Geek-Guy.com

Author: The Gurus

Synopsys Finds Significant Increase in Practices to Bolster Software Supply Chain Security

Analysing the software security practices of 130 organisations including Adobe, PayPal and Lenovo, Synopsys’s Building Security in Maturity Model (BSIMM) report has found a nearly 50% surge in activities to secure open source software components and integrate security into developer toolchains; indicating greater initiative to tackle software supply chain security over the last 12 months. […]

The post Synopsys Finds Significant Increase in Practices to Bolster Software Supply Chain Security appeared first on IT Security Guru.

Edinburgh’s Adarma partners with The Princes Trust to support inclusivity in cybersecurity

Adarma, the UK’s largest independent cyber threat management company, has today announced a new partnership with The Prince’s Trust to launch a ‘Get Started in Cybersecurity’ programme aimed at empowering individuals between the ages of 21 and 30 with cyber skills training and driving greater inclusivity within the industry. Adarma’s CEO, John Maynard, will join […]

The post Edinburgh’s Adarma partners with The Princes Trust to support inclusivity in cybersecurity appeared first on IT Security Guru.

Learn About Alert Logic’s New Intelligent Response Capabilities at International Cyber Expo

Alert Logic by HelpSystems launched general availability of its new intelligent response capabilities this year. The innovations, including simple mode and a mobile application, relieve IT and security departments of repetitive response tasks and the need for constant administration through human-guided and fully automated workflows. Seedrs, Europe’s leading online private investment platform, is among the first […]

The post Learn About Alert Logic’s New Intelligent Response Capabilities at International Cyber Expo appeared first on IT Security Guru.

Securing OT That Can’t Be Patched

As industrial organisations digitise their environments, this is exposing critical operational technology (OT) to security vulnerabilities, while presenting new windows of opportunity for cybercriminals. Since last year, there has been an 88% increase in OT vulnerabilities, which are used to attack critical infrastructure and expose vital systems to potentially devastating breaches.[i] With OT systems supporting […]

The post Securing OT That Can’t Be Patched appeared first on IT Security Guru.

Industry All-Stars Take Stage at International Cyber Expo’s Global Cyber Summit

International Cyber Expo today announced the speaker line-up for its annual Global Cyber Summit sponsored this year by Snyk, and hosted at Olympia London on the 27th and 28th of September 2022. Introduced by former CEO of NCSC, Professor Ciaran Martin CB, the Summit endeavours to be an educational platform for IT professionals, C-Level executives […]

The post Industry All-Stars Take Stage at International Cyber Expo’s Global Cyber Summit appeared first on IT Security Guru.

Searchlight Security Announce New Automated Reporting Function

Searchlight Security, the dark web intelligence company, has announced a new automated reporting function for their dark web monitoring solution DarkIQ. The new reporting function will help security teams and MSSPs communicate pre-attack intelligence to executives, quickly and efficiently. The DarkIQ platform is a powerful dark web monitoring solution that utilises the most comprehensive dark web […]

The post Searchlight Security Announce New Automated Reporting Function appeared first on IT Security Guru.

HR Emails Dupe Employees The Most – KnowBe4 research reveals

New research has revealed the top email subjects clicked on in phishing tests were those related or from Human Resources, according to the latest ‘most clicked phishing tests‘ conducted by KnowBe4. In fact, half of those that were clicked on had subject lines related to Human Resources, including vacation policy updates, dress code changes, and […]

The post HR Emails Dupe Employees The Most – KnowBe4 research reveals appeared first on IT Security Guru.

Almost a third of untrained users will click a phishing link – KnowBe4 research

New research has revealed that one in three untrained employees will click on a phishing link, according to the 2022 Phishing by Industry Benchmarking Report from KnowBe4. With ransomware payments averaging $580,000 in 2021 and business email compromise (BEC) losses topping $1.8 billion in 2020, a cyber attack can wreak havoc on an organisation. Yet, according […]

The post Almost a third of untrained users will click a phishing link – KnowBe4 research appeared first on IT Security Guru.

Outpost24 acquired by Vitruvian Partners

Outpost24 has announced it has been acquired by Vitruvian Partners to take the company into the next phase of growth. The new ownership structure will enable Outpost24 to invest in its people, processes, and industry-leading technology to further strengthen its leadership position in a large and growing market. Vitruvian has acquired a majority ownership position […]

The post Outpost24 acquired by Vitruvian Partners appeared first on IT Security Guru.

Launch of News-Style Programme Endeavours to Raise Awareness of Cybersecurity

The UK Cyber Security Council, International Cyber Expo and ITN Business will be co-creators of a unique news-style programme produced to raise awareness and understanding of cyber security. The Information Age has brought enormous economic and social progress to many parts of the world and has proved to be a powerful tool for connectivity, freedom […]

The post Launch of News-Style Programme Endeavours to Raise Awareness of Cybersecurity appeared first on IT Security Guru.

