[SecurityWeek] The VC View: Vendor Risk Management

UnlikeĀ other areas of security, the COVID-19 pandemic has not made a big impact on theĀ Vendor risk management (VRM) sector. This space would have been a Top 10 security project even without a pandemic, as it has been going down this path for years: moving away from security questionnaires to finding something more predictable, useful and scalable.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[BleepingComputer] Exploit released for wormable Windows HTTP vulnerability

Proof-of-concept exploit code has been released over the weekend for a critical wormable vulnerability in the latest Windows 10 and Windows Server versions. […] Source: Read More (BleepingComputer)

Read More

[ThreatPost] Lazarus Attackers Turn to the IT Supply Chain

All posts, ThreatPost

Kaspersky researchers saw The North Korean state APT use a new variant of the BlindingCan RAT to breach a Latvian IT vendor and then a South Korean think tank. Source: Read More (Threatpost)

Read More

[NCSC-FI News] This browser-in-browser attack is perfect for phishing

A novel way of tricking people out of their passwords has left us wondering if there’s a need to rethink how much we trust our web browsers to protect us and to accelerate efforts to close web security gaps Earlier this week, an infosec researcher known as mr.d0x described a browser-in-the-browser (BitB) attack. It’s a […]

Read More