Discovering MLflow Framework Zero-day Vulnerability | Machine Language Model Security | Contrast Security
Most Machine Language (ML) tools — including the development frameworks used for managing ML life cycles — are relatively new, which means they could well have security vulnerabilities. ...
Don’t Waste Budget on Application Security (AppSec) Testing Tools like DAST, SAST, and SCA that Aren’t Working | Contrast Security
From the “How does this make sense?” department comes this finding: The more they get breached, the more likely it is that firms plan to throw money at Application Security (AppSec). … ...
Cybersecurity Insights with Contrast CISO David Lindner | 11/24
Insight #1 It's the holiday season, and malicious actors are primed to take advantage of all the amazing deals you may be trying to purchase over the next few weeks. Listen to ...
MTTR Cyber Security Metrics | How to Reduce MTTR with Runtime Security | Contrast Security
Let’s say your mean time to respond/remediate (MTTR) security issues is 60 days. ...
Cybersecurity Insights with Contrast CISO David Lindner | 11/17
Insight #1 Organizations are continuing to pay more for top cybersecurity talent, and with the Securities and Exchange’s (SEC’s) most recent lawsuit against SolarWinds and its former Chief Information Security Officer, those ...
Find True Positives, vs False Positives, with Runtime Security | Contrast Security
Alert: Somebody’s running reconnaissance on your network. Alarm: You’ve got a malware infection. ...
Security Observability: Intelligent security assessment improves visibility into critical applications and APIs
Contrast Security’s 2023Cyber Bank Heists report showed that hackers and cybercrime cartels from Russia, North Korea and China have mastered the growing complexity of attack surfaces and are hiding behind that complexity ...
Cybersecurity Insights with Contrast CISO David Lindner | 11/10
Insight #1 The U.S. has launched the Shields Ready campaign: a campaign “about making resilience during incidents a reality by taking action before incidents occur.” I love this focus on critical national ...
Four things CISOs should do NOW to protect from being scapegoated
On Oct. 30, the Securities and Exchange Commission (SEC) charged SolarWinds and its former Chief Information Security Officer — Timothy G. Brown — in a 68-page complaint alleging that the company and ...
