Security Boulevard

via the comic humor & dry wit of Randall Munroe, creator of XKCD

Permalink

The post Randall Munroe’s XKCD ‘Maslow’s Pyramid’ appeared first on Security Boulevard.

This month's SBOM-a-Rama Fall 2024 event, hosted by the Cybersecurity and Infrastructure Security Agency (CISA), marked a milestone in the ongoing evolution of software bill of materials (SBOM) adoption.

The post SBOM-a-Rama Fall 2024: Sonatype’s top 5 takeaways appeared first on Security Boulevard.

Microsoft outlined steps it's taken over the past year under its Security Future Initiative, which was launched late last year in the wake of a high-profile attack by Chinese attackers and only months before another serious breach by a Russia-link threat group.

The post Microsoft Pushes Governance, Sheds Unused Apps in Security Push appeared first on Security Boulevard.

I’m excited to be back at KubeCrash this fall! Mark your calendars to join us on Wednesday, October 9th starting at 10 AM ET, as KubeCrash pulls together a day packed with actionable insights and practical takeaways on platform engineering in 2024.

The post Join KubeCrash Fall 2024 for Platform Engineering the Cloud Native Way appeared first on Security Boulevard.

SaaS is an integral part of the IT infrastructure for companies of all sizes nowadays. This model lets employees access useful software tools via the cloud, and it powers everything from customer relationship management and financial tracking to team collaboration and data analytics. But with SaaS solutions integrating deeper into every department, the doors to sensitive information are multiplying—SaaS data ... Read More

The post SaaS Data Breaches on the Rise appeared first on Nuspire.

The post SaaS Data Breaches on the Rise appeared first on Security Boulevard.

The IAM platform developed by PureID will allow ColorTokens to further extend the reach and scope of the company’s zero-trust IT portfolio.

The post ColorTokens Acquires PureID to Advance Zero-Trust IT appeared first on Security Boulevard.

Explained: What is Noise-Down Automation and how does it benefit security teams?

The post What Is Noise-Down Automation? appeared first on D3 Security.

The post What Is Noise-Down Automation? appeared first on Security Boulevard.

M-24-15 builds on the FedRAMP Authorization Act of 2022 and introduces new requirements that push federal agencies to modernize their approach to cloud security.

The post Qmulos at the Forefront of OSCAL:  Empowering Federal Agencies to Achieve OMB M-24-15 with Modern Compliance Technology first appeared on Qmulos.

The post Qmulos at the Forefront of OSCAL:  Empowering Federal Agencies to Achieve OMB M-24-15 with Modern Compliance Technology appeared first on Security Boulevard.

Last week, the CMMC Final Rule (known as CFR 32) was released from OIRA, meaning no more changes can be made.  Since CFR 32 is considered a Major Rule, it will next undergo a Congressional review of up to 60 days, after which it becomes law. Any inaction by Congress results in it becoming law. […]

The post The CMMC Rule is Final!  appeared first on PreVeil.

The post The CMMC Rule is Final!  appeared first on Security Boulevard.

Authors/Presenters:Lin Jiang, Feiyu Zhang, Jiang Ming

Our sincere thanks to USENIX, and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems Design and Implementation (NSDI '24) content, placing the organizations enduring commitment to Open Access front and center. Originating from the conference’s events situated at the Hyatt Regency Santa Clara; and via the organizations YouTube channel.

Permalink

The post USENIX NSDI ’24 – Towards Intelligent Automobile Cockpit via A New Container Architecture appeared first on Security Boulevard.

Unlock the secrets to revolutionizing your cybersecurity strategy with insights from Bill McInnis of Nucleus Security. Journey through Bill’s extensive career, spanning over two decades and multiple sectors including email security and threat intelligence, and learn how he spearheaded groundbreaking changes since joining Nucleus in 2021. Discover the innovative model Nucleus employs to shift vulnerability… Continue reading Podcast Episode 19: Interview with Bill McInnis from Nucleus Security

The post Podcast Episode 19: Interview with Bill McInnis from Nucleus Security appeared first on Assura, Inc..

