FEATURES EDITION | Zero Trust, AI, Capital Markets Drive Consolidation in Cloud Security

Companies that quickly shifted to cloud-native operations are looking for greater visibility and protection — and AI benefits — while an uncertain economic future has venture capitalists looking toward safety. [TechWeb]( Follow Dark Reading: [RSS]( January 20, 2024 LATEST SECURITY FEATURES & COMMENTARY [Zero Trust, AI, Capital Markets Drive Consolidation in Cloud Security]( Companies that quickly shifted to cloud-native operations are looking for greater visibility and protection — and AI benefits — while an uncertain economic future has venture capitalists looking toward safety. [First Step in Securing AI/ML Tools Is Locating Them]( Security teams need to start factoring for these tools when thinking about the software supply chain. After all, they can't protect what they don't know they have. [Lock Down the Software Supply Chain With 'Secure by Design']( As zero days and complex networks create gaps for cyberattacks, software developers and agencies, such as CISA, look to the concept for building in defenses. [InfoSec 101: Why Data Loss Prevention Is Important to Enterprise Defense]( Data is the most valuable asset for any organization — and protecting it is crucial to maintaining business continuity. [As Enterprise Cloud Grows, So Do Challenges]( Parenting teaches many lessons, including that difficulties get more complicated as kids grow up. Here's what to look for in a partner to share the "big-kid problems" of distributed cloud. [Effective Incident Response Relies on Internal and External Partnerships]( Dark Reading research finds increased collaboration between security incident responders and groups within the HR, legal, and communications functions. [Snyk Acquires Helios for Runtime Visibility]( Developer-security company Snyk will integrate startup Helios' app-discovery service and runtime data collection tools into its AppRisk service. [MORE FROM THE EDGE]( / [MORE FROM DR TECHNOLOGY]( HOT TOPICS [Third Ivanti Vulnerability Exploited in the Wild, CISA Reports]( Though reports say this latest Ivanti bug is being exploited, it's unclear exactly how threat actors are using it. [Google: Russia's ColdRiver APT Unleashes Custom 'Spica' Malware]( Just in time for the US election season, one of the Kremlin's favorite hack-and-leak spy groups — Star Blizzard — has developed its very first custom backdoor. [SEC X Account Hack Draws Senate Outrage]( Senators from both parties called the Securities and Exchange Commission's lack of MFA "inexcusable" and demand investigation into the regulator's cybersecurity lapse. [MORE]( PRODUCTS & RELEASES [Mimecast Announces New CEO]( [Salt Security Delivers API Posture Governance Engine]( [ESET Launches New Managed Detection and Response (MDR) Service for Small and Midsize Businesses]( [Intel 471 Appoints Technology Veteran, Sonja Tsiridis, Chief Technology Officer]( [Accenture and SandboxAQ Collaborate to Help Organizations Protect Data]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [FBI Warns of More Election 'Chaos' in 2024]( FBI director Christopher Wray says to have confidence in the American election system but to expect ongoing information warfare, pointing to China as most formidable threat actor. [7 Lessons Learned From Designing a DEF CON CTF]( Practical advice for anyone interested in elevating their cyber capture-the-flag events. [New Developer Tools Necessary to Boost Passkey Adoption]( Passwordless technology that simplifies online access and identity has captured plenty of interest, but it needs to be built first. Developer tools that help add passkeys into Web applications pave the way. WEBINARS - [Top Cloud Security Threats Targeting Enterprises]( - [Tips for Managing Cloud Security in a Hybrid Environment]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [SANS ICS/OT Cybersecurity Survey: 2023's Challenges and Tomorrow's Defenses]( - [Threat Terrain of the Modern Factory: Survey of Programmable Assets and Robot Software]( - [Pixelle's OT Security Triumph with Security Inspection]( - [IT Zero Trust vs. OT Zero Trust: It's all about Availability]( - [The OT Zero Trust Handbook: Implementing the 4 Cornerstones of OT Security]( - [Buyer's Guide: Choosing a True DevSecOps Solution for Your Apps on AWS]( - [The Developers Guide to API Security]( [View More White Papers >>]( FEATURED REPORTS - [Passwords Are Passe: Next Gen Authentication Addresses Today's Threats]( - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... - [How to Use Threat Intelligence to Mitigate Third-Party Risk]( The report discusses the various steps of a continuous third-party intelligence lifecycle: Data collection, Data classification, Data storage, Data analysis, reporting, dissemination, continuous monitoring, data governance, and choosing the right technology stack. The report also includes information about how attackers ... [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=120599&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_01.20.24&sp_cid=51510&utm_content=DR_NL_Dark%20Reading%20Daily_01.20.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#35 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)