Using RiskRecon’s assessment information, explanatory models are built to demonstrate the value of technical information in predicting measures of risk at varying levels of greater technical insight. (more available)

Bitdefender researchers recently investigated a sophisticated APT-style cyberespionage attack targeting aninternational architectural and video production company, pointing to an advanced threat actor and a South Korean based C&C infrastructure. (more available)

A survey of 273 security professionals on the implications of the COVID-19 pandemic on security perceptions.

A survey of 933 respondants on changes to privacy and data protection after COVID-19 and how companies are keeping their data protected. (more available)

This document institutes the third edition of the CISO Current report and contains data gathered from direct interviews surveying almost 40 cybersecurity executives at leading enterprises. (more available)

This key findings’ report contains a synopsis of trends on how health systems are scaling innovation and a look-ahead at what the innovation perspectives and strategies of today may mean for the health systems tomorrow. (more available)

This research brief presents key highlights on recent veteran participation in the STEM workforce drawing upon an analysis of the American Community Survey (2012-2016), led by the U. (more available)

An In Depth Look at the most prevalent ATT&CK techniques according to Red Canary’s historical detection dataset.

From the report, “Robotic telepresence is a next-generation technology that allows a person in one location to replicate himself in another. (more available)

Outsourcing is a fact of life for healthcare organizations, from routine functions such as food services and laundry to regulatory compliance and clinical activities. (more available)

This is the first in a series of books tracking changes and discoveries within the DevSecOps Community. The stories are by people who have been sloshing around in the swamps of software development for years, figuring out how things work, and most importantly, why things didn’t work. (more available)

This is DLA Piper’s fourth Tech Index study into the perceptions and attitudes of European technology growth. As ever, we review how attitudes are changing with regard to market developments, shifts in the financial regulatory landscape and government policies designed to spur business innovation in an increasingly uncertain and disruptive world. (more available)

You can use container security tools to secure critical applications, speed development efforts, and tamperproof your containers. But to access these benefits, you’ll first have to select from a diverse set of vendors — vendors that vary by size, functionality, geography, and vertical market focus. (more available)

In this blog we will detail our discovery of the next two versions of MM Core, namely “BigBoss” (2.2-LNK) and “SillyGoose” (2. (more available)

This report is a transcript of written Testimony provided to the House Comittee on Oversight and Government Reform, Subcomittee on Information Technology, by Sarah Cook Senior Research analyst for East Asia and China Media Bulletin Director. (more available)

This survey was created to act as a barometer to measure the involvement of public company directors in cyber-risk management.

This report examines the impact that cloud adoption, use of open source software, organizational practices (including outsourcing), and culture all have on software delivery performance. (more available)

This report discusses a new kind of Remote Access Trojan at use in ASIA, and looks at its connection with the Chinese Government. (more available)

In order to find out more about the challenges and threats businesses are encountering, Kaspersky Lab, together with B2B International, has conducted a study entitled Corporate IT Security Risks Survey 2016. (more available)

This is Mary Meeker’s annual report on Internet Trends.

This report from the Ahn Lab Security Emergency Response Center provides a review of various Cyber events that took place in January of 2017. (more available)