Security News

ThreatConnect released ThreatConnect Risk Quantifier 5.0, continuing its innovation in the emerging field of cyber risk quantification. ThreatConnect Risk Quantifier enables the identification of the risks that matter most to the organization by quantifying them based on potential financial and operational impact, unifying security and the business to a common goal.

The industry has been dealing with a skills gap for years now, but the silver lining in all of this is that for individuals looking to change careers or reskill, there is a lot of opportunity in cybersecurity. The global shortage of cybersecurity professionals exceeds 3.12 million - according to a study conducted by2 - which means the global cybersecurity workforce must now grow at a staggering rate each year just to meet the growing demand for skilled talent.

Cyber Risk Aware announces a new partnership with one of the UK's largest cyber security solutions providers, Blue Cube Security. Cyber Risk Aware and Blue Cube Security have joined forces on a mission to tackle the increasing cyber threat to businesses and organisations in the UK. Over the last year, 98% of security professionals in the UK have reported an increase in cyber-attacks, with 96% revealing more sophisticated methods being used in these attacks.

A CyberGRX report reveals trends and challenges organizations of all sizes face in combating third-party cyber risk today. Twenty percent of an organization's third parties are high risk.

While consumers are aware of increased risks and scams via the internet, they still plan to do more shopping online - and earlier - this holiday season, McAfee reveals. While more than 124 million consumers shopped in-store during the 2019 Black Friday to Cyber Monday holiday weekend, the survey indicates consumers have shifted direction due to global events this year, opening their risk to online threats as they live, work, play, and buy all through their devices.

Mastercard announced Cyber Secure, an AI-powered suite of tools that allows banks to assess cyber risk across their ecosystem and prevent potential breaches. Acquiring banks can help merchants understand their own cyber risk, preventing hundreds of millions of dollars in potential fraud.

50 geographies were assessed, including the European Union, on the present cyber risk literacy of its population, and the nature of related education and training available to promote and enable future cyber risk literacy. Specifically, the Index measures five key drivers of cyber risk literacy and education: the public's motivation to practice good cybersecurity hygiene; government policies to improve cyber literacy; how well cyber risks are addressed by education systems; how well businesses are raising their employees cyber skills, and the degree to which digital access and skills are shared broadly within the population.

The author starts off by explaining vulnerability management basics, the importance of knowing your network and the process of collecting and analyzing data. He explains the importance of a vulnerability scanner and why it is essential to configure and deploy it correctly, since it gives valuable infromation to successfully complete a vulnerabilty management process.

Third-party cyber risk budgets and other key findings 29% say they have no way of knowing if cyber risk emerges in a third-party vendor. "The research clearly indicated the reasons behind this high breach frequency: only 23% are monitoring all suppliers, meaning 77% have limited visibility and almost one-third only re-assess their vendors' cyber risk position six-monthly or annually. That means in the intervening period they are effectively flying blind to risks that could emerge at any moment in the prevailing cyber threat environment."

Axio announced the appointment of Eric Cardwell as the company's Director of Cyber Risk Engineering. Mr. Cardwell will be responsible for addressing cyber risk requirements for industry clients, identifying government and trade association contracts, and driving innovation in the advancement of security and financial controls across the energy and utilities sector.