ThycoticCentrify, a provider of cloud identity security solutions formed by the merger of privileged access management (PAM) leaders Thycotic and Centrify, announced new research that reveals more than...
Klarna Bank suffered a severe technical issue this morning that allowed mobile app users to log into other customers’ accounts and see their stored information. Klarna...
The US Department of Homeland Security (DHS) has announced new pipeline cybersecurity requirements after the largest fuel pipeline in the United States was forced to shut down operations...
Offices of multiple Japanese agencies were breached via Fujitsu’s “ProjectWEB” information sharing tool. Fujitsu states that attackers gained unauthorized access to projects that used ProjectWEB, and stole some customer...
The Government Accountability Office told lawmakers enforcement, through expanded reporting, of agencies’ supply chain security activity is “the thing that has to happen.” The National Institute...
A cyber-attack on a third-party supplier of Canada Post has resulted in a data breach impacting 950,000 parcel recipients, the state-owned postal service has announced. In a press release published...
Endpoints using GraphQL may be at risk of exploitation due to failures to mitigate cross-site request forgery (CSRF) attack vectors, researchers warn. On May 20, Doyensec...
The Department of Homeland Security (DHS) will issue a directive later this week requiring all pipeline companies to report cybersecurity incidents to federal authorities. The directive comes...
A startling statistic is rippling through the media: over an eight-year period, reports confirmed that the number of unfilled cybersecurity jobs grew over 350%, from 1 million...
While authentication and authorization might sound similar, they are two distinct security processes in the identity and access management (IAM) space. Authentication is the security practice...