Tag: resilience
-
Intelligente Datenverwaltung für resiliente SaaS-Umgebungen – Data-Governance als Schlüssel zur Cyber-Resilienz
First seen on security-insider.de Jump to article: www.security-insider.de/data-governance-als-schluessel-zur-cyber-resilienz-a-f60b02f627872f92cfa006be4c089420/
-
Letzte Verteidigungslinie im Unternehmen: Cyberstorage-Resilienz und schnelle Wiederherstellung
Tags: resilienceFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/letze-verteidigungslinie-unternehmen-cyberstorage-resilienz
-
28 Prozent der deutschen Finanzdienstleister fehlen kritische Maßnahmen für die DORA-Compliance
Eine Umfrage von Veeam zeigt: Obwohl viele Unternehmen die DORA-Richtlinie priorisieren, gibt es in Deutschland insbesondere bei Incident-Reporting und Datenresilienz noch Luft nach oben. Mit Inkrafttreten der EU-Verordnung zur digitalen operationellen Resilienz (DORA) Mitte Januar 2025 stehen Finanzinstitute unter Zugzwang: Sie müssen ihre IT-Sicherheit aufgrund der herrschenden Gefahrenlage entlang eines Katalogs an Maßnahmen auf einen…
-
Collaboration is Key: How to Make Threat Intelligence Work for Your Organization
Secure threat intelligence sharing reduces risk, accelerates response and builds resilience across entire ecosystems. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/07/collaboration-is-key-how-to-make-threat-intelligence-work-for-your-organization/
-
Most European Financial Firms Still Lagging on DORA Compliance
A Veeam survey found that 96% of financial services organizations believe their current levels of data resilience falls short of DORA compliance, citing major challenges First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/european-financial-dora-compliance/
-
IT-Resilienz wird durch mangelnde Unterstützung der IT-Teams auf persönlicher Ebene beeinträchtigt
Laut einer neuen Studie von Zscaler vernachlässigen Unternehmen die persönliche Resilienz von Mitarbeitenden, die mit der Reaktion auf kritische Cyber-Vorfälle beauftragt sind. Dieses Versäumnis kann jedoch mit erheblichen Risiken für den Betrieb einhergehen, die von kostspieligen Ausfallzeiten bis hin zu einer geschwächten Geschäftskontinuität reichen. Die Studie ‘The Missing Link: Why Investing in the Resilience of…
-
Cyber-Resilienz braucht mehr als nur Technik – auch die IT-Teams benötigen Unterstützung
Die Studie mit dem Titel ‘The Missing Link: Why Investing in the Resilience of Your People is Imperative for Business Continuity” legt offen, wie stark die mentale und emotionale Belastung auf IT-Profis lastet und wie unzureichend sie darauf vorbereitet sind. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/cyber-resilienz-braucht-mehr-als-nur-technik-auch-die-it-teams-benoetigen-unterstuetzung/a41415/
-
Unified Cyber Standards Are Vital for 5G Resilience
5G OT Security Summit Speakers on Secure Frameworks for Regional Infrastructure. At a time when ASEAN nations are accelerating 5G deployments, cybersecurity leaders at the 5G and OT Security Summit in Malaysia issued a sobering warning: Fragmented regulations and uneven OT readiness threaten to undermine the region’s digital ambitions. First seen on govinfosecurity.com Jump to…
-
NCSC Launches Vulnerability Research Institute to Boost UK Resilience
The NCSC’s new Vulnerability Research Institute will help it develop outreach with the external cybersecurity community First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ncsc-vulnerability-research/
-
AI poisoning and the CISO’s crisis of trust
