searchcompliance.techtarget.comSecurity Information, News and Tips from TechTarget

Security Search the TechTarget Network Login Register Explore the Network TechTarget Network Networking CIO Enterprise Desktop Cloud Computing Computer Weekly Security Analytics & Automation Application & Platform Security Cloud Security Compliance Data Security & Privacy More Topics IAM Network Security Operations & Management Risk Management Security Careers & Certifications Threat Detection & Response Threats & Vulnerabilities Other Content News Features Tips Webinars 2023 IT Salary Survey Results More Answers Conference Guides Definitions Opinions Podcasts Quizzes Tech Accelerators Tutorials Videos Sponsored Communities Follow: New & Notable Get Started Guide to writing cloud security policies News US officials optimistic on AI but warn of risks, abuse Federal government leaders at RSA Conference 2024 touted the benefits of AI pilot programs but also outlined how a variety of threat actors are currently abusing the technology. News Dell ’security incident’ might affect millions Dell notified customers that a company portal connected to customer data exposed orders, names and addresses, while reports indicate the data is now up for sale on the dark web. News ’Secure by design’ makes waves at RSA Conference 2024 Cybersecurity vendors and public sector organizations heavily promoted the secure by design approach, particularly for generative AI tools and projects. News National Security Agency warns against paying ransoms Rob Joyce and David Luber, former and current directors of cybersecurity at the NSA, discuss how the ransomware attack on Change Healthcare exemplified the cons of paying ransoms. Trending Topics Data Security & Privacy News Dell ’security incident’ might affect millions Dell notified customers that a company portal connected to customer data exposed orders, names and addresses, while reports indicate the data is now up for sale on the dark web. Threats & Vulnerabilities Problem Solve How to detect deepfakes manually and using AI Deepfakes rely on AI to generate realistic but counterfeit content. A variety of automated tools and manual hints can help organizations pinpoint deepfake videos and images. IAM Manage How to configure sudo privilege and access control settings Learn how to use the sudo command for access control configurations, from granting full administrative privileges to delegating roles. Analytics & Automation News US officials optimistic on AI but warn of risks, abuse Federal government leaders at RSA Conference 2024 touted the benefits of AI pilot programs but also outlined how a variety of threat actors are currently abusing the technology. Network Security News Change Healthcare breached via Citrix portal with no MFA UnitedHealth Group CEO Andrew Witty’s opening statement for Wednesday’s congressional hearing shed more light on the ransomware attack against Change Healthcare. Operations & Management News Experts highlight progress, challenges for election security Infosec professionals at RSA Conference 2024 discuss digital and physical security challenges for election cycles across the globe in a post-COVID-19 landscape. Topics Covered Application and platform security Careers and certifications Cloud security Compliance Data security and privacy Identity and access management Network security Risk management Security analytics and automation Security operations and management Threat detection and response Threats and vulnerabilities Featured Authors Rob Wright Senior News Director May 10, 2024 US officials optimistic on AI but warn of risks, abuse Alexander Culafi Senior News Writer May 09, 2024 ’Secure by design’ makes waves at RSA Conference 2024 Arielle Waldman News Writer May 08, 2024 National Security Agency warns against paying ransoms Dave Shackleford Voodoo Security May 06, 2024 SSPM vs. CSPM: What’s the difference? Kyle Johnson Technology Editor Apr 18, 2024 3 Keycloak authorization strategies to secure app access Michael Cobb CISSP-ISSAP Apr 18, 2024 Stateful vs. stateless firewalls: Understanding the differences Find Solutions For Your Project Evaluate SSPM vs. CSPM: What’s the difference? Posture management in the cloud is key, but evaluating different tools, such as SaaS security posture management and cloud security posture management platforms, can be confusing. AWS to protect its cloud using CrowdStrike security products Security updates from Google Cloud Next ’24 center on GenAI RSAC 2024: Real-world cybersecurity uses for GenAI View All Evaluate Problem Solve How to detect deepfakes manually and using AI Deepfakes rely on AI to generate realistic but counterfeit content. A variety of automated tools and manual hints can help organizations pinpoint deepfake videos and images. Top 11 cloud security challenges and how to combat them How to conduct security patch validation and verification Key software patch testing best practices View All Problem Solve Manage VM security in cloud computing explained Cloud computing allows an organization to reduce its risks by having to secure fewer resources. The tradeoff is that cloud creates more attack vectors. Don’t let VMs trip you up. How to configure sudo privilege and access control settings What is a cloud security engineer, and how do I become one? How remote work is changing patch management View All Manage Pro+ Security Downloads View All E-Handbook | July 2021 Mitigating risk-based vulnerability management challenges Download E-Handbook | June 2021 Security observability tools step up threat detection, response Download E-Handbook | January 2021 SolarWinds supply chain attack explained: Need-to-know info Download E-Handbook | November 2020 Cyber insurance 101: Timely guidance on an essential tool Download E-Zine | November 2020 AI cybersecurity raises analytics’ accuracy, usability Download Information Security Basics Get Started Guide to writing cloud security policies What are the necessary components of a cloud security policy, and why should an organization go to the trouble to create one? Download a template to get the process started. Get Started Patch Tuesday Patch Tuesday is the unofficial name of Microsoft’s monthly scheduled release of security fixes for the Windows operating system (OS) and other Microsoft software. Get Started Pegasus malware Pegasus malware is spyware that can hack any iOS or Android device and steal a variety of data from the infected device, including text messages, emails, key logs, audio and information from installed applications, such as Facebook or Instagram. View All Get Started Multimedia Videos, Podcasts, Photo Stories and Infographics View all Multimedia Videos Podcasts Photo Stories News Risk & Repeat: Cyber Safety Review Board takes Microsoft to task Risk & Repeat: Alphv/BlackCat’s chaotic exit (scam) News Risk & Repeat: Microsoft’s Midnight Blizzard mess Risk & Repeat: LockBit resurfaces after takedown News Risk & Repeat: CISA hacked via Ivanti vulnerabilities Sections from across Security News View All Security analytics and automation US officials optimistic on AI but warn of risks, abuse Federal government leaders at RSA Conference 2024 touted the benefits of AI pilot programs but also outlined how a variety of threat actors are currently abusing the technology. Data security and privacy Dell ’security incident’ might affect millions Dell notified customers that a company portal connected to customer data exposed orders, names and addresses, while reports indicate the data is now up for sale on the dark web. Application and platform security ’Secure by design’ makes waves at RSA Conference 2024 Cybersecurity vendors and public sector organizations heavily promoted the secure by design approach, particularly for generative AI tools and projects. Security Definitions Patch Tuesday Pegasus malware risk-based patch management (RBPM) risk-based vulnerability management (RBVM) cloud infrastructure entitlement management (CIEM) What is security information and event management (SIEM)? What is role-based...