Facebook Google Plus Twitter LinkedIn YouTube RSS 功能表 搜尋 資源 - 部落格資源 - 網路研討會資源 - 報告資源 - 活動icons_066 icons_067icons_068icons_069icons_070

Tenable 部落格

訂閱

網路安全概要: Cyber Teams Adopt GenAI, Integrated Suites To Boost Defenses 

Cyber Teams Adopt GenAI and Integrated Suites To Boost Defenses

Cyber leaders are embracing generative AI and product suites, while ditching siloed tools. Plus, check out a guide packed with anti-phishing tips, and another one full of IAM security best practices. Also, discover the skills that cybersecurity recruiters value the most. 還有更多內容等您探索!

Dive into six things that are top of mind for the week ending October 20.

1 - Study: CISOs bet on GenAI, integrated cybersecurity suites

In: Defensive generative AI technology and integrated cybersecurity suites. Out: Tool sprawl from individual security products that don’t play well together. 

That's one of many findings from the “2024 Global Digital Trust Insights” report from PwC, which surveyed 3,800 C-level business, technology and security executives from 71 countries and across a variety of industries.

In a clear trend towards consolidation of cyber toolsets, 44% of respondents reported using an integrated suite of security products, while 39% plan to adopt one in the next two years.

CISOs adopt GenAI, integrated cybersecurity suites

Meanwhile, the report found that while organizations worry about hackers using generative AI to boost their attacks, they’re also excited about leveraging this technology to strengthen their cybersecurity capabilities.

Specifically, almost 70% said they’ll use generative AI for cyber defense in the next 12 months, while 47% are already using it for cyber risk detection and mitigation. One fifth of respondents report already reaping benefits from their use of generative AI for cybersecurity.

To get more details:

For more information about the impact of generative AI on cybersecurity:

To dive deeper into the value of integrated cybersecurity platforms:

2 - Guide: Anti-phishing best practices

Looking for a primer on how to protect your organization from phishing attacks? Check out the guide “Phishing Guidance: Stopping the Attack Cycle at Phase One”, published this week by CISA, the NSA and the FBI. The 14-page document groups its recommendations under two main attack categories: theft of login credentials and malware deployment. 

Here’s a sampling of the best practices discussed:

  • To prevent phishers from obtaining login credentials:
    • Regularly conduct user training, so that employees learn to identify suspicious emails, links and attachments
    • Adopt the Domain-based Message Authentication, Reporting and Conformance (DMARC) protocol
    • Monitor internal mail and messaging traffic
    • Implement phishing-resistant multi-factor authentication (MFA) for administrators and other accounts with elevated access privileges
    • Roll out a single sign-on (SSO) program

Anti-phishing best practices

  • To prevent phishers from executing malware:
    • Set up denylists in the email gateway, and use them to block malicious domains, URLs and IP addresses
    • Adopt the principle of least privilege for user accounts
    • Implement application allowlists
    • Block macros by default

To get more details, check out:

3 - ISACA: IAM ranks first among most sought-after cyber tech skills 

Identity and access management (IAM) is the cybersecurity skill that hiring managers look for the most, closely followed by cloud computing.

That’s according to ISACA’s “State of Cybersecurity 2023, Global Update on Workforce Efforts, Resources and Cyberoperations,” report, which surveyed 2,100 security leaders globally.

Data protection, incident response and DevSecOps rounded out the list of the top five tech skills that recruiters seek when filling cybersecurity jobs.

IAM ranks first among most sought-after cyber tech skills

Regarding soft skills, communication ranks first, followed by critical thinking, problem solving, teamwork and attention to detail.

And speaking of soft skills, it’s the area with the biggest gap among cybersecurity pros, followed by cloud computing, security controls, coding skills and software development.

Other interesting findings include:

  • 59% of respondents said their cyber teams are understaffed
  • 56% said retaining cybersecurity staffers remains a challenge
  • 62% said their organizations underreport cyberattacks

To get more details, download the report and check out these ISACA resources:

4 - Survey: Password without MFA remains top login method

Entering a password manually without any other form of authentication remains the most common method for logging into online accounts, although it’s considered the least secure.

