Announcements

Building & Maintaining an Effective Remote Access Strategy | August 2 Webinar | <REGISTER NOW>

Building & Maintaining Security at the Network Edge | July 28 Webinar | <REGISTER NOW>

How Ransomware Works - And What You Can Do to Stop It | July 14 Webinar | <REGISTER NOW>

Risk

Breaking news, news analysis, and expert commentary on cybersecurity risk, and the tools, technologies, and practices for assessing risk.

3 Cyber Threats Resulting From Today's Technology Choices to Hit Businesses by 2024

Companies need to consider the cost to disengage from the cloud along with proactive risk management that looks at governance issues resulting from heavy use of low- and no-code tools.

Companies need to consider the cost to disengage from the cloud along with proactive risk management that looks at governance issues resulting from heavy use of low- and no-code tools.

by Steve Durbin, CEO, Information Security Forum

API Security Losses Total Billions, But It's Complicated

A recent analysis of breaches involving application programming interfaces (APIs) arrives at some eye-popping damage figures, but which companies are most affected, and in what ways?

A recent analysis of breaches involving application programming interfaces (APIs) arrives at some eye-popping damage figures, but which companies are most affected, and in what ways?

by Robert Lemos, Contributing Writer, Dark Reading

Shifting the Cybersecurity Paradigm From Severity-Focused to Risk-Centric

Embrace cyber-risk modeling and ask security teams to pinpoint the risks that matter and prioritize remediation efforts.

Embrace cyber-risk modeling and ask security teams to pinpoint the risks that matter and prioritize remediation efforts.

by Ran Abramson, Threat Intelligence Analyst, Skybox Security

Facebook Business Pages Targeted via Chatbot in Data-Harvesting Campaign

The clever, interactive phishing campaign is a sign of increasingly complex social-engineering attacks, researchers warn.

The clever, interactive phishing campaign is a sign of increasingly complex social-engineering attacks, researchers warn.

by Tara Seals, Managing Editor, News, Dark Reading

80% of Legacy MSSP Users Planning MDR Upgrade

False positives and staff shortages are inspiring a massive managed detection and response (MDR) services migration, research finds.

False positives and staff shortages are inspiring a massive managed detection and response (MDR) services migration, research finds.

by Dark Reading Staff, Dark Reading

Neustar Security Services Launches Public UltraDNS Health Check Site

Open service generates free report detailing potential gaps in compliance, configuration, and security for a user’s multiple domain names.

Open service generates free report detailing potential gaps in compliance, configuration, and security for a user’s multiple domain names.

80% of Firms Suffered Identity-Related Breaches in Last 12 Months

With almost every business experiencing growth in human and machine identities, firms have made securing those identities a priority.

With almost every business experiencing growth in human and machine identities, firms have made securing those identities a priority.

by Robert Lemos, Contributing Writer, Dark Reading

Risk Disconnect in the Cloud

New Cloud Security Alliance (CSA) and Google Cloud study shows many enterprises struggle to measure and manage risk in their cloud workloads.

New Cloud Security Alliance (CSA) and Google Cloud study shows many enterprises struggle to measure and manage risk in their cloud workloads.

by Kelly Jackson Higgins, Editor-in-Chief, Dark Reading

7 Ways to Avoid Worst-Case Cyber Scenarios

In the wake of devastating attacks, here are some of the best techniques and policies a company can implement to protect its data.

In the wake of devastating attacks, here are some of the best techniques and policies a company can implement to protect its data.

by Sakshi Udavant, Freelance Writer

Why Financial Institutions Must Double Down on Open Source Investments

Open source is here to stay, and it's imperative that CIOs have a mature, open source engagement strategy, across consumption, contribution, and funding as a pillar of digital transformation.

Open source is here to stay, and it's imperative that CIOs have a mature, open source engagement strategy, across consumption, contribution, and funding as a pillar of digital transformation.

by Gabriele Columbro, Executive Director, FINOS

Name That Toon: Cuter Than a June Bug

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

by John Klossner, Cartoonist

Cybercriminals Capitalizing on Resurgence in Travel

Multiple cybercrime groups have been spotted selling stolen credentials and other sensitive personal information pilfered from travel-related websites.

Multiple cybercrime groups have been spotted selling stolen credentials and other sensitive personal information pilfered from travel-related websites.

by Nathan Eddy, Contributing Writer, Dark Reading

Incognia Introduces Location-Based Liveness Spoofing Detection Solution

Mobile apps that rely on facial recognition for identity proofing can now detect fraudulent attempts to fake liveness.

Mobile apps that rely on facial recognition for identity proofing can now detect fraudulent attempts to fake liveness.

Google: SBOMs Effective Only if They Map to Known Vulns

SBOMs should be connected with vulnerability databases to fulfill their promise of reducing risk, Google security team says.

SBOMs should be connected with vulnerability databases to fulfill their promise of reducing risk, Google security team says.

by Becky Bracken, Editor, Dark Reading

Understanding and Mitigating Single Sign-on Risk

SSO's one-to-many architecture is both a big advantage and a weakness.

SSO's one-to-many architecture is both a big advantage and a weakness.

by Javed Shah, Vice President of Product Management, 1Kosmos