“We give defenders the ability not only to see their exposures instantly but also to shut them down automatically,” CTO of Cortex Matt Kraning said.

Linux Foundation's OpenSSF's adoption of Microsoft's S2C2F framework means the community can also have a hand in growing and improving it.

From June to November 2021, Visa saw a 176% increase in physical skimming devices over the previous 12-month period.

“Zero trust is hard, and it's not something that any one vendor is going to be able to necessarily push the industry to completion with," John Roese said.

Palo Alto Networks SVP Ankur Shah noted more customers are asking about SBOM, but “we're still in the early days."

A software bill of materials is "a prerequisite to effective security and certainly not a full solution," CISA's Eric Goldstein said.

VMware Tanzu Application Platform 1.3 adds flexibility in terms of customers' choice of Kubernetes platforms.

DigitalOcean to acquire Cloudways; AMD releases its Corporate Responsibility Report; and GitLab on the disconnects of shifting security left.

Twitter CEO Parag Agrawal called the accusation “a false narrative that is riddled with inconsistencies and inaccuracies, and presented without important context.”

The combined platform will provide operators with a single management point for monitoring and mitigating cybersecurity threats.

The survey found 50% of security professionals said unidentified vulnerabilities can still be traced back to developer mistakes 75% of the time.

“You actually have to be deliberate about building maturity and sustaining that maturity over time,” said Luta Security's Katie Moussouris.

President Biden signs CHIPS and Science bill into law; Versa snags cloudIT as a new partner; and GlobalData finds executives confused by blockchain.

“The stark reality of the cybersecurity industry is the offense-defense imbalance," Perception Point CTO Tal Zamir said.

Cynet finds smaller security teams face greater risks; Oracle targets EU cloud regions; and Microsoft, Cosmo Tech's digital twins collab.

"Log4j is an ‘endemic vulnerability’ and vulnerable instances of Log4j will remain in systems for many years to come," the Cyber Safety Review Board noted.

A rise in the use of ransomware-as-a-service has contributed to what Tanium says is the largest attack surface in history.

“We are not going after all the verticals and that's how we differentiate from the other vendors," noted Nokia's Rodrigo Brito.

CSW reported new ransomware vulnerabilities; Microsoft, Accenture collaborate on sustainability; and AWS ruled the public cloud market again.

The Open Source Security Foundation and the Linux Foundation released an action plan to improve open source software's security and resilience.

Red Hat wants to build security into continuous integration/continuous delivery pipelines that customers are using to manage their applications.

“Web application and API attacks and zero-day vulnerabilities have been on an absolute tear over the last 9 months,” Akamai's Thomas Emmons noted.

Cisco's new Predictive Networks aims at improving user experience; API traffic creates vulnerabilities; and Arista posted record Q1 results.

Eight out of 15 top vulnerabilities routinely exploited last year by malicious actors impacted Microsoft Exchange email servers.