전체 공격 표면에서 마침내 '알 수 없는 사항' 찾기
CISO는 보안 팀이 탐지하지 못하여 보호하지 못한 자산, 취약성, 구성 오류 및 시스템 약점 같은 '알 수 없는' 사항을 두려워합니다. 이러한 사각지대는 공격자에게는 절호의 기회이며 조직에는 주요 보안 위험이 됩니다.
사이버 보안 스냅샷: 바로 지금 중요한 6가지 사항
Topics that are top of mind for the week ending Sept. 16 | How cybersecurity excellence boosts business | CISOs on a vendor-consolidation campaign | A quick check on converged OT/IT cybersecurity | Guides to help developers beef up on security | And much more!
AA22-257A: Cybersecurity Agencies Issue Joint Advisory on Iranian Islamic Revolutionary Guard Corps-Affiliated Attacks
Several global cybersecurity agencies publish a joint advisory detailing efforts by Iranian-government sponsored threat actors exploiting vulnerabilities to enable ransomware attacks.
CVE-2022-40139: Vulnerability in Trend Micro Apex One Exploited in the Wild
Trend Micro has patched six vulnerabilities in its Apex One on-prem and software-as-a-service products, one of which has been exploited in the wild.
IDSA Introduces CIEM Best Practices
The Identity Defined Security Alliance recently announced their list of best practices for cloud infrastructure entitlement management.
Microsoft’s September 2022 Patch Tuesday Addresses 62 CVEs (CVE-2022-37969)
Microsoft addresses 62 CVEs in its September 2022 Patch Tuesday release, including five critical flaws.
Tuning Network Assessments for Performance and Resource Usage
Using the correct tool for the job and optimizing scanner placement will have a large impact on scan efficiency with Nessus, Tenable.io and Tenable.sc.
사이버 보안 스냅샷: 바로 지금 중요한 6가지 사항
Topics that are top of mind for the week ending Sept. 9 | Software supply chain security in the spotlight. Guidance for evaluating IoT security tools. Increasing diversity in cybersecurity. Another look at the major cloud security threats. And much more!
IT/OT Convergence: Now Is the Time to Act
Presidential advisory committee provides recommendations to improve critical infrastructure security.
96% Could Have Prevented Their Identity Breach – IDSA
Identity-related breaches are on the rise but security and IAM pros are not idle. Learn from this survey how they are staving off the next attack.
완전한 IT 가시성을 위해서는 비즈니스 위험 컨텍스트가 필요
모든 IT 자산에 대해 완벽하게 지속적으로 업데이트하여 자세하게 이해하는 것은 보안 팀의 성배입니다. 이를 달성하려면 먼저 '가시성'이 무엇이며 이것이 단순히 무슨 자산이 있는지 식별하고 어떤 도전 과제를 해결해야 하는지 파악하는 것 이상이라는 것을 이해해야 합니다.
사이버 보안 스냅샷: 바로 지금 중요한 6가지 사항
Topics that are top of mind for the week ending Sept. 2 | Shift-left efforts falling short. What CISOs earn and what stresses them out. The quantum computing risk for critical infrastructure. Securing machine learning systems. And much more!
영업 팀에게 문의