Over a Decade in Software Security: What Have We learned?

With over a decade experience in software security, what can Synopsys teach us? Managing Consultant Adam Brown presented this very subject at Infosecurity Europe 2022, with the help of Synopsys’s BSIMM metrics. The Building Security in Maturity Model (BSIMM) is an assessment done by Synopsys that helps firms analyse the state of their software security. […]

The post Over a Decade in Software Security: What Have We learned? appeared first on IT Security Guru.

European Cybersecurity Blogger Awards 2022 Winners Announced

Hosted by Eskenzi PR and sponsored by KnowBe4 and Qualys, the European Cybersecurity Blogger Awards has announced this year’s winners and runners-up. The awards returned as an in-person event on the first evening of Infosecurity Europe (21st of June 2022) at Tapa Tapa restaurant right next to ExCel, following a two-year virtual hiatus over the […]

The post European Cybersecurity Blogger Awards 2022 Winners Announced appeared first on IT Security Guru.

The Must-Attend Cybersecurity Event: International Cyber Expo

International Cyber Expo is where great cybersecurity minds come together to explore the issues of tomorrow’s interconnected world. Held at Olympia London on the 27th – 28th September 2022, International Cyber Expo endeavours to be the go-to-meeting place for industry collaboration, where everyone from vetted senior cybersecurity buyers, government officials and entrepreneurs, to software developers […]

The post The Must-Attend Cybersecurity Event: International Cyber Expo appeared first on IT Security Guru.

International Cyber Expo Invites Esteemed Advisory Council to Shape Event Agenda

International Cyber Expo has announced the members of this year’s event Advisory Council. Chaired by former CEO of the National Cyber Security Centre (NCSC), Professor Ciaran Martin, CB, the Advisory Council combines 30 of the cybersecurity’s most well-respected industry figures from government, private and academic sectors. The council is united by their shared passion and […]

The post International Cyber Expo Invites Esteemed Advisory Council to Shape Event Agenda appeared first on IT Security Guru.

Good News…Security Culture is Improving Around the World

A new industry report evaluating the level of security culture worldwide has found a positive improvement overall. The 2022 Security Culture Report by KnowBe4 looked at trends in security culture for the first time, analysing the ideas, customs and social behaviors of an organisation that influence their security. In particular, the report looked at the […]

The post Good News…Security Culture is Improving Around the World appeared first on IT Security Guru.

Research finds over 31,000 stolen credentials from the FTSE 100 on the Dark Web

Today, Outpost24 has released the results of its 2022 FTSE 100 Credential Theft Study outlining the number of breached credentials from the UK’s most profitable companies online and found up to 31,135 exposed user credentials belonging to FTSE 100 companies on the open, deep and dark web. In fact, 75% of these credentials were stolen […]

The post Research finds over 31,000 stolen credentials from the FTSE 100 on the Dark Web appeared first on IT Security Guru.

KB4-Con: This is How Nicole Perlroth Tells Us the World Ends

“We have never been closer to a cataclysmic cyber event,” warns Nicole Perlroth, New York Times’ cybersecurity journalist, at this year’s KB4-Con in Orlando, Florida. Perlroth begins her talk by painting a picture of today’s sombre reality, highlighting the threat of Russian cyberattacks on our critical infrastructure and the latest discovery of Pipedream – the […]

The post KB4-Con: This is How Nicole Perlroth Tells Us the World Ends appeared first on IT Security Guru.

KB4Con 2022 – The Latest in Hacking Techniques with the World’s Most Famous Hacker

KB4Con 2022 ended on a high point as it involved an individual many of the attendees had been excited to hear from – someone who is widely considered to have coined the term hacking. It was none other than computing security consultant, author, “one-time world-most wanted hacker” and Chief Hacking Officer at KnowBe4, Kevin Mitnick. […]

The post KB4Con 2022 – The Latest in Hacking Techniques with the World’s Most Famous Hacker appeared first on IT Security Guru.

Synopsys Acquires WhiteHat Security to Expand Application Security Software-as-a-Service Capabilities

Yesterday, Synopsys, Inc. announced that it has signed a definitive agreement to acquire WhiteHat Security, a leading provider of application security Software-as-a-Service (SaaS). The addition of WhiteHat Security will provide Synopsys with significant SaaS capabilities and market-segment-leading dynamic application security testing (DAST) technology to strengthen what is considered one of the industry’s broadest application security testing portfolio. […]

The post Synopsys Acquires WhiteHat Security to Expand Application Security Software-as-a-Service Capabilities appeared first on IT Security Guru.