Tags: access, ai, breach, ceo, ciso, compliance, control, cybersecurity, data, defense, detection, disinformation, exploit, framework, healthcare, identity, infosec, injection, LLM, monitoring, network, privacy, RedTeam, resilience, risk, russia, saas, threat, tool, trainingFoundation models began parroting Kremlin-aligned propaganda after ingesting material seeded by a large-scale Russian network known as the “Pravda Network.”A high-profile AI-generated reading list published by two American news outlets included 10 hallucinated book titles mistakenly attributed to real authors.Researchers showed that imperceptible perturbations in training images could trigger misclassification. Researchers in the healthcare domain demonstrated…
-
CrowdStrike CEO: Resilience Efforts, ‘Incredible Partners’ Key To Rebound Over Past Year
CrowdStrike has emerged from the global IT outage caused by a faulty update as a “stronger company” thanks to extensive work to boost the resilience of its cybersecurity platform along with the efforts of its “incredible partners,” CrowdStrike CEO George Kurtz wrote in LinkedIn post. First seen on crn.com Jump to article: www.crn.com/news/security/2025/crowdstrike-ceo-resilience-efforts-incredible-partners-key-to-rebound-over-past-year
-
8 tough trade-offs every CISO must navigate
Tags: access, ai, attack, business, ciso, cloud, compliance, computer, cyber, cybersecurity, ddos, defense, detection, framework, group, healthcare, incident response, jobs, malicious, mfa, regulation, resilience, risk, service, technology, threat, tool, vulnerability2. Weighing security investments when the budget forces choices: Closely related to the trade-off around risk is what CISOs must navigate when it comes to security investments.”For most CISOs, when they have to make tough choices, 99% of the time it’s due to budget constraints that force them to weight risks versus rewards,” says John…
-
As Cyber-Insurance Premiums Drop, Coverage Is Key to Resilience
Cyber-insurance premiums continue to decline from their explosive growth from 2020 to 2022, but coverage is more important than ever to manage risks, experts say. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/cyber-insurance-premiums-drop-coverage-key-resilience
-
The cloud-native imperative for effective cyber resilience
Archive deleted First seen on theregister.com Jump to article: www.theregister.com/2025/07/08/cloud-native-cyber-resilience/
-
Empowered employees strengthen financial sector digital resilience
Ensuring that any organisation can withstand, respond effectively to and recover quickly from ICT disruptions is a strategic imperative. This is particularly true within the financial sector. The Digital Operational Resilience Act (DORA), which became mandatory on 17 January this year, was put in place to serve as a robust standard for resilience. It doesn’t…
-
Ingram Micro confirms ransomware attack after days of downtime
Tags: attack, breach, control, incident response, monitoring, msp, programming, ransomware, resilience, risk, software, supply-chain, threatWeak links: tech supply chain targeted: This attack on Ingram Micro reflects a broader shift in threat actors focusing on increasingly targeting beyond software development firms to broader tech supply chain nodes to maximize disruption.Jain added that entities like distributors, MSPs, and logistics providers offer high leverage with relatively lower security maturity compared to large…
-
Has CISO become the least desirable role in business?
