Cybersecurity Insights with Contrast CISO David Lindner | 4/19/24

Insight #1

One of the most significant errors an organization can make is assuming they are not a target. This belief is especially prevalent among small and medium-sized businesses (SMBs), and it represents a dangerous oversight. An estimated 69% of SMBs reported experiencing at least one cyberattack in the last year, according to one report, and the attack frequency is increasing. If you’re not using basic measures like password managers, two-factor authentication (2FA) and cybersecurity training, you’re risking more than you might realize.

Insight #2

The transparency and accountability themes continue, with more cyber-incident reporting rules proposed (PDF) by the Cybersecurity and Infrastructure Security Agency (CISA). The first iteration of these new rules are definitely a good start, but there’s still a lot of subjectivity in what should be reported.

Insight #3

Skate where the puck is going. If you’re not adapting your Application Security (AppSec) practices with the speed and agility of development, are you even trying to keep up with the puck? Runtime Security is the only way to get in front of security risk.