Security News

Google rolls out Titan keys to Europe, Japan. Plus: Group Policy bug is a feature, not a flaw, says Microsoft
2020-02-24 06:08

Bug disclosure service HackerOne was in the rare position of publicizing one of its own security holes this week after a researcher discovered a flaw that was exposing some user email addresses. Tenable says Microsoft won't fix Group Policy bug.

Policy vs Technology
2020-02-21 11:54

Policy makers can't create policy around a piece of technology without understanding how it is used - how all of it's used. Technology and policy both use concepts of trust, but differently.

CrowdStrike Co-Founder and CTO Steps Down to Launch Nonprofit Policy Accelerator
2020-02-20 12:17

Endpoint security firm CrowdStrike announced on Wednesday that Michael Sentonas has been appointed chief technology officer after Dmitri Alperovitch decided to leave the company to launch a non-profit policy accelerator. Alperovitch, one of the founders of CrowdStrike, has been acting as CTO since the company's launch in 2011.

Insider data breach survey finds directors most likely to break company policy
2020-02-19 15:10

In the second global insider data breach survey, IT leaders found that 78% think employees have put data at risk accidentally in the past 12 months and 75% believe employees put data at risk intentionally. At the same time, 58% of managers said employee reporting is more likely than any breach detection system to alert them to an insider data breach.

Tufin SecureCloud: Providing unified security policy management for the hybrid cloud
2020-02-13 02:30

Tufin, a company pioneering a policy-centric approach to security and IT operations, announced the availability of Tufin SecureCloud, a security policy automation service for enterprises needing to gain visibility and control of the security posture of their cloud-native and hybrid cloud environments. SecureCloud, built from the ground up and optimized for the cloud, is a major new addition to the Tufin Orchestration Suite - establishing Tufin as the first and only vendor to unify security policy management across on-premises, cloud-native, and hybrid clouds.

Tips for a Smarter Approach to Password Policy
2020-02-10 15:01

As the technology and tools to leverage stolen credentials advance, a more thoughtful approach to your organization's password policy is a highly effective way to reduce risk by better protecting your customers, network assets, and employees. Defenders can augment traditional password policy best practices with the ability to take action based on indicators observed within the cybercrime underground.

Discrepancies between data sanitization policy creation and execution put data at risk
2020-02-07 05:30

Although 96 percent of the 1,850 senior leaders within large organizations have a data sanitization policy in place, 31 percent have yet to communicate it across the business, according to a Blancco survey. Although 68 percent of respondents felt that ownership of data sanitization policies is clearly communicated within their organization, when asked who was responsible for their implementation, 18 percent of enterprises stated the DPO, 18 percent the Head of Operations, 17 percent the Head of IT Operations and 11 percent the CISO. This lack of clear ownership could suggest enterprises consider data sanitization to be a "'checkmark"' exercise that must be done to satisfy compliance or operational requirements and that they are not taking data risks seriously.

Top 10 tech policy trends to watch in 2020
2020-01-30 20:40

Given the tech industry's poor track record of protecting users data and controlling its environmental impact, regulators around the globe are stepping into the void. The policy issues run the gamut from spectrum sharing to data and privacy to the greening of the telecom industry as a whole.

Top 10 policy trends to watch for globally in 2020
2020-01-27 04:30

The 10 top trends that will drive the most significant technological upheavals this year have been identified by Access Partnership. "Shifts in tech policy will disrupt life for everyone. While some governments try to leverage the benefits of 5G, artificial intelligence, and IoT, others find reasons simply to confront Big Tech ranging from protectionism to climate urgency."

Sonos’s tone-deaf legacy product policy angers customers
2020-01-23 10:51

Stopping software updates for legacy kit is nothing new, but it's the way the company has done it that has Sonos customers' hackles up. Sonos points out that it supports software updates on products for at least five years after it stops selling them.