Trends
Get expert insights on the latest developments in cybersecurity to stay ahead of the curve.
-
MITRE ATT&CK Evaluations 2023: Palo Alto, Microsoft, CrowdStrike & Cybereason Lead the Way
MITRE Engenuity has released its 2023 ATT&CK evaluations, examining how top cybersecurity vendors detect and prevent sophisticated cyberthreats. This year, the evaluations focused on the techniques of Turla, a Russia-based threat group. Turla uses a command-and-control network, as well as open source tools, which are more difficult to protect and easier to exploit because anyone… Read more
-
Cisco to Acquire Splunk for $28 Billion
In a blockbuster deal that could shake up the cybersecurity market, Cisco announced this morning that it will acquire Splunk for $28 billion. If the deal clears regulatory hurdles, it would give Cisco a big position in the market for centralized cybersecurity management solutions like security information and event management (SIEM) and security orchestration, automation… Read more
-
Cybersecurity Mergers Flatline – Here’s Why That Won’t Last
Much like the rest of technology, merger and acquisition (M&A) activity for cybersecurity companies has been in a slump this year. There are a number of reasons why that won’t last, but still, the decline has been noteworthy. For the first seven months of this year, there were a mere 34 startups that got acquired,… Read more
-
Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws
Older unpatched vulnerabilities make hackers’ work easier: They can keep running tried-and-true exploits and just look for new victims. Unfortunately, the theme for this week is returning vulnerabilities, or ones that haven’t been excised quite yet. Some exploits and weaknesses have had fixes for months or longer, yet they keep showing up in the news,… Read more
-
CNAP Platforms: The All-in-One Solution for Cloud Security
Combining cloud workload protection and cloud security posture management functions, CNAPPs are making cloud security much easier to manage. Read more
-
SandboxAQ Open Sources Cryptography Management Tool for Post-Quantum Era
SandboxAQ today introduced an open-source cryptography management framework built for the post-quantum era. The AI and quantum spin-out from Alphabet uses the Sandwich framework for its SandboxAQ Security Suite, currently used by several U.S. government agencies, global banks, telcos, and tech companies. The framework is designed to simplify cryptography management and give developers greater observability… Read more
-
New SEC Rules Require Breach Disclosure within Four Days
The U.S. Securities and Exchange Commission this week announced new rules mandating the disclosure of cybersecurity incidents as well as ongoing risk management, strategy, and governance. The rules, which will become effective 30 days after publication, require public companies to disclose any cybersecurity incident they determine to be material within four business days, detailing its… Read more
-
Funding for Cybersecurity Startups Plunges – But Some Still Get Deals
Cybersecurity startups had been pretty resilient despite the downturn in venture capital funding, but that run has ended in recent months. Venture investments in cybersecurity startups in the second quarter plunged 63% to $1.6 billion, according to data from Crunchbase. Funding was down 40% sequentially from the first quarter, and was the lowest since the… Read more
-
The U.S. Is Falling Behind on Encryption Standards – And That’s a Global Problem
NIST is falling behind on FIPS 140-3 certifications and post-quantum cryptography, and the results could be disastrous for cybersecurity. Read more