Synopsys Named AppSec Testing Leader in the 2022 Gartner® Magic Quadrant™

Synopsys has been named by Gartner, Inc. as a Leader in the “Magic Quadrant for Application Security Testing” for the sixth consecutive year.1 In the report, Gartner evaluated 14 application security testing vendors based on their Completeness of Vision and Ability to Execute. Synopsys placed highest in Ability to Execute and Completeness of Vision for the […]

The post Synopsys Named AppSec Testing Leader in the 2022 Gartner® Magic Quadrant™ appeared first on IT Security Guru.

Learn Why Adaptive Shield Provides Ultimate SaaS Security Posture Management

Whether it’s Office 365, Salesforce, Slack, GitHub or Zoom, all SaaS apps include a host of security features designed to protect the business and its data. The job of ensuring that these apps’ security settings are properly configured falls on the security team. The challenge lies within how burdensome this responsibility is: Each app has […]

The post Learn Why Adaptive Shield Provides Ultimate SaaS Security Posture Management appeared first on IT Security Guru.

Synopsys’ OSSRA report reveals challenges with managing open source risk in software supply chains

Last week, Synopsys released its 2022 Open Source Security and Risk Analysis (OSSRA) report. The report, produced analysed over 2,400 audits of commercial and proprietary codebases from merger and acquisition transactions, performed by the Black Duck® Audit Services team. The report highlights trends in open source usage within commercial and proprietary applications and provides insights to help developers […]

The post Synopsys’ OSSRA report reveals challenges with managing open source risk in software supply chains appeared first on IT Security Guru.

Fraudsters stole £58m with RATs in 2021

2021 saw victims of Remote Access Tool (RAT)scams lost £58m in 2021, official UK police figures show. RAT scams involve scammers taking control of a victims device, typically in order to access bank accounts. Some 20,144 victims fell for this type of scam in 2021, averaging around £2800 stolen per incident. Typically, RAT attacks begin […]

The post Fraudsters stole £58m with RATs in 2021 appeared first on IT Security Guru.

Microsoft announces new Autopatch feature

Microsoft announced last week that it will make generally available a feature dubbed “Autopatch” included in Windows Enterprise E3 in July 2022. Lior Bela, senior product marketing manager at Microsoft, said in a post last week: “This service will keep Windows and Office software on enrolled endpoints up-to-date automatically, at no additional cost. The second […]

The post Microsoft announces new Autopatch feature appeared first on IT Security Guru.

Server-Side-Request-Forgery Enabled Administrative Account Takeover on FinTech Platform

Salt Labs has uncovered a Server-Side-Request Forgery on a major FinTech platform, enabling an administrative account takeover. Researchers identified API vulnerabilities allowing them to launch attacks where:  Attackers could gain administrative access to the banking platform Attackers could leak users’ personal data  Attackers could access users’ banking details and financial transactions Attackers could perform unauthorised […]

The post Server-Side-Request-Forgery Enabled Administrative Account Takeover on FinTech Platform appeared first on IT Security Guru.

Mobile banking overwhelmingly safer for UK consumers

Mobile banking is the safest way to bank for UK consumers, RiskOps platform for financial risk management Feedzai revealed in their Q2 2022 Financial Crime Report, based on the analysis of over 18 billion global banking transactions throughout 2021. According to the report, banking represented 88% of all banking transactions in the U.K. during this […]

The post Mobile banking overwhelmingly safer for UK consumers appeared first on IT Security Guru.

50% of security leaders consider quitting due to stress

A new study from Vectra AI has revealed that half of UK cybersecurity leaders consider leaving their jobs due to the pressure they face at work. The security vendor polled 200 security chiefs in the UK in order to better understand the emerging industry health crisis. The study revealed that two out of five security […]

The post 50% of security leaders consider quitting due to stress appeared first on IT Security Guru.

Website of Russian oil giant allegedly hacked

Gazprom Neft, the oil arm of Russian state gas company Gazprom, has allegedly suffered a hack on Wednesday bringing down its website. A statement allegedly from Gazprom CEO Alexie Miller was displayed on the website, appearing to criticise Russia’s invasion of Ukraine. Miller is a close friend of President Vladimir Putin. The website went down […]

The post Website of Russian oil giant allegedly hacked appeared first on IT Security Guru.

Webinar: Secure Your Cloud Environment from Evolving Threats

The IT Security Guru has teamed up with Synopsys, a recognised leader in application security, to bring you the webinar, ‘Secure Your Cloud Environment from Evolving Threats‘. As the migration to the cloud continues at an unabated pace, the threats in the cloud are also increasing proportionally and evolving constantly. Data breaches, misconfiguration risks, weak […]

The post Webinar: Secure Your Cloud Environment from Evolving Threats appeared first on IT Security Guru.

Nominations for 2022’s European Cybersecurity Blogger Awards NOW OPEN!

