Infosecurity Magazine

In an era of escalating cyber threats and economic uncertainty, how can you maximize security with limited resources? Join us on September 10th at our Online Summit, where we'll be joined by cybersecurity luminaries to discuss how to: - Optimize security investments for maximum risk reduction - Enhance team capabilities - Align security initiatives with core business objectives - Develop a risk-based approach tailored to SME constraints Strategic resource allocation is paramount, our Online Summit will equip you with the knowledge to make informed decisions that protect your organization without overextending your budget. Register now for the September 10th Online Summit and invest in your organization's future security: https://bit.ly/3YmNijT

On September 11th, we'll be tackling one of the most pressing issues in cybersecurity at our Online Summit: developing a modern vulnerability management program that's truly aligned with business risk. Traditional approaches to vulnerability management are no longer sufficient as the sheer volume of vulnerabilities, coupled with the rapid pace of technological change, demands a more sophisticated strategy. This discussion at the Online Summit isn't just about patching holes in your defenses- it's about fundamentally rethinking how we approach risk in the digital age. We'll explore: - Why a one-size-fits-all approach to vulnerability management is failing organizations - How to prioritize vulnerabilities based on real #BusinessImpact, not just technical severity - Strategies for integrating #vulnerability #management into your broader risk management framework - The role of #automation and #AI in scaling your efforts without sacrificing accuracy Register today to gain insights that could reshape your entire security posture: https://bit.ly/3SjoaGR

Many small and medium businesses believe they're too insignificant for hackers to notice. This dangerous myth has left countless organizations exposed as in reality, cybercriminals often target smaller companies, viewing them as low-hanging fruit with potentially weaker defenses. The consequences can be devastating: data theft, encrypted customer information, and ransom demands in untraceable cryptocurrency are just the beginning. One Identity's article reinforces that every organization needs robust cybersecurity measures to protect against both external threats and insider risks: https://bit.ly/46gmDaf

In today's digital landscape, technology alone isn't enough to protect your organization. The real key? Your team. As cyber threats evolve at breakneck speed, CISOs face a dual challenge: staying ahead of attackers while building and maintaining a top-tier security team. The skills gap is widening, competition for talent is fierce, and burnout is a constant threat. On September 10th, industry leaders will gather for our Online Summit to tackle these pressing issues head-on. We'll explore innovative strategies for: - Attracting high-caliber security professionals in a competitive market - Developing and nurturing your existing talent pool - Creating a workplace culture that retains your best and brightest - Balancing automation with human expertise for maximum effectiveness Register for your free ticket here: https://bit.ly/4dcZTua

Day 2 of the Online Summit on September 11 offers panel debates, keynote presentations, and practical how-to sessions that provide critical insights into the future of cyber #defense and how to develop modern vulnerability #management programs tailored to business #risk and prioritization The summit will also address: ✔️Early identification of potential insider threats ✔️Strategies for creating environments that discourage such incidents ✔️The practical #application of generative #AI in security teams, focusing on safe deployment and maximizing impact on cybersecurity operations Register now: https://bit.ly/3LiXQsf

A recent Cloud Security Alliance survey revealed that over 70% of European organizations now prioritize SaaS cybersecurity, it also highlighted malicious applications as the top SaaS security threat in Europe for 2023, with 44% of surveyed organizations reporting such incidents. Adaptive Shield's latest article explores this trend further and explains the many gaps that still need to be addressed as well as the challenges posed by third-party connected apps and strategies to enhance SaaS Security Posture Management (SSPM). As threats evolve, staying informed is crucial. Read the full article to learn how to strengthen your organization's SaaS security: https://bit.ly/3xGxvS4

Over $1bn in Cryptocurrency Lost to Web3 Cyber Incidents in 2024 💸 According to CertiK, over $1.1bn worth of cryptocurrency has been lost from Web3 cybersecurity incidents in the first half of 2024. 📊 These losses occurred across 408 onchain security incidents over the six-month period, making the average cost to victims per incident $2.9m. The median loss was $230,784, highlighting the wide disparity between the losses suffered during individual attacks. Read the full story here: https://bit.ly/3Wgk0ls #cryptocurrency #cryptocurrencies #crypto #cryptotheft #web3 #blockchain #cyberattacks

The European Union Opens Applications for Cybersecurity and Digital Skills Funding The European Commission has opened applications for over €210m ($227.3m) in funding for cybersecurity and digital skills programs. The objectives include: ▪️ Supporting and enlarge national and cross border security operation centers (via the EU Cyber Solidarity Act) ▪️ Supporting the implementation of EU laws on cybersecurity and national cybersecurity strategies like the updated NIS2 Directive and the Cyber Resilience Act ▪️ Tackling Disinformation (via European Digital Media Observatories) 🔗 Read the full story here: https://bit.ly/4cw277M #EU #SOC #SOCs #CyberSolidarityAct #NIS #NIS2 #CyberResilienceAct #CRA #disinformation #EDMOs #DEP #DigitalEurope #cybersecurity

We're thrilled to announce the return of our Online Summit this September! Mark your calendars for September 10th as we kick off Day 1 with cutting-edge sessions led by top information security experts. A panel of security leaders will share innovative approaches for building and retaining effective cybersecurity teams in the current environment. We'll also address how #SMEs can best utilize limited resources during economic uncertainty, as well as covering the latest #cyberattack techniques, helping you stay current with the evolving threat landscape. Register now for this essential event for cybersecurity professionals: https://bit.ly/461VJTp

