February 29, 2024
PCI DSS 4.0 looms on the horizon, effective March 31, 2024, bringing a wave of changes for retail and hospitality IT, security, and compliance leaders. While the core principles for the payment card security standard hold true, this update...
February 28, 2024
The National Institute of Standards and Technology (NIST) has finally released the much-anticipated update to its Cybersecurity Framework (CSF) - Version 2.0. This framework provides voluntary guidance for organizations of all sizes and sectors to manage cybersecurity risks. However, it...
February 27, 2024
Published originally on February 27, 2024 on SC Magazine. NIST released its Cybersecurity Framework 2.0 (CFS 2.0) [sic] on Monday, introducing a new core structure, resource catalog and overall scope of application to the already widely used resource. The...
February 14, 2024
In the ever-expanding digital realm, protecting sensitive cardholder data is paramount. The Payment Card Industry Data Security Standard (PCI DSS) has stood as the gold standard for data security across the payment ecosystem. But changes are on the way. So, what does...
February 14, 2024
Keeping your software up-to-date is crucial for cybersecurity, but it goes well beyond just your operating system and core applications. Third-party applications, from essential tools like Adobe Substance 3D Stager to popular browsers like Chrome and Firefox, often have overlooked...
February 12, 2024
Published originally on February 12, 2024 on SC Magazine. News that Planet Home Lending experienced a cyberattack by the LockBit ransomware group leveraging the Citrix Bleed flaw has come out in dribs and drabs. The cyberattack last fall was...
February 12, 2024
Bugs and vulnerabilities are simply part of the IT infrastructure these days, as much as we wish they weren't. The challenge of patching third-party systems and applications remains one of the most formidable hurdles for IT and security teams. On...
February 7, 2024
Updated February 9, 2024. Originally published February 7, 2024. The modern work landscape requires flexibility. Especially these days, this often means enabling distributed workforces and, consequently, a need for remote desktop software that IT teams can use to access critical...
February 5, 2024
Local government executives shoulder the immense responsibility of ensuring the safety and well-being of their communities. More and more citizen services are moving online, and the pandemic only accelerated digital transformation efforts for local governments. This has led to local...
January 17, 2024
A high-severity vulnerability lurking within Chrome has surfaced, and its potential impact demands immediate action from IT and security operations teams. Identified as CVE-2024-0519, this flaw is the first Google Chrome zero-day of 2024. What is CVE-2024-0529? The vulnerability...