continuing to adapt to new trends. Based on the company’s investigations, the report also outlines some […]
This article has been amended to reflect an updated statement on the incident from Okta. After screenshots claiming to stem from security breaches at IT giant Microsoft and identity and authentication provider Okta, both companies are investigating possible attacks from the Lapsus$ hacking group. In statements to various media outlets, the companies say they are […]
When alleged Russian hackers compromised the SolarWinds Orion platform to spy on U.S. agencies and other high-profile entities, the tech industry renewed its call for the adoption of software bills of materials (SBOM) — an inventory of components that make up the final product. Advocates say that will help give IT and cybersecurity professionals the […]
Just days into the new year and the cybersecurity community is already playing catch up thanks to the recent Log4j vulnerability which illuminated major setbacks in how organizations deal with its own software and open-source packages on which its relies on. In particular, organizations have been caught off guard in auditing its own systems, giving […]
CrowdStrike’s fourth Global Security Attitude Survey reveals 63% of organizations are losing trust in legacy vendors such as Microsoft; 96% of organizations that paid a ransom were hit with additional extortion fees SUNNYVALE, Calif.–(BUSINESS WIRE)–CrowdStrike, Inc. (Nasdaq: CRWD), a leader in cloud-delivered protection of endpoints, cloud workloads, identity and data, today announced the release of […]
If you were having doubts about the efficacy of a zero trust approach to cybersecurity, recently released research suggests that such a network architecture is expected to double the efficacy of cybersecurity products. The research, conducted by Osterman Research on behalf of cybersecurity firm Symmetry Systems, found from a survey of 125 IT and security […]
FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets
View all Guides
Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.
Enter Today!