SynSaber Security Challenges for ICS, OT

SynSaber Report Brings More Context to ICS Security

An analysis of three years of vulnerabilities found in industrial control systems (ICS) published by SynSaber, a provider of an ICS monitoring platform, found that while there may be no patches available, many affected systems are no longer being supported by vendors. In addition, the report found a little more ... Read More
Security Boulevard
GPT OpenSSF AI ML Darktrace Concentric supply chain Palo Alto AI partnership ai

6clicks Taps GPT-3 to Automate Writing of GRC Controls

6clicks today announced it has integrated its namesake governance, risk and compliance management (GRC) platform with generative AI to make it simpler to create policies. The 6clicks platform is based on an artificial intelligence (AI) engine it developed with the GPT-3 platform created by OpenAI. Anthony Stevens, CEO of 6clicks, ... Read More
Security Boulevard
Splunk DLL sideloading ransomware Iran cybersecurity attack Security

Splunk: Cybercriminals Use These Types of TTPs

A report published by Splunk that analyzed three years of data showed a marked increase in the number of cyberattacks that employ four specific types of techniques. Based on analysis of data collected from 2020 to 2022, the report found a steady increase in the number of cyberattacks using a ... Read More
Security Boulevard
Fortinet Mimecast training

Fortinet Adds Services to Help Close Cybersecurity Skills Gap

Fortinet this week rolled out additional security operations center (SOC) augmentation services and expanded the training programs it provides via the Fortinet Training Institute. Karin Shopen, vice president of cybersecurity solutions and services for Fortinet, said the goal is to make it simpler for organizations to rely on external services ... Read More
Security Boulevard
application cyberwarfare firewall

AI, Processor Advances Will Improve Application Security

Applications may soon become more secure as code written by artificial intelligence (AI) platforms finds its way onto next-generation secure processors. Matt Jarvis, director of developer relations for Snyk, told attendees at the CloudNative SecurityCon North America conference today that AI platforms used to write code will not use the ... Read More
Security Boulevard
GPT OpenSSF AI ML Darktrace Concentric supply chain Palo Alto AI partnership ai

OpenSSF Head Delivers AI Warning for Application Security

The overall state of application security is likely to worsen if organizations fail to take note of advances in artificial intelligence (AI). Brian Behlendorf, general manager for the Open Source Security Foundation (OpenSSF) this week warned attendees of the CloudNative Security North America conference that organizations need to assume it ... Read More
Security Boulevard
Cowbell Coalition cyberinsurance claim cyberinsurance contractor

Coalition Forecasts CVE Disclosure Spike in 2023

Coalition, a provider of cyberinsurance, today published a report that predicted a 13% increase in the average number of vulnerabilities disclosed per month in 2023. The report estimated more than 1,900 additional Common Vulnerabilities and Exposures (CVEs) per month will be disclosed in 2023, including 270 high-severity and 155 critical-severity ... Read More
Security Boulevard
Chainguard supply chain Early in the Kill Chain

Chainguard Unveils Memory-Safe Linux Distribution

Chainguard this week made available a memory-safe distribution of Linux, dubbed Wolfi, that promises to eliminate the root cause of the bulk of known software vulnerabilities. In addition, Chainguard has partnered with the Internet Security Research Group (ISRG) to create a Rustls TLS library for Wolfi available as the default ... Read More
Security Boulevard
Skyhawk SASE security cloud security visibility PwC Survey Finds C-Level Execs Now View Cybersecurity as Biggest Risk

Skyhawk Security Adds Runtime Protection to Cloud Security Portfolio

Skyhawk Security this week added a runtime protection capability to its integrated cloud security portfolio. Skyhawk Security CEO Chen Burshan said the Synthesis Security Platform brings a cloud threat detection and response (CDR) capability to the cloud security posture management (CSPM) platform that Skyhawk previously made available. Skyhawk Security is ... Read More
Security Boulevard
LastPass WithSecure language Expel BEC Delivering Email Post-Data Breach

WithSecure Experiments Highlight Language Model Threat

A report published today by WithSecure (formerly known as F-Secure Business) showed how generative pre-trained transformer language models such as GPT-3 can use machine learning to generate text capable of driving phishing and business email compromise (BEC) campaigns at unprecedented levels of scale. While language models are typically trained using ... Read More
Security Boulevard