Security Boulevard

Zero day—zero clue: Old, bug-prone app relies on you to go look for update files.

The post ANOTHER WinRAR 0-Day: Don’t Patch Now — Uninstall It! appeared first on Security Boulevard.

PureRAT is a Remote Access Trojan, which can be used by an attacker to remotely control someone else's PC. PureRAT provides the following features to an attacker: See the victims user interfaceInteract with the victim PC using mouse and keyboardView the webcamListen to the microphoneRecord keystroke[...]

The post PureRAT = ResolverRAT = PureHVNC appeared first on Security Boulevard.

IBM’s 2025 Cost of a Data Breach Report drives home that point: attackers today are often “logging in rather than hacking in".

The post IBM’s Cost of a Data Breach Report 2025 appeared first on Security Boulevard.

Researchers just proved LLMs can autonomously plan and execute full-scale cyberattacks — turning AI from a tool into an active threat actor.

The post And Now, LLMs Don’t Need Human Intervention to Plan and Execute Large, Complex Attacks  appeared first on Security Boulevard.

Creator, Author and Presenter: Wendy Nather

Our deep appreciation to Security BSides - San Francisco and the Creators, Authors and Presenters for publishing their BSidesSF 2025 video content on YouTube. Originating from the conference’s events held at the lauded CityView / AMC Metreon - certainly a venue like no other; and via the organization's YouTube channel.

Additionally, the organization is welcoming volunteers for the BSidesSF Volunteer Force, as well as their Program Team & Operations roles. See their succinct BSidesSF 'Work With Us' page, in which, the appropriate information is to be had!

Permalink

The post BSidesSF 2025: Fire, Brimstone And Bad Security Decisions appeared first on Security Boulevard.

Researchers at the WHY2025 hacker forum said they were able to combine the Spectre and L1TF processor vulnerabilities discovered in 2018 to create a new transient execution attack called L1TF Reloaded that allowed them to leak data from AWS and Google Cloud instances.

The post A New Security Threat to Public Clouds From Old Vulnerabilities appeared first on Security Boulevard.

What kills most companies in a breach isn’t the first break-in. It’s what happens next. One stolen password turns into ten compromised systems, and suddenly your backups are toast, your finance apps are locked, and the help desk is sprinting with a garden hose toward a building fire. Attackers can pivot inside a network in […]

The post How Attackers Move Laterally, and How to Stop Them appeared first on ColorTokens.

The post How Attackers Move Laterally, and How to Stop Them appeared first on Security Boulevard.

In 2025, cybersecurity isn’t just IT’s job — it’s a core business survival skill against faster, smarter and more targeted threats.

The post What are the Biggest Cybersecurity Nightmares Your Business Might Face in 2025? appeared first on Security Boulevard.

Many global regulations and legislations have strict requirements around Java application security, incident reporting, and more. Azul has an unmatched set of solutions.

The post Three Ways to Ensure Regulatory and Legislative Compliance with non-Oracle Java appeared first on Azul | Better Java Performance, Superior Java Support.

The post Three Ways to Ensure Regulatory and Legislative Compliance with non-Oracle Java appeared first on Security Boulevard.

 

The post IRONSCALES Named to Inc. 5000 List of America’s Fastest-Growing Private Companies for Fifth Consecutive Year appeared first on Security Boulevard.

Nisos
Executive PII Exposure: Why You Need Ongoing Monitoring

Exposed personal data is fueling executive impersonation, fraud, and social engineering. Here's what enterprise leaders need to know...

The post Executive PII Exposure: Why You Need Ongoing Monitoring appeared first on Nisos by Nisos

The post Executive PII Exposure: Why You Need Ongoing Monitoring appeared first on Security Boulevard.

Open Bullet 2 is an open-source tool built for credential stuffing attacks, automated attempts to gain access to user accounts using stolen credentials from data breaches. It supports both website and mobile application targets and has become a staple in the fraud ecosystem due to its flexibility, extensibility, and active

The post How to detect Open Bullet 2 bots running in Puppeteer mode appeared first on Security Boulevard.