Now in its ninth successive year, the much-anticipated annual European Cyber Security Blogger Awards, sponsored by KnowBe4 and Qualys, is now open for nominations. The awards have always been committed to celebrating the cybersecurity industry’s most coveted bloggers, vloggers, podcasters and social media influencers. Previous award winners have included renowned blogging and podcast stars such […]

The post Nominations for 2022’s European Cybersecurity Blogger Awards NOW OPEN! appeared first on IT Security Guru.

Russia preparing to conduct cyberattacks, White House warns

The White House is urging U.S. organizations to shore up their cybersecurity defenses after new intelligence suggests that Russia is preparing to conduct cyberattacks in the near future, BleepingComputer reported this week. With the U.S. imposing strict sanctions against Russia and aiding Ukraine in the war, the White House is expecting the Kremlin to retaliate […]

The post Russia preparing to conduct cyberattacks, White House warns appeared first on IT Security Guru.

Strong Customer Authentication (SCA): what to expect

SCA is a new set of rules from the Financial Conduct Authority (FCA) to help protect customers from fraud when they are shopping online, UK Finance explains. With increasing amounts of purchases being made online, these new rules will help to ensure that customers are safe when shopping and their money is better protected. The changes […]

The post Strong Customer Authentication (SCA): what to expect appeared first on IT Security Guru.

RiskOps platform Feedzai grows +40% year-over-year

Today, RiskOps platform Feedzai announced that it ended its fiscal year with +40% year-over-year growth in exit annual recurring revenue (ARR). With a total of 24 tier one new logos across the globe, the company also recorded no churn on core customers. Additionally, extended contracts were signed with key clients like Citi Bank in North America, Lloyds […]

The post RiskOps platform Feedzai grows +40% year-over-year appeared first on IT Security Guru.

High rates of known, exploitable vulnerabilities still found in the wild, report reveals

This week, smart vulnerability management provider Edgescan has published the findings of its 2022 Vulnerability Statistics Report, which for the 7th year running offers a comprehensive view of the state of vulnerability management globally. The report reveals that organizations are still taking nearly two months to remediate critical risk vulnerabilities, with the average mean time […]

The post High rates of known, exploitable vulnerabilities still found in the wild, report reveals appeared first on IT Security Guru.

DomainTools Announces Availability of Iris Detect

DomainTools has announced the availability of DomainTools Iris Detect, an innovative new product designed to discover and monitor domain names spoofing brands, trademarks, or other domains with unprecedented speed, accuracy, and comprehensiveness. Building on the world’s largest databases of domain registration and Domain Name System (DNS) data developed by DomainTools and Farsight Security, the discovery engine underpinning Iris Detect […]

The post DomainTools Announces Availability of Iris Detect appeared first on IT Security Guru.

Ransomware gangs and supply chain vulnerabilities: Nozomi Networks Labs reports on the current threat landscape

While vulnerability disclosures increased 21% in the second half of 2021 and increasingly sophisticated criminal attacks made regular news, organizations are fighting back with targeted remediation efforts A new OT/IoT security trends report from Nozomi Networks Labs finds cyber threats have becoming a never-ending reality for critical business operations. In a review of the threat […]

The post Ransomware gangs and supply chain vulnerabilities: Nozomi Networks Labs reports on the current threat landscape appeared first on IT Security Guru.

Russia-Ukraine escalation of tensions: FBI calls for reports of uptick in cyber activit

The FBI is asking US businesses to report any uptick in Russian hacking threats — the latest effort to prepare for potential Russian cyberattacks on US organizations amid Russia’s troop buildup on Ukraine’s border, CNN reported this week. “Have you identified any efforts by known or suspected Russian [hacking groups] to test exploitation capabilities, develop new malware […]

The post Russia-Ukraine escalation of tensions: FBI calls for reports of uptick in cyber activit appeared first on IT Security Guru.

Edgescan partners with Manicode to revolutionise secure coding courses

Edgescan, the provider of the most comprehensive fullstack vulnerability management solution, today announces a partnership with Manicode Security, the secure coding education company. With a combination of lecture, security testing demonstration, and code review, Manicode classes are sure to entertain and educate app, web services, and mobile software developers and architects to the practices of […]

The post Edgescan partners with Manicode to revolutionise secure coding courses appeared first on IT Security Guru.

Andreas Deliandreadis announced as Kiteworks VP of Sales, EMEA

Kiteworks has announced the appointment of Andreas Deliandreadis as its new Vice President of Sales, EMEA. With more than 20 years in technology and cybersecurity sales and business development in EMEA markets, Deliandreadis is responsible for driving international revenue growth across Europe, the Middle East, and Africa (EMEA). “It is a great honour and privilege […]

The post Andreas Deliandreadis announced as Kiteworks VP of Sales, EMEA appeared first on IT Security Guru.