Industry Insights

Fraud Management & Cybercrime

Remote Desktop Protocol: An Active Adversary Special Report

Lee Kirkpatrick • April 4, 2024

Remote Desktop Protocol (RDP) is commonly abused by ransomware groups. Here are methods on how we can provide context and advice for administrators and responders looking to deal with RDP.

CISO Trainings

New Regulations Pose Compliance Challenges

Information Security Media Group • April 2, 2024

The new SEC rules, which took effect in late 2023, introduce mandatory cyber-incident reporting requirements for all U.S.-listed companies.

Artificial Intelligence & Machine Learning

How AI Is Shaping an Inclusive and Diverse Future

AmitKumar Shrivastava • March 28, 2024

AI presents enormous opportunities for reducing inequalities and promoting inclusivity in developing regions, but its deployment must be guided by ethical practices and a conscious effort to integrate diversity and inclusion at every stage. We must leverage AI responsibly.

Artificial Intelligence & Machine Learning

Responsible Use of Artificial Intelligence

Charmaine Valmonte • February 13, 2024

Beyond the hype, AI is transforming cybersecurity by automating threat detection, streamlining incident response and predicting attacker behaviors. Organizations are increasingly deploying AI to protect their data, stay ahead of cybercriminals and build more resilient security systems.

Eye on the Event Horizon

Rubaiyyaat Aakbar • January 15, 2024

Hackers have found ways to intercept SMS messages, so companies must explore more secure MFA options to ensure their users' safety. Your smartphone can still hold some different answers for secure OTP, but undoubtedly, SMS OTP is no longer safe. It’s time to flip the switch.

Application Security

Protecting Business-Critical Web Applications: 4 Challenges

Vince Hwang, Senior Director, Products & Solutions, Fortinet • October 24, 2023

In recent years, the adoption of public cloud infrastructures has surged, providing organizations with unparalleled flexibility and scalability. But this shift has also introduced a new set of challenges when it comes to protecting web applications and APIs that are hosted on these platforms.

The Hacker Perspective on Generative AI and Cybersecurity

Michiel Prins, Co-founder of HackerOne • October 3, 2023

Discover the crucial insights and predictions from experienced hackers about the intersection of Generative AI and cybersecurity, including emerging risks, vulnerabilities, and innovative approaches to safeguarding data and systems in this brave new world.

Cloud Security

Enhancing Cloud Security on AWS

Frederick Harris, Senior Director, Products & Solutions Marketing, Fortinet • September 12, 2023

How does an organization achieve peace of mind with security while overcoming the challenges of complex hybrid and multi-cloud networks? Here are the top reasons why your organization should consider implementing a cloud-native firewall service to protect your AWS environments and applications.

Application Security

Every Application Journey Needs a Cybersecurity Platform

Vince Hwang, Senior Director, Products & Solutions, Fortinet • July 28, 2023

Application journeys are fluid in practice because applications can live anywhere. Complex deployments with too many tools to configure and manage and overwhelmed IT teams lead to mistakes, so organizations should take a cybersecurity mesh platform approach to securing their application journeys.

What Generative AI Means for Security

Michiel Prins, Co-founder of HackerOne • July 24, 2023

What does generative AI mean for security? In the short term, and possibly indefinitely, we will see offensive or malicious AI applications outpace defensive ones that use AI for security. We also will see an outsized explosion in new attack surfaces. HackerOne can help you prepare your defenses.

Application Security

Leveraging Usage-Based Licensing

Vince Hwang, Senior Director, Products & Solutions, Fortinet • July 10, 2023

Traditional licensing models that lock organizations into fixed solutions or time periods are no longer ideal. Organizations need to consider usage-based licensing approaches that offer flexibility to deploy whatever solutions are required, wherever they are needed, for whatever length of time.

Anti-Phishing, DMARC

What You Need to Do to Protect Your Tech Organization

Husnain Bajwa, Vice President of Product Strategy, Beyond Identity • June 5, 2023

Technology and software-as-a-service, or SaaS, companies ship code at scale. Beyond Identity offers ways for them to solve the problems of phishable authentication factors, bring-your-own devices or BYOD, device security posture, zero trust risk policy enforcement, and user identity.

Governance & Risk Management

Zero Trust Authentication: Foundation of Zero Trust Security

Husnain Bajwa, Vice President of Product Strategy, Beyond Identity • May 19, 2023

Identity is more important than ever in today's "work from anywhere" world where the need for secure authentication has become paramount. Zero Trust Authentication complements security investments in EDRs, EPPs, SIEMs and existing SSOs and delivers a passwordless experience that drives productivity.

Events

Bengaluru Cybersecurity Summit: A Preview

Prajeet Nair • April 10, 2023

With enterprises revisiting their cybersecurity posture to defend against new challenges stemming from the ever-expanding threat landscape, CISOs have the daunting task of unlocking new strategies and tracking the next move of the hackers.

Anti-Phishing, DMARC

CISOs on Advanced Threats: How do we Respond to Rising Cybersecurity Stakes?

Andy Rose • March 15, 2023

Cybercriminals have been launching attacks against our people, networks, and services for decades with varying success. So, the need to realign our defences to meet the demands of evolving threats is nothing new.