%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Innovating Security with Managed Detection & Response (MDR) and ChaosSearch

Sep 30, 2025 By David Bunting In ChaosSearch

Managed Detection and Response (MDR) services occupy an important niche in the cybersecurity industry, supporting SMBs and enterprise organizations with managed security monitoring and threat detection, proactive threat hunting, and incident response capabilities. In this week's blog, we're taking a closer look at the role of MDRs in cybersecurity, the biggest challenges they face, and how integrating ChaosSearch is helping MDRs manage complexity, reduce data retention costs, and enable long-term security analytics use cases that are critical for customer success.

Read Post

ChaosSearch

Read more about Innovating Security with Managed Detection & Response (MDR) and ChaosSearch

This Developer Built an App That Doesn't Spy on You

Sep 30, 2025 By GitKraken In GitKraken

Rizel Scarlet (Staff Developer Advocate at Block) tackled a problem every developer should care about: apps that spy on users before they even know they need the service. Her solution? Build a privacy-first pregnancy app using AI agents and decentralized web nodes. This isn't just about pregnancy apps - it's about the future of user data ownership.

View Video

GitKraken

Read more about This Developer Built an App That Doesn't Spy on You

Strengthen your mobile security with Ivanti Neurons for MDM and MTD

Sep 30, 2025 By Ivanti In Ivanti

Mobile security is crucial as smartphones become prime targets for cyber attackers. The shift from desktop to mobile usage has increased vulnerabilities, especially during the COVID pandemic. Key statistics show a rise in mobile phishing attacks and risks from unsecured connections and risky apps. The session highlights the need for mobile threat defense solutions and user education to balance comfort and security.

View Video

Ivanti

Read more about Strengthen your mobile security with Ivanti Neurons for MDM and MTD

DEX: How We Measure the Results of IT Actions

Sep 29, 2025 By Almaden AI In Almaden AI

Every IT initiative has a clear purpose: to boost productivity, reduce failures, accelerate processes, or simply make things work better for people. Yet, many companies still make the mistake of implementing changes and improvements without measuring the real impact they have on employees' daily lives. That's the difference between acting in the dark and acting intelligently. Without clear metrics, IT may be investing time and money in solutions that, in practice, bring little benefit - or even harm performance. This is exactly where DEX (Digital Employee Experience) comes in.

Read Post

Almaden AI

Read more about DEX: How We Measure the Results of IT Actions

Boards Talk Cybersecurity - but NIS2 Directive Says They Must Own It

Sep 29, 2025 By Patrick Kaak In Ivanti

Cybersecurity finally has a seat in the boardroom. Ivanti’s 2025 State of Cybersecurity research shows that: On paper, that’s progress. But, many organizations struggle to convert board-level attention into sustained, measurable risk reduction.

Read Post

Ivanti

Read more about Boards Talk Cybersecurity - but NIS2 Directive Says They Must Own It

Fortifying security for Ubuntu on Azure with Metadata Security Protocol (MSP)

Sep 29, 2025 By Jehudi In Canonical

We’re pleased to share a security enhancement for Ubuntu workloads on Microsoft Azure. In collaboration with Microsoft, Ubuntu now supports Azure’s Metadata Security Protocol (MSP)—a feature that hardens access to the Instance Metadata Service (IMDS) and WireServer. On Ubuntu, MSP is enabled by the azure-proxy-agent package, Canonical’s integration of Microsoft’s Guest Proxy Agent (GPA).

Read Post

Canonical

Read more about Fortifying security for Ubuntu on Azure with Metadata Security Protocol (MSP)

How SSL Certificate Monitoring Prevents Man-in-the-Middle Attacks

Sep 26, 2025 By Simon Rodgers In WebSitePulse

Man-in-the-Middle (MITM) attacks remain one of the most dangerous cybersecurity threats. In these attacks, hackers secretly intercept and sometimes alter communication between two parties. Without proper encryption, sensitive data such as passwords, credit card details, and personal information becomes exposed. SSL/TLS certificates encrypt this communication, preventing unauthorized access. However, certificates can expire, become misconfigured, or become compromised, creating security gaps.

Read Post

WebSitePulse

Read more about How SSL Certificate Monitoring Prevents Man-in-the-Middle Attacks

Why Security Must Include Cost Accountability In The Cloud

Sep 26, 2025 By Rachel Whitener In CloudZero

A SaaS team once spotted their first breach not in a SIEM dashboard, but in their AWS bill. Their compute costs spiked by 400% overnight. Turns out, an attacker had spun up dozens of high-powered instances for crypto mining. Logs eventually confirmed the intrusion, but the cost anomaly was the first signal that something was wrong. This incident isn’t unusual. Cloud costs often reflect consumption, but they can also reflect compromise.

Read Post

CloudZero

Read more about Why Security Must Include Cost Accountability In The Cloud

How to Detect and Stop M365 Phishing Attacks for Free

Sep 26, 2025 By NinjaOne In NinjaOne

Kelvin Tegelaar, founder of CyberDrain joins the NinjaOne Community stream to discuss Check, a new open source tool to identify and block malicious login pages before credentials can be compromised. Learn more about this new tool and how to provide real-time protection against Microsoft 365 phishing attacks.

View Video

NinjaOne

Read more about How to Detect and Stop M365 Phishing Attacks for Free

Cisco ASA and IOS Vulnerabilities Expose Critical Systems, Making Edge Automation Essential for Rapid Remediation

Sep 26, 2025 By Puppet In Puppet

The launch of Puppet Edge this week could not have been more timely. Within a day of its general availability, Cisco disclosed a vulnerability in its IOS and IOS XE software, followed almost immediately by an Event Response detailing two additional critical-severity CVEs affecting its firewalls.

Read Post