The post Podcast Episode 19: Interview with Bill McInnis from Nucleus Security appeared first on Security Boulevard.

via the comic humor & dry wit of Randall Munroe, creator of XKCD

Permalink

The post Randall Munroe’s XKCD ‘Tectonic Surfing’ appeared first on Security Boulevard.

Discover how NIST password guidelines evolved to prioritize longer, user-friendly passwords, reducing resets and boosting security for 2024.

The post 2024 NIST Password Guidelines: Enhancing Security Practices appeared first on Scytale.

The post 2024 NIST Password Guidelines: Enhancing Security Practices appeared first on Security Boulevard.

Authors/Presenters:Zhanghao Wu, Wei-Lin Chiang, Ziming Mao, Zongheng Yang, Eric Friedman, Scott Shenker, Ion Stoica

Awarded Outstanding Paper!

Our sincere thanks to USENIX, and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems Design and Implementation (NSDI '24) content, placing the organizations enduring commitment to Open Access front and center. Originating from the conference’s events situated at the Hyatt Regency Santa Clara; and via the organizations YouTube channel.

Permalink

The post USENIX NSDI ’24 – Can’t Be Late: Optimizing Spot Instance Savings under Deadlines appeared first on Security Boulevard.

Lattice-based cryptography is a quantum-resistant encryption method that uses complex mathematical lattices, offering security against quantum computing attacks. Unlike traditional encryption methods such as RSA and ECC, which are vulnerable to quantum computers, lattice-based cryptography remains secure due to the computational difficulty of solving lattice problems. It is expected to play a central role in post-quantum cryptography, with applications across government, military, and commercial sectors, ensuring secure communications and data protection in the quantum era.

The post Exploring the foundations of lattice-based cryptography appeared first on Security Boulevard.

Is your B2B SaaS freemium model truly driving growth? Discover how to fine-tune your freemium strategy to attract the right users, nurture them towards conversion, and achieve long-term success.

The post Freemium Model Optimization for B2B SaaS: A Strategic Growth Approach appeared first on Security Boulevard.

As organizations grapple with increasingly sophisticated cyber threats, many are rethinking their approach to managing security. Recently, Nuspire’s leadership team—including CEO Lewie Dunsworth, Chief Security Officer J.R. Cunningham, Chief Technology Officer Michael Wilson, and Product Manager Marcy Elder—gathered for a webinar to share their insights on what’s next for cybersecurity management.  Reimagining Cybersecurity Management  Five years ago, when Lewie joined ... Read More

The post A Fresh Approach to Cybersecurity: Unifying Intelligence, Technology and Human Expertise appeared first on Nuspire.

The post A Fresh Approach to Cybersecurity: Unifying Intelligence, Technology and Human Expertise appeared first on Security Boulevard.

Helping government agencies and organizations operating in the public sector navigate password and credential security.

The post Public Sector Compliance: Passwords and Credentials Matter appeared first on Security Boulevard.

The threat group UNC1860, linked to Iran's security intelligence agency, gains initial access into networks around the region and hands that access off to other Iranian-associated hackers to established persistent and long-term access, Mandiant says.

The post Iranian-Linked Group Facilitates APT Attacks on Middle East Networks appeared first on Security Boulevard.

Cyber risk management has become more critical in today's challenging digital landscape. Organizations face increased pressure to identify, assess, and mitigate risks that could disrupt their operations. One of the foundational tools that can help manage these risks effectively is a risk register. A well-maintained cybersecurity risk register helps keep track of risks and supports ongoing efforts to mitigate them. In this blog, we’ll explore the importance of a risk register in a cyber risk management strategy and outline the key considerations when creating one.

The post Step-by-Step Guide: How to Create a Risk Register for Your Cybersecurity Strategy appeared first on Security Boulevard.