Nation-state attackers apparently backdoored widely used, open-source data compression software as part of a supply chain attack. Malicious code inserted into recent versions of XZ Utils was designed to facilitate full, remote access to an infected system.
By addressing challenges around vulnerability management and implementing a risk-based approach, organizations can proactively safeguard their systems, minimize potential vulnerabilities, and ensure a robust security posture in the face of evolving cyber threats.
Download this short ebook to learn:
Why...
The findings from a penetration test can help you identify risks and gaps in your security controls. Charles Gillman offers tips to maximize the value of your next pen test and, in the process, deliver better results.
More credit unions now offer their members mobile applications and banking services to meet the tremendous demand and usage - no easy task. Meanwhile, security teams have also had to rapidly evolve to an influx of cyberattacks as the instances of security breaches continue to rise rapidly.
But how do you know if...
In today’s world, cyberattacks are commonplace, and countless organizations have had to deal with the fallout of a breach. Luckily, there are many cybersecurity solutions that can help decrease risk, but how do you know if your organization’s security controls will be up to the task?
This is where penetration...
Real-world penetration and security assessments have
uncovered the most common risks to mainframe
security. What are they?
Download this infographic for a brief, yet detailed synopsis.
Aberdeen's analysis of more than 1,000 organizations using mainframes shows that they continue to have a positive, growth-oriented, and strategic position within the enterprise computing infrastructure.
Given their significant value, it comes as no surprise that mainframe security is identified as a top priority -...
The mainframe is a prime target for cybercriminals, while also playing a central role in the daily operations of most of the world’s largest corporations, including banking, finance, healthcare, insurance, and many other types of enterprises.
The mainframe is often underprotected due in part to the longstanding...
The Microsoft Vulnerabilities Report compiles every Microsoft security bulletin from the past 12 months, analyzes the trends, and includes viewpoints from security experts. This provides a consolidated view and analysis of Microsoft patch Tuesdays, providing a crucial barometer of the threat landscape for the...
In the era of digital-led growth, executives are looking to cybersecurity leaders for guidance in driving key business strategies. Yet, a communication gap persists between the worlds of business and security. Just four in ten security leaders are able to confidently answer the question, "How secure, or at risk, are...
Vulnerability assessment has been a security requirement for every major regulatory agency over the last 15 years. Yet, time and again, after-incident reports reveal that costly breaches, causing millions of dollars in damage, are a result of known vulnerabilities that went unpatched due to a lack of connection to...
Cybersecurity is a dynamic volatile environment, and security leaders must confront fast-paced business driven change and evolving threats. To do that, they must operationalize and automate the MITRE ATT&CK framework knowledge base of threats, tactics and techniques, as well as the skills and capabilities of their red...
RiskIQ's vulnerability landscape report offers a high-level view of critical vulnerabilities in 12 widely used remote access and perimeter devices. The findings show that the rapidly increasing adoption of these devices introduces a range of critical, rapidly proliferating vulnerabilities - of which nation-states are...
Every Tuesday, Microsoft releases fixes for all vulnerabilities affecting Microsoft products, and this report compiles these releases into a year-long overview, creating a holistic view of trends related to vulnerabilities and how many Microsoft vulnerabilities could be mitigated if admin rights were removed from...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing ffiec.bankinfosecurity.com, you agree to our use of cookies.