Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The security of the software supply chain is rapidly becoming a paramount concern for organizations — and for good reason. With the increasing number of published Common Vulnerabilities and Exposures (CVEs), developers face the challenge of delivering software faster than ever before. However, in their quest for speed, many dev and security teams have resorted to fragmented security solutions, inadvertently leaving critical gaps in coverage and compromising their competitive advantage.

We've always been at the forefront of delivering enterprise-grade security services, and today, we're improving our game even further. We're delighted to launch our newest WatchGuard MDR (Detection and Response) solution. WatchGuard MDR is a managed security service designed exclusively for our partners, enabling them to address the rising demand for 24/7 managed detection and response to sophisticated threats.

Veracode has recently introduced a new feature called Dynamic Analysis MFA, which provides automated support for multi-factor authentication (MFA) setups during dynamic analysis scans. This eliminates the need for you to disable or manually support your MFA configurations when conducting security testing.

Online shopping has allowed buyers to find bargains and conveniently purchase from retailers all over the world. However, cybercriminals take advantage of the anonymity of online shopping to scam online buyers. If you get scammed while shopping online, you need to contact your credit card issuer, freeze your credit, change any compromised passwords, contact the online marketplace and report the scam to the FTC.

A recent news article from Bleeping Computer called out an incident involving Japanese game developer Ateam, in which a misconfiguration in Google Drive led to the potential exposure of sensitive information for nearly one million individuals over a period of six years and eight months. Such incidents highlight the critical importance of securing cloud services to prevent data breaches.

Edmonds School District (ESD) is in south Snohomish County, Washington. The district involves 35 schools, including Brier, Edmonds, Lynnwood, and Woodway institutions. The faculty of these schools serve over 20,000 grade-school students, with nearly 1,300 teachers leading diverse learning environments. Almost a year ago, ESD noticed suspicious activity within their network; after an investigation, officials determined the cause was a cybersecurity event.

Zero Trust is a cybersecurity approach that’s vital in today’s interconnected world, where security breaches are a persistent threat. The principle is straightforward: trust no one and verify everything. Instead of assuming a secure perimeter, Zero Trust requires continuous authentication and validation for anyone trying to access network resources, whether they’re inside or outside the organisation.

The simple fact(s) in cyber and information security is that there is NO right and wrong way to go about things. Yes there are frameworks / standards and guidance, which are good practices. BUT the right way for YOUR organisation may be totally different to that of another organisation. Yes you may have the same goal of strong security, but what does that ultimately mean?

To celebrate the end of 2023 and the beginning of 2024, we are happy to announce a collection of product updates to more robustly and securely protect your company’s data. Read below to discover what’s new!

The term “cloud” in the domain of IT infrastructure and computing conjures images of a rather abstract concept for storing data – most don’t know how it works and where it is located. A common misconception is that it lacks a physical location. This, however, is not true – cloud ecosystems operate from servers, and these servers always have a physical location.