網路安全概要: 供應鏈安全最新消息– SBOM 發布、開放原始碼缺陷及最新的安全架構
Check out what CISA says about the sharing of software bills of materials. Plus, why you should tread carefully with open source components. Also, the SLSA supply chain security framework is ready. In addition, security worries hold back enterprise IoT adoption. And much more!...
7 個具有廣泛雲端安全影響力的法規與合規架構
Security teams responsible for enforcing regulatory and compliance mandates in a scalable and consistent way are often challenged to translate general legislative guidelines and controls into specific policies, tools and processes....
Tenable 網路觀察:FBI Warns of Sophisticated BEC Scam, NIST Unveils Its New AI Resource Center, and more
This week’s edition of the Tenable Cyber Watch unpacks the business email compromise scams (BEC) that are targeting vendors and explores NIST’s new AI Resource Center. Also covered: The most in-demand cybersecurity jobs for this year according to COMPTIA’s “State of the Tech Workforce Report” for 20...
網路安全概要: 由於對 ChatGPT 的疑慮攀升,美國政府正在考量人工智慧法
As ChatGPT security worries rise, the Biden administration looks at crafting AI policy controls. Plus, Samsung reportedly limits ChatGPT use after employees fed it proprietary data. Also, how password mis-management lets ex-staffers access employer accounts. In addition, the top identity and access ...
Tenable 網路觀察:美國政府認真考慮禁用 TikTok、歐洲刑警組織 (Europol) 對 ChatGPT 的網路風險提出警告等等
This week’s edition of the Tenable Cyber Watch unpacks the U.S. government’s efforts to ban TikTok and addresses Europol’s concerns about ChatGPT cyber risks. Also covered: How CISA’s new pre-ransomware alert initiative could be a gamechanger for would-be ransomware victims. ...
網路安全概要: 使用 ChatGPT 有可能會導致違反資料隱私權
Learn how businesses can run afoul of privacy laws with generative AI chatbots like ChatGPT. Plus, the job market for cyber analysts and engineers looks robust. Also, cybercrooks lost a major resource with the Genesis Market shutdown. In addition, the six common mistakes cyber teams make. And much m...
Tenable 網路觀察:對應 MITRE ATT&CK 的協助、何以企業面對 SaaS 資料保護問題力不從心等等
This week’s edition of the Tenable Cyber Watch unpacks CISA’s new ‘Decider” tool, which aims to streamline MITRE ATT&CK mapping. We also explore why organizations struggle with data protection of software as a service apps. Also covered: Why cyber pros think cloud creates opportunities for cyber tea...
網路安全概要: CISA Issues Incident Response Tool for Microsoft Cloud Services
Learn about a free tool for detecting malicious activity in Microsoft cloud environments. Plus, Europol warns about ChatGPT cyber risks. Also, how business email compromise (BEC) scammers are stealing merchandise. In addition, CISA alerts orgs about early-stage ransomware breaches. And much more! ...
混合雲端環境安全的 5 大核心原則
How to build a hybrid-cloud security strategy that is effective, scalable and affordable. ...
Tenable 網路觀察:英國網路機構對於 ChatGPT 提出隱私疑慮、CISA 方案應對在重大基礎設施中的勒索軟體問題以及更多議題
This week’s edition of the Tenable Cyber Watch unpacks CISA’s new pilot program that detects vulnerabilities in critical infrastructure and addresses the FBI’s plea for more ransomware victims to report attacks. Also covered: Why the U.K. National Cyber Security Centre is warning ChatGPT users to tr...
網路安全概要: 利用最新的 CISA/NSA 最佳做法強化身分與存取管理安全
Learn about a new guide packed with best practices recommendations to improve IAM systems security. Plus, cybersecurity ranks as top criteria for software buyers. Also, guess who’s also worried about ChatGPT? Oh, and do you know what a BISO is? And much more! ...
Tenable 網路觀察:探討美國國家網路安全策略、在黃金時刻利用強大的 AI 技術做好準備等等
This week’s edition of the Tenable Cyber Watch unpacks the White House’s National Cybersecurity Strategy and explores how artificial intelligence will help cyber teams with complex attacks. Also covered: Why software vendors should prepare to submit letters of attestation to the GSA. ...