Risk

A recent analysis of breaches involving application programming interfaces (APIs) arrives at some eye-popping damage figures, but which companies are most affected, and in what ways?

Embrace cyber-risk modeling and ask security teams to pinpoint the risks that matter and prioritize remediation efforts.

The clever, interactive phishing campaign is a sign of increasingly complex social-engineering attacks, researchers warn.

False positives and staff shortages are inspiring a massive managed detection and response (MDR) services migration, research finds.

Open service generates free report detailing potential gaps in compliance, configuration, and security for a user’s multiple domain names.

With almost every business experiencing growth in human and machine identities, firms have made securing those identities a priority.

New Cloud Security Alliance (CSA) and Google Cloud study shows many enterprises struggle to measure and manage risk in their cloud workloads.

In the wake of devastating attacks, here are some of the best techniques and policies a company can implement to protect its data.

Open source is here to stay, and it's imperative that CIOs have a mature, open source engagement strategy, across consumption, contribution, and funding as a pillar of digital transformation.

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

Multiple cybercrime groups have been spotted selling stolen credentials and other sensitive personal information pilfered from travel-related websites.

Mobile apps that rely on facial recognition for identity proofing can now detect fraudulent attempts to fake liveness.

SBOMs should be connected with vulnerability databases to fulfill their promise of reducing risk, Google security team says.

SSO's one-to-many architecture is both a big advantage and a weakness.

Employee email compromise potentially exposed patients' medical information, including lab test results and dates of services.