Tag: Log4j
CISO Corner: Cyber-Pro Swindle; New Faces of Risk; Cyber Boosts Valuation
Welcome to CISO Corner, Dark Reading's weekly digest of articles tailored specifically to security operations readers and security leaders. Every week, we offer articles...
Breaking News
Software & Security: How to Move Supply Chain Security Up the Agenda
COMMENTARYAfter Log4j, software supply chains are under more scrutiny for security issues. The US government mandated software bills of materials (SBOMs) for federal software...
Lazarus Group Is Still Juicing Log4Shell, Using RATs Written in ‘D’
North Korean hackers are still exploiting Log4Shell around the world. And lately, they're using that access to attack organizations with one of three new...
What We Can Learn From Major Cloud Cyberattacks
Several notorious cloud hacks between 2020 and 2022 were the result of simple technical errors that could have been thwarted by faster detection and...
Risk Ledger Secures £6.25M to Prevent Cyberattacks on the Supply Chains of Nation’s Largest Enterprises
PRESS RELEASE7th November 2023 — London, UK — Organisations have been laser focussed on protecting their own networks, applications, physical premises and people against cyber...
Curl Bug Hype Fizzles After Patching Reveal
For days now, the cybersecurity community has waited anxiously for the big reveal about two security flaws that, according to curl founder Daniel Stenberg,...
Could Cybersecurity Breaches Become Harmless in the Future?
According to IBM's latest "Cost of a Data Breach Report," the cost of a breach has risen to nearly $4.5 million per incident on...
Will Government Secure Open Source or Muck It Up?
Can open source software be regulated? Should it be regulated? And if so, will it lead to enhanced security? In mid-September, two government's approaches...
Can open-source software be secure?
Secure Coding, Business Security Or, is mass public meddling just opening the door for problems? And how does open-source software compare to proprietary...
Qualys Announces First-Party Software Risk Management Solution
FOSTER CITY, Calif., Aug. 3, 2023 /PRNewswire/ -- Qualys, Inc. (NASDAQ: QLYS), a provider of disruptive cloud-based IT, security and compliance solutions, today announced it is opening up its...
Despite Post-Log4J Security Gains, Developers Can Still Improve
Developers are increasingly adopting security testing as part of the development pipeline, but companies still have room for improvement, with a minority of companies...
Exposure Management Looks to Attack Paths, Identity to Better Measure Risk
As companies struggle with finding and closing off the paths that attackers could use to infiltrate and compromise their IT environments, security providers are...
Startup Spotlight: Endor Labs Focuses on Reachability
As the Log4j vulnerability demonstrated in a visceral way, open source code is inextricable from modern software. Developers incorporate components, snippets, and libraries from...