That’s a key finding from the “Online Authentication Barometer” report, released this week by the FIDO Alliance, a tech industry consortium that promotes alternative login technologies and authentication standards.

Password without MFA remains top login method

Now in its fourth year, the report is based on a survey of 10,000 consumers in Australia, China, France, Germany, India, Japan, Singapore, South Korea, the U.K. and the U.S.

Other important findings include:

  • Biometrics, such as a fingerprint or face scan, ranks as both the preferred sign-in method and the most secure
  • Awareness of other login methods such as passkeys is growing
  • Artificial intelligence is driving an increase in the number and sophistication of suspicious messages and online scams
  • The inability to remember a password is driving up the average number of times per day that a person gives up on an online purchase or on accessing an online service – from 3.18 in 2022 to 3.68 in 2023

It’s promising that respondents are increasingly interested in using stronger authentication methods such as biometrics, Andrew Shikiar, Executive Director and CMO at FIDO Alliance, said in a statement.

“That said, high password usage without 2FA worryingly reflects how little consumers are still being offered alternatives like biometrics, resulting in lingering usage,” he added.

To get more details, read the report’s announcement “FIDO Alliance study reveals growing demand for password alternatives as AI-fuelled phishing attacks rise” and check out the “2023 Online Authentication Barometer” report.

For more information about new methods of authentication:

5 - CISA: MFA, SSO ranks as top IAM security challenges

And speaking of authentication methods, a new document from CISA and the NSA states that, when it comes to securing IAM systems, MFA and single sign-on (SSO) remain thorny challenges for enterprise developers and technology vendors.

The joint document, titled “Identity and Access Management: Developer and Vendor Challenges”, outlines these roadblocks and offers recommendations. 

MFA, SSO ranks as top IAM security challenges

Here’s a sampling of challenges and their recommended solutions for tech vendors:

  • Ambiguous MFA terminology
    • Standardize MFA terms so that definitions and policies are clear to organizations
    • Map IAM products to NIST requirements, such as those in NIST SP 800-63
  • Unclear security properties of certain MFA implementations
    • Expand phishing-resistant authentication methods to more use cases, and simplify and standardize their adoption
    • Make MFA systems “maximally user friendly” to promote higher user adoption
  • Difficult SSO integration into enterprise IT infrastructure
    • Ease integration of SSO with legacy applications by creating an open-source repository of standards-based modules

To get more details, read the “Identity and Access Management: Developer and Vendor Challenges” publication.

6 - U.S. government expands guide for “secure by design” software

Software should be designed with customer security as a core goal, and should be secure “out of the box”, requiring no complex configurations and no extra fees for any security features.

That’s the “secure by design” and “secure by default” vision outlined in the revamped guide “Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Secure By Design Software” jointly released this week by CISA, the FBI, the NSA and cyber agencies from 13 countries. 

“Together, these two philosophies move much of the burden of staying secure to manufacturers and reduce the chances that customers will fall victim to security incidents resulting from misconfigurations, insufficiently fast customer patching, or many other common issues,” reads the guide.

Government expands guide for secure by design software

The document, which was published originally in April, grew from 15 pages to 36 pages, with the bulk of the additions detailing further CISA’s three main “secure by design” principles for software makers:

  • Take ownership of customer security outcomes
  • Embrace radical transparency and accountability
  • Lead from the top

While mostly focused on best practices for software vendors, the document also includes recommendations for software customers, including:

  • Ensure the software you buy complies with “secure by design” and “secure by default” principles, as outlined by CISA and by your own IT department
  • Require that your IT suppliers commit to solving security issues promptly, and that they offer transparency into their existing and future internal security controls and posture
  • When subscribing to cloud services, make sure you understand the shared responsibility model

To get more details, check out:

相關文章

您可以使用的網路安全最新消息

輸入您的電子郵件,就不會錯過來自 Tenable 專家提供的及時警示與安全指引。

Tenable Vulnerability Management

享受現代、雲端型的弱點管理平台,能夠以無與倫比的準確性查看和追蹤所有資產。

您的 Tenable Vulnerability Management 試用版軟體也包含 Tenable Lumin 和 Tenable Web App Scanning。