The cybersecurity landscape is evolving, and so are its professionals. Ameet Jugnauth, Vice President of the ISACA London Chapter, recently shared valuable insights with Infosecurity Magazine on this transformation and highlighted a key trend: the influx of professionals from non-technical backgrounds into cybersecurity and how this diversity is reshaping the industry's approach to protection. Watch the full interview here: https://bit.ly/3XPjrju

At Infosecurity Europe, Jake Humphrey and Damian Hughes from the High Performance Podcast shared invaluable insights gleaned from top achievers across various fields. Their message resonates strongly in the high-stakes world of cybersecurity: embrace failure in high-pressure environments as a catalyst for growth Humphrey and Hughes emphasized that by reframing failures as learning opportunities, we can drive personal and professional development, and uncover innovative solutions to complex security challenges For a dose of inspiration and to apply these high-performance principles to your cybersecurity career, watch the full interview here: https://bit.ly/3XNX4uU

In today's hyper-connected world, the external attack surface is expanding faster than ever. With countless devices, networks, and cloud access points, cybersecurity professionals face an unprecedented challenge Join us on July 11th for an eye-opening webinar with Intel 471 to discover: - How cyber threat actors are eyeing your digital ecosystem - Strategies to uncover and protect exposed assets - Effective risk evaluation and mitigation techniques Register here: https://bit.ly/3xRBwCY

At Infosecurity Europe, we had an insightful conversation with Dr. Emma Philpott, CEO of The IASME Consortium, about the critical role of cyber certifications, the ways in which certifications support compliance and strengthen cyber defenses, as well as the tangible benefits they have for organizations. Watch the full interview here: https://bit.ly/3RWqAuF

The European Union recognized the need to bolster the operational resilience of financial institutions, acknowledging that a significant cyberattack could potentially undermine and overwhelm vulnerable financial entities, the EU created legislation to compel those in the financial sector to reduce their cyber risk. This includes EU-based banks, credit institutions, crowdfunding platforms, and crypto-asset service providers. The Digital Operational Resilience Act (DORA) is already in effect, but financial organizations have until January 17, 2025, to comply. Organizations looking to avoid regulatory scrutiny should consider implementing a SaaS Security Posture Management (SSPM) solution to secure their SaaS stack. For a detailed exploration of how DORA impacts EU financial institutions and strategies for compliance, read the full article by Adaptive Shield: https://bit.ly/4bufynt

At Infosecurity Europe, Purvi Kay, Head of Cyber Security Governance, Risk and Compliance at BAE Systems, addressed two critical topics. She emphasized the importance of courageously delivering unfavorable news to present a comprehensive picture of cybersecurity challenges and their potential solutions. Additionally, Kay passionately advocated for promoting neurodiversity in the cybersecurity field, highlighting the need to remove barriers to entry for neurodivergent individuals and create an environment where they can thrive in their roles. Watch the full interview here:https://bit.ly/4bpbR2j

Fake Law Firms Con Victims of Crypto Scams According to the FBI, victims of cryptocurrency scams have lost nearly $10m over the past year to fraudsters claiming to be lawyers who can help them recover their losses. The law enforcement agency has issued a new Public Service Announcement (PSA) urging victims to be on the lookout for predatorial #scammers. Read the full story here: https://bit.ly/3RNBbba #FBI #cryptoscam #crypto #cryptocurrencies #scams

During an interview at Infosecurity Europe, Richard Meeus, Akamai's Director of Security Technology & Strategy, shared worrying insights about cybersecurity trends, revealing that the EMEA region is facing the most rapid increase in DDoS attacks globally. Meeus also addressed geopolitical factors as potential drivers behind this surge in attacks, linking current events to the cybersecurity situation across regions. Watch the full interview here: https://bit.ly/3KxHM5J

Research by the British Chambers of Commerce shows less than 30% of firms expect a fully in-person workforce over the next 5 years. Some have adopted Bring Your Own Device (BYOD) policies, allowing employees to access company data on personal devices. While BYOD can provide cost savings and productivity gains, it presents significant security risks as personal devices often lack proper protection like antivirus, firewalls, and encryption found on corporate devices. Read our article by Microsoft to discover why we should carefully consider the security risks of BYOD in enterprise environments:https://bit.ly/3XzogNS

At Infosecurity Europe, WithSecure's Chief Research Officer Mikko Hypponen sounded the alarm on "deep scams" as a menacing AI threat, joining the ranks of deepfakes and AI-driven zero-day exploits. He also forecasted a shift in cyber threats, but only when criminals can wield AI tools on the fly and in real-time operations. Watch the full interview here: https://bit.ly/3zrc5c3

The volume of web applications used by businesses continuously grew in recent years, making these apps a tempting target for cyber threat actors. It was estimated that over 2 billion web apps worldwide were at risk of cyber-attack. Unfortunately, protecting constantly changing web applications across an organization proved a significant challenge for security teams, and it was often impossible to know where to start in mitigating these risks. In our latest webinar with Purplemet, a panel of expert speakers discussed: • The latest attack trends and techniques used by threat actors to exploit web applications • The security challenges faced by security teams in remediating these threats • How to take a proactive approach to web application security by leveraging fast, actionable insights on vulnerabilities and other risks in these apps Watch now: https://bit.ly/3VVe3tW