FEATURES EDITION | 10 Vulnerability Types to Focus On This Year

A new Tech Insight report examines how the enterprise attack surface is expanding and how organizations must deal with vulnerabilities in emerging technologies. [TechWeb]( Follow Dark Reading: [RSS]( March 25, 2023 LATEST SECURITY NEWS & COMMENTARY [10 Vulnerability Types to Focus On This Year]( A new Tech Insight report examines how the enterprise attack surface is expanding and how organizations must deal with vulnerabilities in emerging technologies. [AI Has Your Business Data]( No-code has lowered the barrier for non-developers to create applications. Artificial intelligence will completely eliminate it. [Red Teaming at Scale to Uncover Your Big Unknowns]( A contrarian mindset with applied imagination allows security professionals to assess problems in their organizations, prevent failure, and mitigate vulnerabilities. [IoT Startup OP[4] Launches With Firmware Security Platform]( Op[4]'s firmware security platform detects, prioritizes, and remediates exploitable vulnerabilities in Internet of Things and embedded systems. [IAM Startup Aembit Secures How Workloads Connect to Services]( Aembit launches from stealth with a cloud-based identity access management platform for enterprise workloads. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [How CISOs Can Work With the CFO to Get the Best Security Budget]( CISOs can and should push back when they're presented with budget costs that affect the business. Here's how. [Google Proposes Reducing TLS Cert Life Span to 90 Days]( Organizations will likely have until the end of 2024 to gain visibility and control over their keys and certificates. [How Patch Tuesday Keeps the Beat After 20 Years]( Patch Tuesday turned security updates from chaotic events into a routine. Here's how we got here and where things might be heading. [MORE]( EDITORS' CHOICE [Technology Firms Delivering Much-Sought Encryption-in-Use]( If the approaches stand up to scrutiny, companies may soon be able to encrypt most databases in a way that allows using data without the need to decrypt to plaintext. FROM THE NEWS DESK [Bundestag Bungle: Political Microtargeting of Facebook Users Draws Ire]( With shades of the Cambridge Analytica scandal, German political parties skirted consumer data privacy regulations during the country's last parliamentary election, a privacy watchdog warns. WEBINARS - [How Supply Chain Attacks Work -- And What You Can Do to Stop Them]( Supply chain attacks made headlines in 2022, sending shockwaves through the industry as security and business leaders scrambled to reexamine the security of their own supply chains. In this webinar, experts talk through the stages of a supply chain attack and ... - [How Applications Are Attacked: A Year in Application Security]( Cloudflare sees up to 61 million requests per second, meaning we have an unprecedented view into Internet trends like application attacks and API traffic, and automated bot activity. We have put that incredible visibility to use by profiling a year of ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Essential Guide to Secure Web Gateway]( - [Making Cybersecurity Mesh a Reality]( - [2022 State of OT Cybersecurity Report]( - [Top Three Considerations To Build, Deploy, and Run Your Application Journey]( - [Top 5 ASM Use Cases Every Security Team Must Embrace Now]( - [The 2022 State of Cloud Security Report]( - [Seven Ways to Avoid the Nightmare of a Cloud Misconfiguration Attack]( [View More White Papers >>]( FEATURED REPORTS - [The 10 Most Impactful Types of Vulnerabilities for Enterprises Today]( The enterprise attack surface is constantly expanding. Enterprises have to think beyond zero day vulnerabilities. It's imperative security teams start looking at vulnerabilities in 5G, firmware, edge, and ICS/OT, among others. Managing system vulnerabilities is one of the old ... - [Shoring Up the Software Supply Chain Across Enterprise Applications]( Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ... - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Lightspin Launches Remediation Hub to Identify and Fix Cloud Security Threats]( [Research Highlights Cyber Security's Underestimated Role As a Business and Revenue Enabler]( [Vectra Unifies AI-Driven Behavior-Based Detection and Signature-Based Detection]( [XM Cyber Announces Acquisition of Confluera, Adding Run-Time Protection on Cloud Workloads]( [Kaspersky Survey Finds One in Three Users Have Experienced CryptoTheft]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The 10 Most Impactful Types of Vulnerabilities for Enterprises Today]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)