Author: Dark Reading Staff

One third of the companies studied haven’t fixed their credential management — the same issue that led to the Colonial Pipeline hack last May. Source: Darkreading Attacks Breaches

The three open source tools flag malicious JavaScript packages before they are downloaded and installed from the npm package manager. Source: Darkreading Attacks Breaches

Federal officials tout the strategy as a more proactive approach to securing government networks. Source: Darkreading Attacks Breaches

The SOAR platform helps CISOs automate the security operations center via a low-code/no-code platform. Source: Darkreading Attacks Breaches

Latest bulletin out of DHS advises state and local governments, critical infrastructure operators to be on alert. Source: Darkreading Attacks Breaches

Security makes the top 10 list of technologies changing how organizations operate, an indicator of how information security is increasingly viewed as a strategic business initiative. Source: Darkreading Attacks Breaches

New Cybersecurity National Security Memorandum will let the spy agency “identify vulnerabilities, detect malicious threat activity and drive mitigations,” agency cybersecurity director says. Source: Darkreading Attacks Breaches

The incident compromised the personal data and confidential information of more than 515,000 “highly vulnerable people,” the Red Cross reports. Source: Darkreading Attacks Breaches

The massive funding round comes as the rise of cloud and remote work led to new threats and growing security and privacy concerns. Source: Darkreading Attacks Breaches

Permiso’s co-founders say the No. 1 problem in the cloud is identity, and their platform is designed to tackle the notoriously difficult challenge of monitoring the activity of those identities. Source: Darkreading Attacks Breaches