Tags: advisory, ai, business, cio, ciso, control, corporate, cybersecurity, data, dora, finance, governance, international, jobs, network, office, regulation, resilience, risk, sap, skills, startup, threatGeorge Gerchow, CSO, Bedrock Security George Gerchow / Bedrock Security”I’ll never report to a CTO or CFO again. I have to have seat at the table,” he says emphatically. Otherwise, he says, you become frustrated “because you’re not in control of your own destiny. You’re parsing everything to this other person who’s a leader in…
-
The 47-Day SSL Certificate Era: What It Means for Site Owners and IT Teams
Tags: resilienceThe move to 47-day SSL certificates is a major step toward a more secure, automated internet. While it introduces new challenges, especially for organizations relying on manual processes, it ultimately pushes the ecosystem toward greater resilience and trust. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/07/the-47-day-ssl-certificate-era-what-it-means-for-site-owners-and-it-teams/
-
Internet outages are costing companies millions every month
To ensure resilience across the internet stack, organizations need to protect and manage four key areas: reachability, availability, reliability, and performance, according to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/04/internet-stack-resilience/
-
Top FBI cyber official: Salt Typhoon ‘largely contained’ in telecom networks
Brett Leatherman told CyberScoop in an interview that while the group still poses a threat, the bureau is focused on resilience and victim support, and going on offense could be in the future. First seen on cyberscoop.com Jump to article: cyberscoop.com/top-fbi-cyber-official-salt-typhoon-largely-contained-in-telecom-networks/
-
Auf der Suche nach Alternativen zum CVE-Programm
Tags: advisory, ceo, cisa, cve, cvss, cyber, cyersecurity, exploit, github, google, group, infrastructure, intelligence, kev, microsoft, nist, nvd, open-source, oracle, ransomware, resilience, risk, siem, soar, software, supply-chain, threat, tool, update, vulnerability, vulnerability-management, zero-daySollte das CVE-Programm eingestellt werden, wäre die Bewertung und Behebung von Sicherheitslücken schwieriger.Der jüngste kurze Panikausbruch wegen der möglichen Einstellung des Common Vulnerabilities and Exposures (CVE)-Programms hat die starke Abhängigkeit der Sicherheitsbranche von diesem Programm deutlich gemacht. Er führte zu Diskussionen über Notfallstrategien , falls das standardisierte System zur Identifizierung und Katalogisierung von Schwachstellen nicht…
-
Second espionage-linked cyberattack hits ICC, exposing persistent threats to global justice systems
Tags: attack, crime, crimes, cyber, cyberattack, cybersecurity, data, disinformation, espionage, identity, infrastructure, intelligence, international, Internet, office, resilience, russia, spy, threat, ukrainePattern of sophisticated cyber espionage: This marks the second major cybersecurity incident targeting the ICC in recent years. In September 2023, the court disclosed it had suffered what it later characterized as “a targeted and sophisticated attack with the objective of espionage” that was “a serious attempt to undermine the Court’s mandate.”According to reports following…
-
Unternehmen müssen Cyber-Resilienz stärken – KI beschleunigt neue Angriffsmethoden
First seen on security-insider.de Jump to article: www.security-insider.de/cyberresilienz-gegen-ki-gestuetzte-bedrohungen-levelblue-report-2025-a-acfe835628ca4392fd9edbc9cbd91353/
-
Six ways teams can build cyber resilience
First seen on scworld.com Jump to article: www.scworld.com/perspective/six-ways-teams-can-build-cyber-resilience
-
Ghost in the Machine: A Spy’s Digital Lifeline
Tags: access, ai, attack, authentication, best-practice, cloud, communications, control, country, crypto, cyber, data, encryption, endpoint, framework, government, Hardware, identity, infrastructure, intelligence, jobs, law, linux, mfa, military, network, resilience, risk, software, spy, strategy, technology, threat, tool, vpn, windows, zero-trust -
Cyber-Resilienz – Die Macht der Datenklassifizierung
First seen on security-insider.de Jump to article: www.security-insider.de/cloud-risiken-datenklassifizierung-a-5c8e2605d4274f4b7880c279c6684b1b/
-
Brave New Kernel: Microsoft Previews Safer Windows Ecosystem
Windows 11 Revamp Means No Kernel Access Required for Third-Party Security Tools Nearly one year after a faulty CrowdStrike software update disrupted 8.5 million Windows hosts, causing global IT chaos, Microsoft is previewing multiple resilience changes to Windows, including enabling third-party endpoint security tools to do their magic without needing kernel-level access. First seen on…
-
Defining Cyber Resilience: Industry Leaders Meet in London as AI Threats Accelerate
Last week, Check Point hosted its annual Cyber Leader Summit at Landing Forty-Two in London’s iconic Leadenhall Building. The summit convened influential figures from the cybersecurity, law enforcement, and enterprise communities to explore the rapidly evolving threat landscape and the transformative role of artificial intelligence. Key discussions focused on the urgent need for proactive, resilience-focused…