Security News

What is cyber risk quantification, and why is it important?
2021-03-30 20:52

Verton goes on to mention something even more troubling, "Half of the respondents reported they have a lack of confidence in their ability to communicate and report the financial impacts of cyber risks, with a quarter saying they do not have a cyber risk quantification technology deployed at their company." Mark Tattersall, vice president of product management at LogicGate, in his blog The Business Case for Risk Quantification, does an excellent job of defining cyber risk quantification.

Kroll acquires Redscan to expand cyber risk offering
2021-03-26 00:10

With the addition of Redscan and its extended detection and response enabled security operations center platform, Kroll expands its Kroll Responder capabilities to support a wider array of cloud and on-premise telemetry sources. Redscan will join Kroll under the leadership of Andrew Beckett, Managing Director and Head of the EMEA Cyber Risk practice, and Marc Brawner, Managing Director and Global Head of Managed Services.

Manufacturing’s Cloud Migration Opens Door to Major Cyber-Risk
2021-03-25 17:11

Manufacturing is particularly vulnerable to attacks through these apps, with 70 percent of applications having at least one serious vulnerability open over the previous 12 months, researchers found. That's according to a report from app-security firm WhiteHat Security, "AppSec Stats Flash Volume 3," which outlines how the increased prevalence of applications that are exposed to the internet through web, mobile and API-based interfaces has increased the attack surface and thus the security risk for organizations and their supply chains across the board.

Why is financial cyber risk quantification important?
2021-03-17 06:00

In its 10th annual Risk Barometer, Allianz found that cyber incidents ranked third in a list of the most important global business risks for the upcoming year, coming in second behind risks stemming from the pandemic itself. A recent survey of 100 senior security professionals found that 70% of respondents have received pressure to produce cyber risk quantification for their business.

Report Highlights Cyber Risks to US Election Systems
2021-02-12 13:19

Election systems in the U.S. are vulnerable to cyber intrusions similar to the one that hit federal agencies and numerous businesses last year and remain a potential target for foreign hacking, according to a report released Wednesday. The report by the Center for Internet Security, a nonprofit that partners with the federal government on election security initiatives, focuses on how hardware and software components can provide potential entryways for hackers.

Working at a safe distance, safely: Remote work at industrial sites brings extra cyber risk
2021-02-11 22:46

Giving remote access directly to the engineering workstation for the control system increases cybersecurity risk for an industrial company. There will still be cases where you may want to grant remote access to an engineer to deal with an emergency situation and then revoke the access once the work is done, but if you can limit this access and enable staff to complete their routine work while reducing direct access to the control system, you can minimize the risk of cybersecurity events that could cause safety and environmental incidents.

Panaseer and PwC to offer continuous and accurate measurement, monitoring, and reporting of cyber risk
2021-02-11 02:00

Panaseer announces that it has joined forces with PwC UK to offer continuous Cyber Risk Monitoring. This will pave the way for continuous and accurate measurement, monitoring, and reporting of cyber risk.

RiskRecon and CyberGRX provide orgs with a contextual view of their third-party cyber risk
2021-02-08 00:15

RiskRecon and CyberGRX announced a strategic partnership to provide organizations with a complete, contextual view of their third-party cyber risk posture. New research from RiskRecon and Cyentia Institute reveals that while 79% of firms have a third-party risk management program, only 14% are confident that vendors actually trust third parties' security matches responses from their questionnaires.

DirectDefense unveils Enterprise Security Program Review to address unnoticed cyber risks
2021-01-29 01:00

DirectDefense announced the launch of the Enterprise Security Program Review, a joint security offering with IronNet, Unlimited Technology and Exero. The ESPR will assess, test, and review an organization's existing security controls, analyze risk exposure, and help implement individually-tailored security solutions.

Diligent launches Cyber Risk Scorecard powered by SecurityScorecard
2021-01-21 01:45

Diligent announced the launch of its new Cyber Risk Scorecard powered by SecurityScorecard, the global leader in cybersecurity ratings. Diligent's Cyber Risk Scorecard equips board directors and executives with a digital tool set that enables greater transparency and the ability to measure risk, build resilience, and increase organizational safety and security.