Vulnerability management (VM) is the continuous process of finding, evaluating, listing, reporting, and providing AI-driven patch recommendations for security vulnerabilities across an organization’s inventory. In practice, this means regularly scanning IT assets for known vulnerabilities, prioritizing which ones to fix first, and providing customised recommendations based on the vulnerabilities found before attackers can exploit them. […]

The post AI-Driven Vulnerability Management as a Solution for New Era appeared first on Kratikal Blogs.

The post AI-Driven Vulnerability Management as a Solution for New Era appeared first on Security Boulevard.

From Risk to ROI: How Security Maturity Drives Business Value
madhav
Tue, 08/12/2025 - 04:30

Cyber threats are like moving targets—constantly evolving and increasingly pervasive. In a hyper-connected world, no individual, industry, or organization is immune. The threat landscape presents a serious and persistent challenge for governments, businesses, critical infrastructure, and individuals alike.

Many organizations ensure resilience and elevate their security maturity by adopting a structured framework for guidance. A leading standard, the NIST 2.0 Cybersecurity Framework (CSF), offers a comprehensive, scalable approach to building a proactive cybersecurity program. By following this framework, organizations can effectively address evolving cyber threats and adapt to the dynamic regulatory landscape. Additionally, the framework provides a phased strategy for implementing data security, prioritizing three key objectives: compliance, risk management, and security.

Improving security maturity pays off

Let’s start with three high-impact reasons why advancing security maturity drives real business value:

Compliance: 57% better outcomes

Security maturity models help organizations align with relevant standards and regulations. This matters: According to the 2025 Thales Data Threat Report, 78% of enterprises that failed compliance audits also suffered a breach—compared to just 21% of those that passed. Over the past five years, the likelihood of a breach dropped by 50% for organizations that consistently passed their compliance audits.

Faster response: 25.9% cost savings

A mature security posture enables faster threat detection and response. The difference is measurable: breaches contained under 200 days cost $3.87 million on average, compared to $5.01 million for longer incidents—a 24% savings. Those organizations who detected the breach internally also observed nearly $1 million savings on breach costs compared to those disclosed by an attacker. Speed matters for minimizing financial damage, reducing downtime, and maintaining business continuity.

Trust: 30-40 points higher

Consumer trust in digital services is declining, with 82% abandoning brands because of concerns about data privacy and security. The Thales Digital Trust Index found 64% of consumers said their brand confidence would significantly increase if innovative, advanced technologies were being used to protect sensitive data.

Beyond these benefits, let’s tackle a core challenge: Which comes first—compliance, risk, or data security?

Which comes first: Compliance, risk, or data security?

These three benefits—compliance, faster response, and trust—show why advancing security maturity leads to stronger business outcomes. But they also surface a common organizational dilemma: Where should the security journey begin, with compliance, risk, or data security?

COMPLIANCE: A foundational requirement

For many organizations, business continuity mandates that the security journey start with compliance. While achieving compliance is a necessary first step, it is not a long-term strategy on its own. Compliance-driven efforts tend to be reactive, intermittent, and narrowly focused. They aim to meet requirements rather than anticipate future threats, which can create a false sense of security.

Compliance is especially critical in healthcare organizations. They handle sensitive patient data and rely on interconnected systems, making them particularly vulnerable to breaches and disruption. Healthcare compliance involves implementing data security measures to protect sensitive patient information (PHI) and adhering to regulations like GDPR and HIPAA.

A compliance-first example: Healthcare and HIPAA

A healthcare organization, seeking to avoid fines, legal liability, and reputational damage, starts by aligning with the Health Insurance Portability and Accountability Act (HIPAA). Its security strategy includes encrypting all protected health information (PHI) in motion and at rest, limiting access to authorized personnel, logging all access to patient records, and performing regular audits.

To meeting specific compliance requirements, organizations must manage sensitive data effectively. This includes protecting data from unauthorized access, breaches, and other security threats. To safeguard data against cyber threats such as breaches, ransomware, unauthorized access, and maintain compliance, organizations should implement robust data security measures. These measures include encryption and access controls, maintain strong data governance practices, and automate compliance reporting.

