Security News

AeCyberSolutions announces ICS Cybersecurity Risk Screening, a new service to assist industrial organizations in gaining a high-level understanding of the worst-case risk to operations should their industrial control systems be compromised. Utilizing a consequence-based, initial cybersecurity risk screening methodology, the results expose the potential magnitude of cyber risk to operations, assists with the prioritization of detailed risk assessments, facilitates the grouping of assets into zones and conduits, and helps management allocate budgets and resources appropriately.

While 68% of U.S. consumers report that they are connected to more devices and digital activity since the start of the pandemic, roughly half have implemented additional levels of security protection. "As travel becomes an actual possibility for people once again, it's an opportunity to remember just how important maintaining your digital wellness and security is outside the home," said Judith Bitterli, SVP of McAfee Consumer Marketing.

HackerOne and SecurityScorecard announced an integrated solution that uses hacker-powered security signals and data as a leading indicator for evaluating corporate and supply chain cyber risk. By seamlessly integrating the HackerOne API into the SecurityScorecard platform, users will now be able to showcase their bug bounty and vulnerability disclosure efforts in their scorecards and gain visibility into how their suppliers and partners are deploying these programs within their own environments.

Risk Strategies is to roll out CyberCube's Broking Manager, the cyber risks analytics platform for insurance intermediaries. Founded in 1997, Risk Strategies is a leading specialty insurance broker and risk management consultancy.

With increasing dependence on third parties in today's interconnected world, vendor security risk assessments are more essential than ever. Failing to do them may result in hefty regulatory fines, legal fees, lost business and reputational damage.

The last 12 months has seen emerging types of extortion attempts on the part of ransomware operators. Some ransomware operators, such as the SunCrypt gang, are mounting follow-on denial-of-service attacks to put the screws to victims.

Cybersecurity failure is a "Clear and present danger" and critical global threat, yet responses from board directors have been fragmented, risks not fully understood, and collaboration between industries limited, according to a WEF report. The report reveals that boards of directors need to play a more active role in protecting their organization from cyber risks - and provides a solution to this fragmentation.

Verton goes on to mention something even more troubling, "Half of the respondents reported they have a lack of confidence in their ability to communicate and report the financial impacts of cyber risks, with a quarter saying they do not have a cyber risk quantification technology deployed at their company." Mark Tattersall, vice president of product management at LogicGate, in his blog The Business Case for Risk Quantification, does an excellent job of defining cyber risk quantification.

With the addition of Redscan and its extended detection and response enabled security operations center platform, Kroll expands its Kroll Responder capabilities to support a wider array of cloud and on-premise telemetry sources. Redscan will join Kroll under the leadership of Andrew Beckett, Managing Director and Head of the EMEA Cyber Risk practice, and Marc Brawner, Managing Director and Global Head of Managed Services.

Manufacturing is particularly vulnerable to attacks through these apps, with 70 percent of applications having at least one serious vulnerability open over the previous 12 months, researchers found. That's according to a report from app-security firm WhiteHat Security, "AppSec Stats Flash Volume 3," which outlines how the increased prevalence of applications that are exposed to the internet through web, mobile and API-based interfaces has increased the attack surface and thus the security risk for organizations and their supply chains across the board.