%term

Anubis and the Death of Data: A New Era of Ransomware Operations

Jul 30, 2025 By Emma Stevens In BitSight

Ransomware activity continues to increase, and Bitsight data illustrates the scale of this growth. In our State of the Underground 2025 report, Bitsight TRACE observed a nearly 25% rise in unique ransomware victims publicly listed on leak sites. Additionally, the number of leak sites operated by ransomware groups grew by 53%.

Read Post

BitSight

Read more about Anubis and the Death of Data: A New Era of Ransomware Operations

Why 'Vulnerability Management' Was Always the Wrong Name for the Job

Jul 30, 2025 By Scott Kuffer In Nucleus

Let’s get this out of the way: the term vulnerability management has always been misleading. It evokes the idea that we’re wrangling a tidy list of software flaws, checking boxes, patching holes, and keeping things humming. But anyone who’s worked in the trenches or tried to explain this chaos to an executive board knows the truth. What we call “vulnerability management” isn’t a single discipline, or even a well-contained function.

Read Post

Nucleus

Read more about Why 'Vulnerability Management' Was Always the Wrong Name for the Job

New Research: Why 9 in 10 Cybersecurity Leaders Say Their Job Is Harder Today

Jul 29, 2025 By Stephen Boyer In BitSight

In today’s environment—marked by accelerating threats like ransomware, increasingly complex supply chains, and the growing footprint of AI and IoT—managing cyber risk has never been more urgent or more difficult. Our latest research with Sapio Research, The State of Cyber Risk and Exposure 2025, draws on the insights of 1,000 cybersecurity and cyber risk leaders around the world to understand what they are focused on today and what will be keeping them up tomorrow.

Read Post

BitSight

Read more about New Research: Why 9 in 10 Cybersecurity Leaders Say Their Job Is Harder Today

Mind the Gap: Why UK Cyber Programs Struggle to Turn Visibility into Action

Jul 29, 2025 By Stephen Boyer In BitSight

Cybersecurity leaders in the UK are facing a stark reality: managing cyber risk is becoming significantly harder. Not only are threats growing in scale and complexity, but a lack of visibility into digital exposures—both internal and across the supply chain—is compounding the challenge.

Read Post

BitSight

Read more about Mind the Gap: Why UK Cyber Programs Struggle to Turn Visibility into Action

Kovrr's Cyber Risk Register Gets New Features for Smarter Management

Jul 29, 2025 By Kovrr In Kovrr

‍ ‍Risk managers have long used registers to keep track of and manage the threats their organizations face, and, as cyber risk emerged in the 21st century as one of the core market concerns, cybersecurity leaders, too, started to harness these tools to structure and prioritize their cyber-related exposure. However, while risk registers offer a starting point for this process, many have not evolved beyond their early design, remaining static qualitative inventories.

Read Post

Kovrr

Read more about Kovrr's Cyber Risk Register Gets New Features for Smarter Management

Risk Assessment in Gaming: How OSRS Bosses Like Kalphite Queen Teach Strategic Thinking

Jul 29, 2025 By SecuritySenses In SecuritySenses

In the world of Old School RuneScape (OSRS), few bosses demand as much strategic depth as the Kalphite Queen. Known for her brutal two-phase combat system and immunity to single-style attacks, she is a challenge not just for casual players but also for veterans. Interestingly, the skill set required to defeat her mirrors those necessary in modern cybersecurity: layered defenses, resource management, and contingency planning under pressure.

Read Post

SecuritySenses

Read more about Risk Assessment in Gaming: How OSRS Bosses Like Kalphite Queen Teach Strategic Thinking

Why Mid-Market Security Costs Are Broken

Jul 28, 2025 By Razorthorn Security In Razorthorn

Locked into expensive GRC tools? Mid-market security shouldn’t cost the earth.#grc.

View Video

Razorthorn

Read more about Why Mid-Market Security Costs Are Broken

ToxicPanda: The Android Banking Trojan Targeting Europe

Jul 28, 2025 By Pedro Falé In BitSight

ToxicPanda is a banking trojan designed to infiltrate your mobile device, stealing financial details by targeting banking & financial apps. The malware keeps evolving, with the developers behind it being quick to add new features, such as overlaying pin & pattern codes, overlaying credential inputs for specific banking apps, allowing cybercriminals to remotely take control of compromised bank accounts and initiate unauthorized money transfers.

Read Post

BitSight

Read more about ToxicPanda: The Android Banking Trojan Targeting Europe

How Can You Use the Dow Jones Chart to Understand Market Trends?

Jul 27, 2025 By SecuritySenses In SecuritySenses

Dow Jones' chart is an excellent graphical resource that can convert intricate market information into understandable trends and patterns. The market performance chart offers investors immediate responses to what the market has achieved over different periods and is therefore a key element of effective investment strategy. Possessing reading and interpreting skills of such charts can significantly help your ability to invest wisely and discover potential market opportunities.

Read Post

SecuritySenses

Read more about How Can You Use the Dow Jones Chart to Understand Market Trends?

Third-party risk is everyone's problem: What CISOs need to know now

Jul 26, 2025 By Tejas Ranade In TrustCloud

In this article The alarm wasn’t a breach. It was an invoice. A mid-sized enterprise onboarding a new analytics vendor found themselves tangled in a post-implementation scramble: customer data had been shared without encryption, the vendor’s security posture was based on trust alone, and legal had skipped the SLA review because “they’d worked with them before.” What followed wasn’t a data loss, but something quieter and more corrosive, an erosion of confidence.

Read Post