Tenable Vulnerability Management

享受現代、雲端型的弱點管理平台,使您能夠以無與倫比的準確性查看和追蹤所有資產。 立即訂閱一年。

100 項資產

選取您的訂閱選項:

立即購買

Tenable Vulnerability Management

享受現代、雲端型的弱點管理平台,能夠以無與倫比的準確性查看和追蹤所有資產。

您的 Tenable Vulnerability Management 試用版軟體也包含 Tenable Lumin 和 Tenable Web App Scanning。

Tenable Vulnerability Management

享受現代、雲端型的弱點管理平台,使您能夠以無與倫比的準確性查看和追蹤所有資產。 立即訂閱一年。

100 項資產

選取您的訂閱選項:

立即購買

Tenable Vulnerability Management

享受現代、雲端型的弱點管理平台,能夠以無與倫比的準確性查看和追蹤所有資產。

您的 Tenable Vulnerability Management 試用版軟體也包含 Tenable Lumin 和 Tenable Web App Scanning。

Tenable Vulnerability Management

享受現代、雲端型的弱點管理平台,使您能夠以無與倫比的準確性查看和追蹤所有資產。 立即訂閱一年。

100 項資產

選取您的訂閱選項:

立即購買

試用 Tenable Web App Scanning

享受完整存取我們專為新型應用程式所設計、屬於 Tenable One 曝險管理平台一部分的最新 Web 應用程式掃描產品。不需耗費大量人力或中斷重要 Web 應用程式,即可高度準確且安全地掃描您整個線上產品系列中是否含有任何弱點。 立即註冊。

您的 Tenable Web App Scanning 試用版軟體也包含 Tenable Vulnerability Management 和 Tenable Lumin。

購買 Tenable Web App Scanning

享受現代、雲端型的弱點管理平台,使您能夠以無與倫比的準確性查看和追蹤所有資產。 立即訂閱一年。

5 個 FQDN

$3,578

立即購買

試用 Tenable Lumin

利用 Tenable Lumin 視覺化並探索您的曝險管理、追蹤經過一段時間後風險降低的情形以及與同業進行指標分析。

您的 Tenable Lumin 試用版軟體也包含 Tenable Vulnerability Management 和 Tenable Web App Scanning。

購買 Tenable Lumin

聯絡業務代表,瞭解 Tenable Lumin 如何協助您取得您整個環境的深入解析和管理網路風險。

免費試用 Tenable Nessus Professional

免費試用 7 天

Tenable Nessus 是目前市場上最全方位的弱點掃描器。

最新 - Tenable Nessus Expert
現已上市

Nessus Expert 新增了更多功能,包括外部攻擊破綻掃描和新增網域及掃描雲端基礎架構的能力。按這裡試用 Nessus Expert。

請填妥以下表單以繼續 Nessus Pro 試用。

購買 Tenable Nessus Professional

Tenable Nessus 是目前市場上最全方位的弱點掃描器。Tenable Nessus Professional 可協助將弱點掃描流程自動化,節省您執行合規工作的時間並讓您與 IT 團隊合作。

購買多年期授權,節省更多。新增 365 天全年無休 24 小時全天候可使用電話、社群及對談的進階支援。

選擇您的授權

購買多年期授權,節省更多。

增加支援與訓練

免費試用 Tenable Nessus Expert

免費試用 7 天

Nessus Expert 是專為現代攻擊破綻所打造,它能讓您從 IT 到雲端洞察更多資訊,並保護貴公司免於弱點危害。

您已經有 Tenable Nessus Professional 了嗎?
升級至 Nessus Expert,免費試用 7 天。

購買 Tenable Nessus Expert

Nessus Expert 是專為現代攻擊破綻所打造,它能讓您從 IT 到雲端洞察更多資訊,並保護貴公司免於弱點危害。

選擇您的授權

購買多年期授權省更多!

增加支援與訓練