RISK: Raising the bar with risk-first thinking

At more advanced security maturity levels, organizations shift from merely reacting to regulations to proactively managing actual risk. A risk-first approach prioritizes security efforts based on the actual risks that vulnerabilities pose to the organization. It focuses on addressing security gaps that present the greatest threat to critical assets and business objectives. This prioritization considers both the likelihood of exploitation and the potential business impact, enabling organizations to effectively allocate resources for the most critical vulnerabilities.

A risk-based approach provides a more proactive stance and adjusts to evolving threats and business needs. Compliance becomes a pillar of a wider-reaching risk-first strategy versus a sole security approach. However, many sectors are slow to adopt a risk-based approach because of their lower levels of security maturity. Many cyber threats are directed at vulnerable industries due to outdated security tooling, low visibility to risk exposures, and security gaps as they transition to the cloud. In general, the financial sector and manufacturing industries are recognized as the most vulnerable and must prioritize cybersecurity based on the high value of their data and the potential for significant disruption.

A risk-first example: Manufacturing and IP protection

A global manufacturer conducts a risk assessment, identifying its proprietary designs and trade secrets (CAD files, R&D data) as high-value digital assets—and a likely target for industrial espionage. It must prioritize protecting these assets and allocate security resources to mitigate threats and their potential impact on the business.

Ideally, the manufacturer should leverage modern data security tools that include data access monitoring, risk analytics, risk prioritization, and threat detection. A focus on risk—not just regulation alone—drives this strategy for business growth and competitive advantage.

SECURITY: The pinnacle of maturity: A data-first mindset

The highest level of security maturity is a data-first or security-first approach. Here, the strategy focuses on safeguarding data, prioritizing the protection of sensitive data. To do so, organizations must establish an understanding of data flows—including data at rest and in transit—and their respective risks.

This mindset starts in the design phase. Security controls are built in from the beginning, applying “secure by design” and “secure by default” principles. Data security builds robust controls that can adapt to the evolving threat landscape, using artificial intelligence (AI) and machine learning (ML) for real-time threat detection and rapid response.

A data security-first example: Financial services and sensitive data protection

To better safeguard customer data, a financial services organization prioritized the protection of sensitive data throughout its lifecycle instead of focusing solely on perimeter defenses. It starts with data discovery and classification, identifying where sensitive data lives, how it flows, and who accesses it. Security controls manage sensitive data based on those factors.

The organization uses secure data handling tools, such as encryption, access controls, and data masking via a unified data security platform that combines data discovery, policy definition, and policy enforcement across data silos and data types. Real-time, AI-powered tools help detect and prevent cyber threats and improve organizational responsiveness. A well-defined, continuously tested incident response plan ensures preparedness.

To remain resilient, data security can be implemented in a phased approach to meet top organizational needs, such as:

1. Decrease the likelihood and impact of security incidents. A mature security program, built on strong risk management and continuous improvement, significantly lowers the chances of data breaches and other costly cyberattacks.

2. Minimize financial losses and legal liabilities. Investing in robust security can help
organizations avoid the heavy costs associated stemming from data breaches, regulatory fines, and legal repercussions.

3. Optimize security spending. Maturity models help prioritize security investments, ensuring resources are allocated to address the most significant risks and generate the best ROI.

The bottom line

For organizations just starting their cybersecurity journey, compliance is often the first milestone—and rightly so. But compliance alone isn’t enough to stay secure in a threat landscape that moves faster than the regulations that govern it.

And, consumer trust in digital services is declining, causing customer defections. The adoption of emerging security technologies significantly boosts consumer confidence, sustaining customer loyalty and the revenue from it, contributing to positive, bottom-line results.

Mature organizations recognize this. They go beyond compliance and embrace security-first approaches that are proactive, adaptive, and built to scale with complexity. These strategies don’t just align with regulatory requirements—they anticipate and neutralize real threats before they materialize, building resilience, saving money, and earning trust.

Simply put, security maturity isn’t just about reducing risk—it’s about unlocking ROI via stronger, smarter business outcomes.

