Free AI web copilot to create summaries, insights and extended knowledge, download it at here

2901

Abstract

figure><h1 id="7f55">3. Human error is still a problem in DevSecOps strategies</h1><p id="87ef">When tech development strategies embrace security at the very beginning, that’s known as DevSecOps. Instead of being the responsibility and mission of just one specific team, it becomes part of every team’s concern and goal.</p><p id="f015">The bad news is that roughly two-thirds of tech companies applying DevSecOps strategies to their software and hardware development projects still find themselves dealing with problematic issues that can be traced back to human error. It seems that the larger the project, the more challenging it was to keep track of security issues as policies and decisions changed more quickly than internal processes allowed.</p><h1 id="42f6">4. Tougher regulations encourage improved responses to security breaches</h1><p id="5192">New laws under consideration in various US states and the European Union are focusing on greater compliance and enforcement when it comes to protecting customer data from cyberattacks.</p><p id="7284">Just as increased fines for HIPAA non-compliance violations led to greater security measures in the healthcare sector, now more demanding regulations for corporate protection against cyberattacks are expected to lead to better protection and improved responses from businesses.</p><h1 id="d945">5. Bug hunt!</h1><p id="e77e">Many tech companies are now offering bounties for security bugs and other vulnerabilities in their software and system packages. By offering ethical hackers from around the world financial awards for every security hole found or bug discovered, companies can take advantage of outsider perspectives and approaches to online security.</p><p id="620d">Some bug hunters have earned up to $250,000 hunting down security holes and other software issues for companies such as Netflix and Microsoft. Even the US Pentagon has had success with these bounty programs.</p><p id="a39f">It seems alarming that so many bugs exist in software coming from major companies. That said, it’s heartening to see these companies take potential vulnerabilities seriously enough to tackle security issues with an outside-the-box approach.</p><figure id="8c73"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/0*te21JYwi_bVrmuZz"><figcaption>Photo by <a href="https://unsplash.com/@dizzyd718?utm_source=medium&utm_medium=referral">Drew Graham</a> on <a href="https://unsplash.com?utm_source=medium&utm_medium=referral">Unsplash</a></figcaption></figure><h1 id="3750">6. Web security isn’t where it should be yet</h1><p id="5c32">Only 3% of global web servers fully employ adequate security to protect themselves against the full range of possible cyberattacks. Some of the issues originate from insecure direct object references and bad server configuration. Other problems spring from poor authentication processes and

Options

cross-site scripting (XSS) weaknesses.</p><p id="03b7">As businesses deal with an increased number of cyber threats cropping up, improving web server security should be the number one priority when it comes to protecting customer data and confidence.</p><h1 id="a682">7. Artificial intelligence (AI) takes on fraud monitoring tasks</h1><p id="283b">It’s encouraging news to see that continuing developments in artificial intelligence are helping to bolster and, in some cases, replace manual fraud monitoring. As online commerce increases and finances becoming more entwined with the Internet, the resulting amount of online fraud can be overwhelming, and human error is a factor that cannot be ignored. Now, with assistance from AI technology, fraud monitoring is becoming more efficient and effective — reducing the overall number of instances of fraud committed.</p><h1 id="5bbc">Cybersecurity’s future looks promising</h1><p id="6547">Overall, the good news is that the cybersecurity community is working hard to stay a step ahead and maintain confidence in their ability to protect sensitive data from malicious intent.</p><div id="678c" class="link-block"> <a href="https://readmedium.com/effective-cybersecurity-in-5-easy-steps-18d5001e5d16"> <div> <div> <h2>Effective Cybersecurity in 5 Easy Steps</h2> <div><h3>Cybersecurity is an ever-changing landscape and protecting your home or business network can feel like an endless…</h3></div> <div><p>medium.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/0*AMpiZeIB5wLrIr7q)"></div> </div> </div> </a> </div><div id="cc53" class="link-block"> <a href="https://readmedium.com/social-engineering-phishing-and-how-to-protect-your-business-895bb5d69fa0"> <div> <div> <h2>Social Engineering, Phishing, and How to Protect Your Business</h2> <div><h3>Forewarned is forearmed. Learn the dangers and solutions.</h3></div> <div><p>medium.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/0*gYjuFJTY6hmynaBn)"></div> </div> </div> </a> </div><p id="4930"><i>Thank you for reading. I’d love to share more with you via my <a href="https://mailchi.mp/5b9666ece8ef/wordsbyjohnsub"></a></i><a href="https://mailchi.mp/5b9666ece8ef/wordsbyjohnsub"><b>Weekly Word Roundup</b><i></i></a><i> newsletter sent to subscribers every Sunday. It will feature news, productivity tips, life hacks, and links to top stories making the rounds on the Internet. You can unsubscribe at any time!</i></p></article></body>

7 Cybersecurity Trends For 2020

The good, the bad, and the new

Cybersecurity is a field under constant growth and development. With malicious online activity on the rise, the intensity and potential risk of breach attempts to expose sensitive data keep cybersecurity experts on constant alert.

