"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."

The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.

“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”

Updates to the Juniper Advanced Threat Prevention Appliances leverage third-party firewalls and security data sources.

NeuVector, which also offers next-generation container firewall, says the additions will stop vulnerable images from deploying into Kubernetes production environments.

The new threat feeds map directly to the various attack tactics outlined by MITRE.


The partnership will deliver essential security controls across endpoint, network, and cloud environments.

SonicWall’s Capture Labs threat researchers recorded 28 times more ransomware attacks on Black Friday compared to last year.

The #1 security key, featuring multi-protocol security.

A root cause of the breach is currently unknown, but Marriott indicated that the intruders encrypted the information before exfiltrating the data. 

SolarWinds announced a broad refresh to its network management portfolio, as well as key enhancements to the Orion Platform. 

AWS Security Hub is designed to provide users with a comprehensive view of their high-priority security alerts and compliance status.

Organisations today need to maintain an identity platform that enables both friction-free and highly-secure authentication.

The report explores changes in the threat landscape over the past year, uncovering trends and how they are expected to impact cybersecurity in 2019.

PingOne for Customers is built for the developer community and provides API-based identity services for customer-facing applications.

The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.

“Data privacy regulations such as the GDPR require you to put better safeguards in place to protect customer data, and to prove you’ve done it."

Security needs to move away from the traditional approach of chasing after arbitrary forms of malware.

“Recently our corporate CFO, Meng Wanzhou, was provisionally detained by the Canadian authorities on behalf of the United States of America."

Google+ APIs will be shut down within the next 90 days, and the consumer platform will be disabled in April 2019 instead of August 2019 as originally planned.

“This could have been an extremely disruptive event to online commerce," comments DigiCert CEO John Merrill. 

Some forms of encryption technology can make identifying and blocking some threats more difficult.

The JASK ASOC platform automates alert investigations, supposedly freeing the SOC analyst to do what machines can’t. 

“Organisations need to look for modern ERP systems that are specifically designed with GDPR in mind."

Symantec Industrial Control System Protection Neural helps defend against USB-borne cyber attacks on operational technology.

The integration enables Trustwave to harness the synergies of Singtel’s global cybersecurity business, revenue, capabilities across the Americas, Europe and Asia Pacific.

Extensive APIs enable security teams to more efficiently view, enrich, and contextualise real-time intelligence collected at the endpoint to keep systems secure.

DanaBot is a Trojan written in the Delphi programming language that includes banking site web injections and stealer functions.

Security teams increasingly need end-to-end SIEM solutions with native options for host- and network-level monitoring.

Threat actors will also use different methods of attack and toolkits to look for vulnerabilities in any internet infrastructure. They are looking to steal any credentials that could allow for privilege escalation.  

The report provides a detailed overview of the enterprise information archiving market and evaluates vendors based on completeness of vision and ability to execute.

The solution aims to provide teams deploying microservices applications with an automated way to integrate enterprise-grade security with comprehensive application visibility and analytics.

The vendor landscape for SIEM is evolving, with recent entrants bringing technologies optimised for analytics use cases.

One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.

Popular email security programmes may fail to detect as much as 25% of all emails with malicious or dangerous attachments, a study from Mimecast says.

When employees do their holiday shopping on company resources, security teams have a challenge with the surge in browsing and online transactions.

Google Cloud and Palo Alto Networks have extended their partnership to include more security features and customer support for all major public clouds.

Flexibility and granularity of security controls is good but can still represent a risk for new cloud adopters that don’t recognise some of the configuration pitfalls.

Over time, the basic zero trust model has evolved and matured into what Forrester calls the Zero Trust eXtended (ZTX) Ecosystem.

Quora’s 100 million users are the latest targets in a major data breach, but at least the company has moved quickly to contain it.

One Identity was recognised in the Gartner Magic Quadrant for Privileged Access Management for completeness of vision and ability to execute.

The classic firewall lacked the ability to distinguish between different kinds of web traffic.