DARKReading

Organizations need to abandon perimeter-based security for data-centric protection strategies in today's distributed IT environments.

The US needs to establish a clear framework to provide reasonable guardrails to protect its interests — the quicker, the better.

A "highly active" Chinese threat group is taking proverbial candy from babies, exploiting known bugs in exposed servers to steal data from organizations in sensitive sectors.

The US Treasury said cryptocurrency investment schemes like the ones facilitated by Funnull Technology Inc. have cost Americans billions of dollars annually.

AI tools shook up development. Now, product security must change too.

Apex will enhance Tenable's AI Aware tool by mitigating the threats of AI applications and tools not governed by organizations, while enforcing existing security policies.

The rate of compensation gains has slowed from the COVID years, and budgets remain largely static due to economic fears, but CISOs are increasingly gaining executive status and responsibilities.

The software company, which specializes in remote IT management, said a "sophisticated nation state actor" was behind the attack but provided few details.

In addition to Coca-Cola, entities in Abu Dhabi, Jordan, Namibia, South Africa, and Switzerland are experiencing extortion attacks, all involving stolen SAP SuccessFactor data.

At this year's Build developer conference, Microsoft reflected on what the company learned about securing features and writing secure code in the early 2000s.