7 matches found
Uncovering Relationships between Android Developers, User Privacy, and Developer Willingness to Reduce Fingerprinting Risks
The major mobile platforms, Android and iOS, have introduced changes that restrict user tracking to improve user privacy, yet apps continue to covertly track users via device fingerprinting. We study the opportunity to improve this dynamic with a case study on mobile fingerprinting that evaluates...
Enforce and Report on PCI DSS v4 Compliance with Rapid7
The PCI Security Standards Council PCI SSC is a global forum that connects stakeholders from the payments and payment processing industries to craft and facilitate adoption of data security standards and relevant resources that enable safe payments worldwide. According to the PCI SSC website, “PC...
Forrester names Microsoft a Leader in The Forrester Wave™: Cloud Security Gateways, Q2 2021
I am thrilled to share that Forrester Research has named Microsoft Cloud App Security as a Leader in The Forrester Wave: Cloud Security Gateways, Q2 2021. Additionally, Microsoft received the highest score in the strategy category. People have increasingly used cloud apps to stay productive and...
Why SaaS opens the door to so many cyber threats (and how to make it safer)
Cloud services have become increasingly important to many companies' daily operations, and the rapid adoption of web apps has allowed businesses to continue operating with limited productivity hiccups, even as global coronavirus restrictions have forced much of the world to work from home. But at...
Australia’s “Essential Eight” is Critical to Meet 2018 Cybersecurity Mandates & Privacy Laws
Christopher Strand, Carbon Black’s security risk and compliance officer recently wrote a blog discussing how the new mandatory data breach notification rule in the Privacy Amendment Notifiable Data Breaches Bill 2016, helps bring attention to cybersecurity solutions and focus on the practices...
HTTPS best practices: pshtt
HTTPS best practices “pshtt” is the sound you make when you feel mildly astonished. pshtt “pushed” is a tool to scan domains for HTTPS best practices. It saves its results to a CSV or JSON. pshtt was developed to push organizations— especially large ones like the US Federal Government — to adopt...
IPS-1 Protection Update - Authentication (v 15), DDOS (v 12), DHCP (v 8), Enterprise Software (v 2), Finger (v 10), FTP (v 23), IRC (v 13), LPD (v 11)
This advisory covers a set of protocol updates for the Authentication, DDOS, DHCP, Enterprise Software, Finger, FTP, IRC, and LPD protocol groups. The Authentication protocol group has been updated to ignore password strength tests for anonymous and guest users. Increased protocol compliance...