Mitiga in the News

In this conversation, we discuss: 👉 How Mitiga addresses security gaps in cloud environments 👉 The importance of simplifying complex security operations data for faster response times 👉 Emerging trends in cybersecurity threats for 2024 and how companies should prepare

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw impacting GitLab to its Known Exploited Vulnerabilities (KEV) catalog, owing to active exploitation in the wild.

Today organizations have a large part of their environment outside of their control. They have authentication, email, data, code—some organizations have the majority of their most important assets in cloud and SaaS applications. And yet the security team does not have effective tooling to investigate across this surface.

In the span of just a few years, software supply chain security has evolved from being a niche security topic to a top priority for development organizations, security practitioners and CISOs alike. That shift is evident when you take a peek at the schedule for this year’s RSA Conference in San Francisco, where talks related to software supply chain cyber risk abound.

The practice of cybersecurity is ever-changing, marked by a continual dance between the attackers and the defenders. Each side is in a constant state of adaptation, reacting to the strategies of the other. The ongoing evolution of ransomware cybercrime is a prime illustration of this dynamic.

The Cybersecurity and Infrastructure Security Agency (CISA) urged Sisense's customers to reset passwords and other credentials that may have been exposed to or used to access Sisense's services and to report any suspicious activity.

AI, cybersecurity, digital transformation. These trends have been major themes over the past several years, but IT departments need to remain on top of what’s changing, why, and how.

As news on an alleged Russian hack against Microsoft continues to unfold — with the latest reports revealing that Microsoft has not been yet able to shake down the Russian-linked criminal group Midnight Blizzard (also known as Nobelium), experts weigh in on the consequences of the attack.

Microsoft confirms that Russian state-sponsored hackers, known as Midnight Blizzard, infiltrated their systems and stole source code. Experts warn of potential zero-day vulnerabilities.