Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

839 million attacks ranging from DDoS and bot to Zero-day and OWASP Top 10 attacks were recorded on the AppTrana WAF on just 1400 web and API applications. So, implementing WAF as a first layer of defence is a no-brainer. That said, dozens of established start-ups operate in this space, and choosing a WAF provider can be daunting. It is essential to consider various factors to ensure the selected WAF meets your organization’s unique needs and requirements.

The NewYork-Presbyterian Hospital is a leading academic hospital that delivers virtual and in-person care to a wide range of patients. The hospital offers urgent care services, as well as primary and specialized care. This facility recently discovered a data breach that exposed the information of more than 54,000 patients overall.

Between January and March of this year, US government documents started being leaked online. These documents contain some valuable information, and the Department of Defense has been trying to determine the culprits behind the leaked documents.

ARMO is launching a new Kubernetes vulnerability relevancy and prioritization feature based on eBPF technology to help Kubernetes and DevSecOps practitioners focus on fixing the vulnerabilities that impact their security posture most.

We are excited to announce that KnowBe4 has been named a leader in the Spring 2023 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) for the PhishER platform for the eigth consecutive quarter! Based on 177 G2 customer reviews, KnowBe4’s PhishER platform is the top ranked SOAR software. PhishER has the highest market presence score among SOAR products with a score of 97 out of 100, with 98% of users rating it 4 or 5 stars.

National Westminster Bank, the London-based bank familiarly known as NatWest, has warned its customers to be on the alert for emails pretending to be from NatWest, but which in fact are from scammers trying to bubble the unwary out of their savings.

U.S. officials confirmed last week that a member of the military photographed and uploaded more than 50 classified documents to a Discord server and other social media sites, again reminding us of the danger insider threats can present to any organization. According to the Associated Press, a member of the U.S. Air National Guard was arrested last week in Massachusetts in connection with the leak.

We’ve used passwords to protect our private data for a very long time. But if you don’t use a password manager, it can be difficult to keep them memorized – especially if you’re using strong, unique passwords for each account.

Every day the world discovers (and creates) new problems in the field of information security. Fresh bugs randomly pop out of nowhere, someone develops brand-new malware, and insiders continue to leak confidential information leading to the closure of the businesses - so how do companies cope with all the chaos? And what to do if there is no feasible way to create a security department within the organization? Is it worth it or wise to outsource such a critical life-saving function? Maybe.

Protecting data and protecting business continuity are both similar and different. In a data driven world, your mission as a security analyst is to prevent threat actors from gaining unauthorized access to sensitive data and systems. Simultaneously, you also need to investigate incidents rapidly, ensuring that critical services experience as little downtime as possible.