Security News

Mandiant Cyber Risk Management Services are designed to address critical business and security requirements to equip executives, boards of directors, and security and cross-functional leaders with risk-based data and advice to build effective and balanced security programs. "When developing a corporate security strategy and program, it is imperative to identify the areas and assets with the highest business value and those with the most significant threats and vulnerabilities. Mandiant Cyber Risk Management Services are designed to balance business and technical considerations and provide executives with risk-based decision support," said Jurgen Kutscher, Executive Vice President, Service Delivery, Mandiant Consulting.

Arctic Wolf announced it has joined the Microsoft Intelligent Security Association, a collation of security partners with a shared mission to provide better security by integrating solutions across the digital landscape. By joining MISA, the Arctic Wolf Platform will further extend its integration and support of Microsoft Defender for Endpoint, enabling faster threat detection and response for its customers.

AeCyberSolutions announces ICS Cybersecurity Risk Screening, a new service to assist industrial organizations in gaining a high-level understanding of the worst-case risk to operations should their industrial control systems be compromised. Utilizing a consequence-based, initial cybersecurity risk screening methodology, the results expose the potential magnitude of cyber risk to operations, assists with the prioritization of detailed risk assessments, facilitates the grouping of assets into zones and conduits, and helps management allocate budgets and resources appropriately.

While 68% of U.S. consumers report that they are connected to more devices and digital activity since the start of the pandemic, roughly half have implemented additional levels of security protection. "As travel becomes an actual possibility for people once again, it's an opportunity to remember just how important maintaining your digital wellness and security is outside the home," said Judith Bitterli, SVP of McAfee Consumer Marketing.

HackerOne and SecurityScorecard announced an integrated solution that uses hacker-powered security signals and data as a leading indicator for evaluating corporate and supply chain cyber risk. By seamlessly integrating the HackerOne API into the SecurityScorecard platform, users will now be able to showcase their bug bounty and vulnerability disclosure efforts in their scorecards and gain visibility into how their suppliers and partners are deploying these programs within their own environments.

Risk Strategies is to roll out CyberCube's Broking Manager, the cyber risks analytics platform for insurance intermediaries. Founded in 1997, Risk Strategies is a leading specialty insurance broker and risk management consultancy.

With increasing dependence on third parties in today's interconnected world, vendor security risk assessments are more essential than ever. Failing to do them may result in hefty regulatory fines, legal fees, lost business and reputational damage.

The last 12 months has seen emerging types of extortion attempts on the part of ransomware operators. Some ransomware operators, such as the SunCrypt gang, are mounting follow-on denial-of-service attacks to put the screws to victims.

Cybersecurity failure is a "Clear and present danger" and critical global threat, yet responses from board directors have been fragmented, risks not fully understood, and collaboration between industries limited, according to a WEF report. The report reveals that boards of directors need to play a more active role in protecting their organization from cyber risks - and provides a solution to this fragmentation.

Verton goes on to mention something even more troubling, "Half of the respondents reported they have a lack of confidence in their ability to communicate and report the financial impacts of cyber risks, with a quarter saying they do not have a cyber risk quantification technology deployed at their company." Mark Tattersall, vice president of product management at LogicGate, in his blog The Business Case for Risk Quantification, does an excellent job of defining cyber risk quantification.