It’s a mixed bag. Not all cybersecurity trends are working as well as they should. Fortunately, no one is being complacent about it. For every negative trend, there is a positive one and, for the most part, cybersecurity experts are striving to stay ahead of the rising tide of cyberattacks and improving application security every day.

1. The Internet of Things (IoT) continues to carry a risk factor

Be it appliances, temperature controls, or remote lighting, smart devices operating as part of the rising popularity of the Internet of Things remain vulnerable mostly due to administrative panels and web interface applications. Sometimes, it’s an issue of obsolete software. Other times, the problems are hard-wired into the device with unalterable control credentials.

Many users find it difficult or even impossible to update these servers with updated security protocols which could include improved encryption or other security measures. The vulnerabilities that exist with many IoT devices continue to present potential liabilities.

2. Mobile devices less vulnerable than once thought

While it’s still advisable for people to take mobile device security seriously, some of the vulnerabilities often connected with smartphones and tablets may not lead to as many major breaches as once feared. So long as users continue to take simple and standard precautions when using their mobile devices — such as sensible password authentication and caution around public Wi-Fi — the risks of serious cyberattacks via mobile devices are relatively rare.

Software developers are all too aware of how security issues with their product can shake public confidence. They’re invested in making sure their applications cover as many possible security gaps as they can.

3. Human error is still a problem in DevSecOps strategies

When tech development strategies embrace security at the very beginning, that’s known as DevSecOps. Instead of being the responsibility and mission of just one specific team, it becomes part of every team’s concern and goal.

The bad news is that roughly two-thirds of tech companies applying DevSecOps strategies to their software and hardware development projects still find themselves dealing with problematic issues that can be traced back to human error. It seems that the larger the project, the more challenging it was to keep track of security issues as policies and decisions changed more quickly than internal processes allowed.

4. Tougher regulations encourage improved responses to security breaches

New laws under consideration in various US states and the European Union are focusing on greater compliance and enforcement when it comes to protecting customer data from cyberattacks.

Just as increased fines for HIPAA non-compliance violations led to greater security measures in the healthcare sector, now more demanding regulations for corporate protection against cyberattacks are expected to lead to better protection and improved responses from businesses.

5. Bug hunt!

Many tech companies are now offering bounties for security bugs and other vulnerabilities in their software and system packages. By offering ethical hackers from around the world financial awards for every security hole found or bug discovered, companies can take advantage of outsider perspectives and approaches to online security.

Some bug hunters have earned up to $250,000 hunting down security holes and other software issues for companies such as Netflix and Microsoft. Even the US Pentagon has had success with these bounty programs.

It seems alarming that so many bugs exist in software coming from major companies. That said, it’s heartening to see these companies take potential vulnerabilities seriously enough to tackle security issues with an outside-the-box approach.

6. Web security isn’t where it should be yet

Only 3% of global web servers fully employ adequate security to protect themselves against the full range of possible cyberattacks. Some of the issues originate from insecure direct object references and bad server configuration. Other problems spring from poor authentication processes and cross-site scripting (XSS) weaknesses.

As businesses deal with an increased number of cyber threats cropping up, improving web server security should be the number one priority when it comes to protecting customer data and confidence.

7. Artificial intelligence (AI) takes on fraud monitoring tasks

It’s encouraging news to see that continuing developments in artificial intelligence are helping to bolster and, in some cases, replace manual fraud monitoring. As online commerce increases and finances becoming more entwined with the Internet, the resulting amount of online fraud can be overwhelming, and human error is a factor that cannot be ignored. Now, with assistance from AI technology, fraud monitoring is becoming more efficient and effective — reducing the overall number of instances of fraud committed.

Cybersecurity’s future looks promising

Overall, the good news is that the cybersecurity community is working hard to stay a step ahead and maintain confidence in their ability to protect sensitive data from malicious intent.

Effective Cybersecurity in 5 Easy Steps

Cybersecurity is an ever-changing landscape and protecting your home or business network can feel like an endless…

medium.com

Social Engineering, Phishing, and How to Protect Your Business

Forewarned is forearmed. Learn the dangers and solutions.

medium.com

Thank you for reading. I’d love to share more with you via my Weekly Word Roundup newsletter sent to subscribers every Sunday. It will feature news, productivity tips, life hacks, and links to top stories making the rounds on the Internet. You can unsubscribe at any time!