Read more about Thales Data Security solutions to accelerate your compliance initiatives, gain control over your risk, and secure sensitive data to improve operational resilience, visibility, and control:

• CipherTrust Data Security Platform: Encryption, tokenization, key management, and data discovery, all in one platform.
• Data Security Posture Management (DSPM): Visualize and protect sensitive data across

Data Security

Lynne Murray | Director of Product Marketing for Data Security
More About This Author > Schema {
"@context": "https://schema.org",
"@type": "BlogPosting",
"mainEntityOfPage": {
"@type": "WebPage",
"@id": "https://cpl.thalesgroup.com/blog/data-security/roi-of-data-security-maturity"
},
"headline": "The ROI of Data Security Maturity: Driving Business Value",
"description": "Advance security maturity to boost compliance, cut breach costs, and build trust. Discover how a proactive data-first strategy delivers measurable ROI.",
"image": "",
"author": {
"@type": "Person",
"name": "Lynne Murray",
"url": "https://cpl.thalesgroup.com/blog/author/lmurray"
},
"publisher": {
"@type": "Organization",
"name": "Thales Group",
"description": "The world relies on Thales to protect and secure access to your most sensitive data and software wherever it is created, shared, or stored. Whether building an encryption strategy, licensing software, providing trusted access to the cloud, or meeting compliance mandates, you can rely on Thales to secure your digital transformation.",
"url": "https://cpl.thalesgroup.com",
"logo": "https://cpl.thalesgroup.com/sites/default/files/content/footer/thaleslogo-white.png",
"sameAs": [
"https://www.twitter.com/ThalesCloudSec",
"https://www.linkedin.com/company/thalescloudsec",
"https://www.youtube.com/ThalesCloudSec"
]
},
"datePublished": "2025-08-12",
"dateModified": "2025-08-12"
}

basic

The post From Risk to ROI: How Security Maturity Drives Business Value appeared first on Security Boulevard.

Is Your Strategy Robust Enough to Keep Pace With Emerging Cyber Threats in Secret Management? The stakes for organizations across industries like healthcare, financial services, and travel are higher than ever. Non-Human Identities (NHIs) and Secrets Management form a critical part of a holistic cybersecurity strategy, offering much-needed end-to-end protection. These methodologies provide a lifeline, […]

The post Stay Ahead of Cyber Threats in Secret Management appeared first on Entro.

The post Stay Ahead of Cyber Threats in Secret Management appeared first on Security Boulevard.

Why is Secure NHI Management Critical for Successful Team Empowerment? How often does secure Non-Human Identity (NHI) management come to mind? Considering the increasing reliance on cloud-based solutions across industries, including healthcare, finance, and travel, it’s clear that cybersecurity should play a significant part in empowering teams. For DevOps and SOC teams, especially, the task […]

The post Empower Teams with Effective IAM Strategies appeared first on Entro.

The post Empower Teams with Effective IAM Strategies appeared first on Security Boulevard.

Why is Scaling Secrets Security Crucial for Large Enterprises? Large enterprises hold vast amounts of sensitive information, such as customer data and intellectual property, securely stored within their corporate networks. These organizations often use machine identities, or Non-Human Identities (NHIs), to manage this data. But, how well are these NHIs and their secrets being managed, […]

The post Scaling Secrets Security for Large Enterprises appeared first on Entro.

The post Scaling Secrets Security for Large Enterprises appeared first on Security Boulevard.

DataDome’s server-side behavioral detection blocked over 214 million malicious requests from a single IP targeting a global travel platform without downtime or disruption.

The post How DataDome Blocked 214M+ Malicious Requests With Server-Side Behavioral Detection appeared first on Security Boulevard.

Creator/Author/Presenter: Vlad Iliushin

Our deep appreciation to Security BSides - San Francisco and the Creators, Authors and Presenters for publishing their BSidesSF 2025 video content on YouTube. Originating from the conference’s events held at the lauded CityView / AMC Metreon - certainly a venue like no other; and via the organization's YouTube channel.

Additionally, the organization is welcoming volunteers for the BSidesSF Volunteer Force, as well as their Program Team & Operations roles. See their succinct BSidesSF 'Work With Us' page, in which, the appropriate information is to be had!

Permalink

The post BSidesSF 2025: Netsec Is Dead(?): Modern Network Fingerprinting For Real-World Defense appeared first on Security Boulevard.

via the cosmic humor & dry-as-the-desert wit of Randall Munroe, creator of XKCD

Permalink

The post Randall Munroe’s XKCD ‘Kite Incident’ appeared first on Security Boulevard.